Report - track.uptruckthat.com/redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D

Report Overview

Submitted URL
track.uptruckthat.com/redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D
IP
18.192.249.87
ASN
#16509 AMAZON-02
Submitted
2023-05-29 15:18:08
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-29	1.7 kB	36 kB	216.58.207.227
track.uptruckthat.com	unknown	2023-02-20	2023-02-20	2023-05-29	733 B	646 B	18.192.249.87
www.a2ccecmtrk.com	623855	2021-09-27	2021-09-27	2023-05-29	569 B	897 B	35.241.26.240
link.trkhs.com	114166	2020-02-18	2020-03-26	2023-05-29	574 B	1.4 kB	52.169.78.163
offer.primedrawclub.com	unknown	2023-01-24	2023-01-24	2023-05-29	22 kB	322 kB	20.49.104.48
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2023-05-29	1.4 kB	29 kB	104.17.25.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2023-05-29	490 B	25 kB	151.101.65.229
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-29	951 B	20 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-cookies.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-sanitize.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.validate.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/ui-router.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery-3.6.0.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/cleave.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/card.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/anime.min.js
2023-05-29	medium	offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.payment.min.js
2023-05-29	medium	offer.primedrawclub.com/views/Products/7711/templates/core.html
2023-05-29	medium	offer.primedrawclub.com/views/Products/7711/templates/footer.html
2023-05-29	medium	offer.primedrawclub.com/views/Products/7711/views/homepage.html
2023-05-29	medium	offer.primedrawclub.com/views/Products/7711/templates/header.html

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (38)

	URL	Size	First Seen	Last Seen
	unknown	26 B	2023-04-11	2024-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:13:06 Last Seen2024-05-11 00:18:33 Times Seen116350 Hash 1c862db5f2555377c2dc1e62ed7b3981 c29e6dc25c08a70995127ec13ded6f80d9a36174 27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac Loading...

	unknown	609 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash f91dcbf67abbdcad59435288b848d4f4 f782e46acfaa1be7cc9518e707bb3bd90aed6873 832c0bc9440d51db9494592e4fb6786f499595bbe5d6b6e8218b5caa086dff50 Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.validate.min.js	22 kB	2023-05-09	2024-03-02
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.validate.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 23:52:53 Last Seen2024-03-02 21:19:25 Times Seen113 Hash 983c06f2ab229aa787cefe1d88ce2a00 f18a96a519c6f7f5e37940f47032bcb924bd4920 b3a4ca458e2e4a4820409c12ea39fa8a0881bbd3a51267f5e6912e9c67da8bf9 Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/anime.min.js	18 kB	2023-03-07	2024-05-10
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/anime.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:20 Last Seen2024-05-10 22:18:52 Times Seen1564 Hash 572d66e85091711b6ee76609573a8364 332031949d78a49e8a18611556253660574e47db 5cbda29ea5096ac9404c59c77493a2f467d0eb4a27f16c750b61fc0d888dd716 Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js	78 kB	2023-03-07	2024-05-11
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:26 Last Seen2024-05-11 00:47:36 Times Seen9039 Hash 7ccd9d390d31af98110f74f842ea9b32 a85e681624c91a106a514c31eacf80de817b2cc3 f5210fa3e7f0245a4c51eb7f280092c0ef99fdd28c45e17dab8cc5854fdf4fd3 Loading...

	unknown	621 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash ee7d91dcc558c38f12dd633961a474d6 0e06030b3ccd9bef7604a03cf2ba3be94afe15a3 62df1a984e6a965273cc75ab09611b624a107fbbcacac4268651ce5c82770da4 Loading...

	unknown	606 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash b238bf8235d9b5806499d2c7b007b4e1 ba7e8c5df789e02f56340e3a1dbdadedd0821a5b 6307278af9d23042aadc48d65145747b88aa41bf5ef4eb02997b3b714d4aae48 Loading...

	unknown	481 B	2023-05-11	2024-01-24
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2024-01-24 18:31:20 Times Seen96 Hash 366557bd82d0b3b6be7a50f9c5d1ad8d 380d06231f7eb52f22671d45eb507f5e935a89d8 be5aeefead8037ef7b4217959dac582cb06168b500c50b1bae4c0cc0dcbafe93 Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-cookies.min.js	1.3 kB	2023-03-07	2023-11-12
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-cookies.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:01 Last Seen2023-11-12 15:19:17 Times Seen188 Hash 6a2ff4296c3606d463af1dbfcb8eec3d 8d35ef2d836ad8bc598de20350c9b2f812b3f64d a3625e996727e005e693f1ba21461b33ff9f829db898c603839da7ce4529b29a Loading...

	cdnjs.cloudflare.com/ajax/libs/systemjs/0.19.20/system-polyfills.js	14 kB	2023-03-07	2024-05-03
Pretty URL cdnjs.cloudflare.com/ajax/libs/systemjs/0.19.20/system-polyfills.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:01 Last Seen2024-05-03 16:36:59 Times Seen224 Hash 20a9e2c110012afe9eeaa40908898e48 064ab212cfd9e125474ae3bbb600c366b31e79cb 950c228a7493000da1dda78f709bb67dc6ab13f27333099e513aba1f63a346db Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-10
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery-3.6.0.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:20 Last Seen2024-05-10 16:16:14 Times Seen4336 Hash 7c14a783dfeb3d238ccd3edd840d82ee ad886e472b3557f3dc7dfa2bc43468ab8d1cef5b 80f04717f32ea0320c5e8618fbacedd1fee3a8775ad8292140a6113551d4b5b0 Loading...

	unknown	421 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash 4a04566cf8f0b88b1f52e3c4950cae41 3a139d1bd8f50377a6bd5edd88e1d7abd691ccdd 6f9ed46626ce4f39622ee36aa16f1a5aa15a34cabb1fe84725c58e48fe6ee8f1 Loading...

	unknown	495 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash 21c09cd8921059be406204e0263e99f8 2a42d6470c3c0116449b2eb2301189756bbe2e19 69325d3e50c1e907d8554343efd7e6d4cae57aefd89feccb5b22a6c3158c7194 Loading...

	unknown	603 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash 1154b7e147cefaee60a097fef3f81265 4daaf09653b2bcad20a44973d5aad22eff3c7994 a6c9b98f479306161726a96aadcd1804e6add85a979227315412c897a8879efa Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/cleave.min.js	21 kB	2023-03-07	2024-05-08
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/cleave.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:17 Last Seen2024-05-08 17:00:14 Times Seen836 Hash 9d800c462d0440e0e0791df6bdb2745f c93af0d1b19051513bc6751936c5c015b59f9980 7eb194c2648de022cb8f29399b9f4409d5ec0cc5314d6e4eea175c78d1d5089a Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.payment.min.js	20 kB	2023-03-07	2023-11-12
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.payment.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:01 Last Seen2023-11-12 15:19:17 Times Seen188 Hash e9ed3ffbf7ac1a11ff859c9651e2d6c6 bae93c0eb1264b20d22dd8263f57070b61c25936 f52b083a7f56ae0cf2eea8c5c74e203e9dcd30a8167354d574fbbcc9c4d6780a Loading...

	unknown	612 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen88 Hash c402c262807376c9bfa940939fc716b7 5e08370dca4351079a83c43b64b65b38b3d3f9ab 99312920417cc391c317854685d780408845e1aafea39507718d0af5d342a1ab Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular.min.js	175 kB	2023-03-07	2023-11-12
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:01 Last Seen2023-11-12 15:19:17 Times Seen188 Hash 378cd06007cfc003445150131b4745cb eaa44aa0db490b9f2371d39026ca9dd2ec3541aa 4fb8b923f26b0241c0189dc25ed27c0b06641d89b29dd37866f79fbd9d3b6834 Loading...

	offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds	16 kB	2023-05-25	2023-05-30
Pretty URL offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-25 11:18:37 Last Seen2023-05-30 05:19:00 Times Seen36 Hash 25099cbcdf5d0d75238a107d6849376f 6757f435e9cf1312db119927eafb82d242518fa7 afae7cf243761736b622a5c19aaa2a27c2bbdce2e6e059bba05be96f2a7986d1 Loading...

	cdnjs.cloudflare.com/ajax/libs/es6-shim/0.33.3/es6-shim.min.js	48 kB	2023-03-07	2024-05-03
Pretty URL cdnjs.cloudflare.com/ajax/libs/es6-shim/0.33.3/es6-shim.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:01 Last Seen2024-05-03 16:36:59 Times Seen263 Hash 94a9dd5eef0ae582b868627606ac4a7b e4a502aee212d308c78f73578363ba0f85b320a6 a6fd7482cb9f3aed074fbdb7d22c3ea1d8601f694f72cef50c9ed08475654a5c Loading...

	unknown	606 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen93 Hash 5533877217aa6561ad5d7bbd5c166ed6 6fe1afff62497a048251c849966367508c8b1581 af8a7c7bb0a257076e72377f98e874928e5179364c4864427183bad24396a750 Loading...

	unknown	505 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen93 Hash a2a9c14d9dbd939fe7eeef75f23c6897 6863e7f6142ca3147ccd966ccbb6d1a59f5f762d c875d53c23d6c9172e8aee25027a34ecfae0e68c3e7a41daa14eb6a5d868d2e2 Loading...

	unknown	600 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash 8c60207775cba45a949d57d20c14e12f 4ca63de9e1d02bb0394576d73075806f1cf56398 719c30907cdb91df8331d141706bcbde4fda84198b99a517c846e4b3c9201add Loading...

	offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds	753 B	2023-03-07	2023-11-12
Pretty URL offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 15:20:01 Last Seen2023-11-12 15:19:17 Times Seen95 Hash 63cab469b8e381f847360c62824468e7 e3703f4332f32324ff70f85dfe40b75fa0d56d9c 9cf87c84f35a017b8cd55081b99332e1d5ec481b5b83e715bab200935b39a634 Loading...

	offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds	57 kB	2023-05-29	2023-05-30
Pretty URL offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-29 14:47:13 Last Seen2023-05-30 05:19:00 Times Seen7 Hash 9e3ec682f70d07b04dedae084d52c605 6961c4c5f622d939456a631dedf31adff6527bb3 5ee9ff9e1c9593822fabc356d0f7ad437768c6cbfa2b860b608aa73dea8c91de Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/ui-router.min.js	115 kB	2023-03-07	2023-11-12
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/ui-router.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:55:56 Last Seen2023-11-12 15:19:17 Times Seen188 Hash 3bea08be6acbac6fc4529c0822a2f3f6 a020a847c2da64263b209b05089330fe64052d1d 108003ecf366061ea88c77eb4d571c9baa541968504e87e94d5a6335c691f78a Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-sanitize.min.js	7.0 kB	2023-03-07	2023-11-12
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-sanitize.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:20:01 Last Seen2023-11-12 15:19:17 Times Seen188 Hash 08f2e1c39a2b72d0fc6a100950d6393c 8914ca977251e64f3f7b159984b9495e69fe18c7 4bc6f69806d6897c2264cb9cd97ed74cf9c50657b8c14ad7dc785bfbb18068cc Loading...

	unknown	114 B	2023-04-11	2024-05-10
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:12:58 Last Seen2024-05-10 22:55:19 Times Seen2014 Hash 8ec6fd39187a6aea9c23d95a89494113 fa75b0d5d9073a883cf629e70243eac3df76b196 57dfef0f44c3c8059c0734329caca94be46be92fe2b29675b58583731b84dc34 Loading...

	unknown	606 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash a979b8ca2935045fb5c85d8b79a27d83 ddaac8b9e2e693d8b81b766b33c37f21cbe14987 0014477d125ebf0dd1c127a5058df0e85ef038c1f6bf06f7dc197e777ca5243a Loading...

	unknown	615 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash a49a078f6274b2fda596282be6483d1d 1805db377cd5cc943cedd922229ac3d0c174cfce b424707153fb8f501fe200137488e086f78f18b1f9f5fc68e165ade20f4b981d Loading...

	unknown	606 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash 46a0b03ee5cfeb27659651db1d88220c 32d79232152e144ac5e7a8af059d31aa6faf2cdb df1c046f1acd216ea4d461a9eac0a47ab6216aa6deb7ba53ef88833bc9421db0 Loading...

	unknown	507 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash 8fbdb2acef2c6589246b4afc4c4a4905 4f6fc06e0aacb4389032b6982d1a5e80ad3d87ca 1befd3519fc8ef4f5fd05c19ca5f08ae5a3a43feacb2aacc77bbdcd1bd7affda Loading...

	offer.primedrawclub.com/views/products/lib/v7-lite/packages/card.min.js	59 kB	2023-03-07	2024-04-06
Pretty URL offer.primedrawclub.com/views/products/lib/v7-lite/packages/card.min.js IP 20.49.104.48 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:57 Last Seen2024-04-06 06:20:40 Times Seen12198 Hash 30e93a747ba8285615cfbc3643dc1a62 3a55f9d6ac708f519d351ea0b69083457778ec9d 18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025 Loading...

	unknown	498 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen92 Hash 0863e7d7fecc196faf3b71c9ed60a138 e0e5b1b5e28e281487e85f82e86b52204d51ed40 0ad81bfb752ef19f52e32160764ae5bc9f35719fdeb501e5982933773ed2082e Loading...

	unknown	606 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen93 Hash 35ecce5709c681a55c3b894bbb2ccd6e 2d562c5ac2e47c9288df3d87d3df426ddf3d0251 2e0c1dd679a4aab88ec3e218a912fb0c6a3844dcc61e4d48c3a6ec216569c9c9 Loading...

	unknown	606 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen93 Hash 0e4811b18359a5e841c31a6253a3ae7f 1b0a2b8f1111a64f05354b4cffc7f0e7a96bd7bc ddb380a3b61f3626fd6f4e024eeddd83529c347fa75ca2e70c4042d19a4cdcb0 Loading...

	unknown	277 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash a3e171c8ecd96bcd349b7272164e291c 3ef7e3b34a8b87622049d9097d560d2b4ec7010e a06077b080013804a0d0a015e5a6570bb752f0ef1776a1cbabd80f0ffb654954 Loading...

	unknown	603 B	2023-05-11	2023-11-12
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-11 06:08:55 Last Seen2023-11-12 15:19:17 Times Seen89 Hash 34ac199e422999917e4fa4bd1acfa7fd d4b0783c49f34c65e4a552bff855bcdf4225d361 ecde9880b974da9bce5bf4c1ac15f1a4771cee8801de4cd4414a034be2c7e8b5 Loading...

HTTP Transactions (38)

URL IP Response Size

track.uptruckthat.com/redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D

18.192.249.87

379 B

URL
track.uptruckthat.com/redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D
IP
18.192.249.87:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document, ASCII text, with very long lines (379), with no line terminators
Size
379 B (379 bytes)
Hash
737541e06d38423b9beca2a33b306da6
434691e7c9edec6d6805157e6f8550ec2609ba41
140056a2df1e16026c09cf7fb62f44de82caa93942da397dfd00f1ad46d45416

HTTP Headers

GET /redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D HTTP/1.1
Host: track.uptruckthat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 15:17:49 GMT
content-type: text/html;charset=UTF-8
content-length: 379
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2

www.a2ccecmtrk.com/8PH9LTL/6LFQ5HHQ/?source_id=d3fa545a-a903-4b2a-b3b3-37c04d28fe81&sub3=w9gm262v8hpc9f2pi2i6cd9g

35.241.26.240

302 Found

153 B

URL User Request GET HTTP/2
www.a2ccecmtrk.com/8PH9LTL/6LFQ5HHQ/?source_id=d3fa545a-a903-4b2a-b3b3-37c04d28fe81&sub3=w9gm262v8hpc9f2pi2i6cd9g
IP
35.241.26.240:443
ASN
#15169 GOOGLE

Certificate
IssuerSectigo Limited
Subjectwww.alphaatrk.com
Fingerprint67:33:9B:E6:FD:9D:20:CD:F1:7F:AE:CC:96:E1:99:47:77:7F:30:F1
ValidityThu, 23 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
HTML document, ASCII text
Size
153 B (153 bytes)
Hash
3c3ad7832293cf9da522318a6c6229c7
61222bf3fcfd7ef7961c85abc3d0f8c0b5a1a174
a7cf9febc592569d36135a70565a5f08a1d7bc6f3e16821ebcc44affc536e6b2

HTTP Headers

GET /8PH9LTL/6LFQ5HHQ/?source_id=d3fa545a-a903-4b2a-b3b3-37c04d28fe81&sub3=w9gm262v8hpc9f2pi2i6cd9g HTTP/1.1
Host: www.a2ccecmtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Mon, 29 May 2023 15:17:50 GMT
content-type: text/html; charset=utf-8
content-length: 153
accept-ch: Sec-Ch-Ua-Platform-Version
location: https://link.trkhs.com/CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81
set-cookie: uniqueClick_6LFQ5HHQ=beda3f2c-6ca3-41c5-ab08-6340fafa8d21:1685373470; Path=/; Expires=Mon, 29 May 2023 20:17:50 GMT; Secure; SameSite=None
transaction_id=e3ae038f86b648fb8479057bb406c5e1; Path=/; Expires=Sun, 27 Aug 2023 15:17:50 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 948fdf50-1e0a-4397-80a5-6dba4af8b3c8
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

link.trkhs.com/CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81

52.169.78.163

302 Found

0 B

URL User Request GET HTTP/1.1
link.trkhs.com/CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81
IP
52.169.78.163:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerDigiCert, Inc.
Subjectlink.trkhs.com
FingerprintF5:A7:3B:93:17:1B:7B:6F:C6:F7:17:07:6D:69:A3:8A:DC:51:20:E1
ValidityWed, 05 Apr 2023 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81 HTTP/1.1
Host: link.trkhs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Content-Length: 0
Date: Mon, 29 May 2023 15:17:50 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Request-Context
Cache-Control: no-cache, no-store, must-revalidate
Expires: -1
Location: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Pragma: no-cache
Set-Cookie: V_D50F=638209702702627807|||||; domain=link.trkhs.com; expires=Sat, 29-May-2123 15:17:50 GMT; path=/; secure; SameSite=None
MREvt=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819; domain=link.trkhs.com; expires=Sat, 29-May-2123 15:17:50 GMT; path=/; secure; SameSite=None
MRPEvt=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819; domain=link.trkhs.com; expires=Sat, 29-May-2123 15:17:50 GMT; path=/; secure; SameSite=None
TRFK_EventId: NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:dfa34523-a7bd-4de5-a276-fe480e1ef8cd
X-Powered-By: ASP.NET

offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds

20.49.104.48

200 OK

23 kB

URL User Request GET HTTP/1.1
offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (749), with CRLF, LF line terminators
Size
23 kB (23409 bytes)
Hash
5345ba3cf3feb7895b3e31052363d573
f90f6deffea98cd6142b778081ad8275832bbc28
704fa1bb385bf2992bb69ac1c9534e815510b4558775ee5d063362a49ca73578

HTTP Headers

GET /QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 23409
Content-Type: text/html; charset=utf-8
Date: Mon, 29 May 2023 15:17:52 GMT
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; path=/; secure; SameSite=None
PSESS=Id=202305291517510352154703577&LA=133298470710352888; expires=Wed, 29-May-3022 15:17:51 GMT; path=/; secure
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

cdnjs.cloudflare.com/ajax/libs/es6-shim/0.33.3/es6-shim.min.js

104.17.25.14

200 OK

12 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/es6-shim/0.33.3/es6-shim.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (32019)
Size
12 kB (12540 bytes)
Hash
94a9dd5eef0ae582b868627606ac4a7b
e4a502aee212d308c78f73578363ba0f85b320a6
a6fd7482cb9f3aed074fbdb7d22c3ea1d8601f694f72cef50c9ed08475654a5c

HTTP Headers

GET /ajax/libs/es6-shim/0.33.3/es6-shim.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 29 May 2023 15:17:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 12540
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e54-bd42"
last-modified: Mon, 04 May 2020 16:09:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 10604039
expires: Sat, 18 May 2024 15:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dve8WcqldS%2FcudIQS%2FadDzul%2F9Sha0Lkdi5XlsVsNkTHXKRcS4J0d30yaQxZ%2BIA7AYRAL1qL07QwGzRYvEWzGmCK8x3Nb1xL%2FON0tN1X1KRSlWKewhPp9yNpp4XT9fGc1Uo7qiwd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cefb4eacea00b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/systemjs/0.19.20/system-polyfills.js

104.17.25.14

200 OK

4.0 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/systemjs/0.19.20/system-polyfills.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (13857)
Size
4.0 kB (4019 bytes)
Hash
20a9e2c110012afe9eeaa40908898e48
064ab212cfd9e125474ae3bbb600c366b31e79cb
950c228a7493000da1dda78f709bb67dc6ab13f27333099e513aba1f63a346db

HTTP Headers

GET /ajax/libs/systemjs/0.19.20/system-polyfills.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 29 May 2023 15:17:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 4019
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ff8-3697"
last-modified: Mon, 04 May 2020 16:16:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 16834699
expires: Sat, 18 May 2024 15:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=okySez6%2Bdbllm2l6RyUCDqF9dEShyIXFNTs%2FgttFuklRCfFtyGN6GwVkqpP1CXKCmSW2p9yyItbq8n5OodWmzyR%2Ba5g%2BgbVdzOhe2%2Fp3IfQPRoqYo7MyVVQzEnr2gVkk%2FKRxWT1u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cefb4eadeae0b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js

151.101.65.229

200 OK

24 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT

File type
ASCII text, with very long lines (65299)
Size
24 kB (24376 bytes)
Hash
7ccd9d390d31af98110f74f842ea9b32
a85e681624c91a106a514c31eacf80de817b2cc3
f5210fa3e7f0245a4c51eb7f280092c0ef99fdd28c45e17dab8cc5854fdf4fd3

HTTP Headers

GET /npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"13131-qF5oFiTJGhBqUUwx6s+A3oF7LMM"
content-encoding: br
accept-ranges: bytes
date: Mon, 29 May 2023 15:17:52 GMT
age: 6488288
x-served-by: cache-fra-eddf8230075-FRA, cache-bma1666-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24376
X-Firefox-Spdy: h2

offer.primedrawclub.com/views/products/lib/v7-lite/style/bootstrap_5.min.css

20.49.104.48

200 OK

36 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/style/bootstrap_5.min.css
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65307)
Size
36 kB (35902 bytes)
Hash
e1aebbfb4234e7cc3b044060a6ddd07b
349f22998a94f211cd142cd46427c18ee592b04b
34642785562ffe09f193a2ec34ff70e1af0abf170d601208368108fe526292ef

HTTP Headers

GET /views/products/lib/v7-lite/style/bootstrap_5.min.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 35902
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D97858602A9980"
Expires: Tue, 30 May 2023 14:36:07 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:35 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/style/forms_v4.css

20.49.104.48

200 OK

942 B

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/style/forms_v4.css
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
942 B (942 bytes)
Hash
8c2557e245c6e7e27f3a03af856053c5
1d138bf04135817fa38eb7810001cd3782af457d
3e6cb82ea40cc1afe230641b3e679740420ecd424395684aa4c1b9491cc471f5

HTTP Headers

GET /views/products/lib/v7-lite/style/forms_v4.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D97858615BC680"
Expires: Tue, 30 May 2023 14:36:07 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:37 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/style/animate.min.css

20.49.104.48

200 OK

6.8 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/style/animate.min.css
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (57790), with CRLF line terminators
Size
6.8 kB (6818 bytes)
Hash
83156cbc61728bc80174ac1eb26f1a34
da0d19a8e4fbe5de92d8385074b91d32c223921e
220b12c5dcb405684b22aa4a7ab6ff7eaa5d6c3c91814f0c69d281d5b3755d69

HTTP Headers

GET /views/products/lib/v7-lite/style/animate.min.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 6818
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978585E60D600"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:32 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/Products/7711/assets/css/custom.css

20.49.104.48

200 OK

2.5 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/assets/css/custom.css
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.5 kB (2540 bytes)
Hash
978b5925fe78e7c44fb91cbe7a5c59dd
fcb173d0ba818111167849e3220aecd9c45ddab4
7fcd869e2928d9a9de509530ab13874f6aa305fc3cf0e695df637f7874091ceb

HTTP Headers

GET /views/Products/7711/assets/css/custom.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 2540
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D97DB1687F5900"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:21:30 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/style/main.css

20.49.104.48

200 OK

0 B

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/style/main.css
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /views/products/lib/v7-lite/style/main.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97858615BC680"
Expires: Tue, 30 May 2023 14:36:07 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:37 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/Products/7711/assets/css/style.css

20.49.104.48

200 OK

0 B

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/assets/css/style.css
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /views/Products/7711/assets/css/style.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB167E6C280"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:21:29 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.9.1/font/bootstrap-icons.min.css

104.17.25.14

200 OK

9.1 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.9.1/font/bootstrap-icons.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
9.1 kB (9146 bytes)
Hash
09ba7a74dd8a7bc39210ce7092fd1946
bab2719a48ec441630df2c8ff8db1ade6fc91f03
ab473681c33f3651348191decd30c331e854797b26745f60bf867fec058c4f53

HTTP Headers

GET /ajax/libs/bootstrap-icons/1.9.1/font/bootstrap-icons.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 29 May 2023 15:17:52 GMT
content-type: text/css; charset=utf-8
content-length: 9146
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62d371f8-23ba"
last-modified: Sun, 17 Jul 2022 02:20:40 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 24693176
expires: Sat, 18 May 2024 15:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DzN6xqhnPDmkUd%2F%2BFtORX6%2BhXTf9%2FNQziirxdZy%2BkfsACOpRM7N5TBptKyalxEwQa3kVYUzzlfqD0ecA8gD6A3kqVgHQ3vrr%2B42nI9ox3hvlfGu9%2B7F5bLePCN%2B1HLtwJJ%2FB1sUx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cefb4edff2fb512-OSL
alt-svc: h3=":443"; ma=86400

offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-cookies.min.js

20.49.104.48

200 OK

988 B

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-cookies.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (555), with CRLF line terminators
Size
988 B (988 bytes)
Hash
6a2ff4296c3606d463af1dbfcb8eec3d
8d35ef2d836ad8bc598de20350c9b2f812b3f64d
a3625e996727e005e693f1ba21461b33ff9f829db898c603839da7ce4529b29a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/angular-cookies.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 988
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978584E48F680"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:05 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-sanitize.min.js

20.49.104.48

200 OK

4.2 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-sanitize.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (1257), with CRLF line terminators
Size
4.2 kB (4171 bytes)
Hash
08f2e1c39a2b72d0fc6a100950d6393c
8914ca977251e64f3f7b159984b9495e69fe18c7
4bc6f69806d6897c2264cb9cd97ed74cf9c50657b8c14ad7dc785bfbb18068cc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/angular-sanitize.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 4171
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978584EE18D00"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:06 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.validate.min.js

20.49.104.48

200 OK

8.5 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.validate.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (21445), with CRLF line terminators
Size
8.5 kB (8492 bytes)
Hash
cd42a643283a57205e70a8ed43038c55
e27a56d8cf81304f4b40b24de90052c67bbccf37
df3cd737c392d248e8e3ebb8912e1cc65d6e342d6a2ee7ee4a6c114c141f1749

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/jquery.validate.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 8492
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785853A64100"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:14 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular.min.js

20.49.104.48

200 OK

78 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (672), with CRLF line terminators
Size
78 kB (77559 bytes)
Hash
378cd06007cfc003445150131b4745cb
eaa44aa0db490b9f2371d39026ca9dd2ec3541aa
4fb8b923f26b0241c0189dc25ed27c0b06641d89b29dd37866f79fbd9d3b6834

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/angular.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978585012BA00"
Expires: Tue, 30 May 2023 15:17:52 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:08 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/ui-router.min.js

20.49.104.48

200 OK

45 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/ui-router.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (64987), with CRLF line terminators
Size
45 kB (44943 bytes)
Hash
3bea08be6acbac6fc4529c0822a2f3f6
a020a847c2da64263b209b05089330fe64052d1d
108003ecf366061ea88c77eb4d571c9baa541968504e87e94d5a6335c691f78a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/ui-router.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 44943
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785856089B00"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:18 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery-3.6.0.min.js

20.49.104.48

200 OK

40 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery-3.6.0.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
40 kB (39756 bytes)
Hash
7c14a783dfeb3d238ccd3edd840d82ee
ad886e472b3557f3dc7dfa2bc43468ab8d1cef5b
80f04717f32ea0320c5e8618fbacedd1fee3a8775ad8292140a6113551d4b5b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/jquery-3.6.0.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 39756
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785852751400"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:12 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/cleave.min.js

20.49.104.48

200 OK

7.9 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/cleave.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (20970)
Size
7.9 kB (7939 bytes)
Hash
9d800c462d0440e0e0791df6bdb2745f
c93af0d1b19051513bc6751936c5c015b59f9980
7eb194c2648de022cb8f29399b9f4409d5ec0cc5314d6e4eea175c78d1d5089a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/cleave.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 7939
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785851DC7D80"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:11 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/card.min.js

20.49.104.48

200 OK

18 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/card.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (51786)
Size
18 kB (17865 bytes)
Hash
30e93a747ba8285615cfbc3643dc1a62
3a55f9d6ac708f519d351ea0b69083457778ec9d
18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/card.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 17865
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978585143E700"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:10 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/anime.min.js

20.49.104.48

200 OK

8.6 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/anime.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (17638)
Size
8.6 kB (8633 bytes)
Hash
572d66e85091711b6ee76609573a8364
332031949d78a49e8a18611556253660574e47db
5cbda29ea5096ac9404c59c77493a2f467d0eb4a27f16c750b61fc0d888dd716

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/anime.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 8633
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785850AB5080"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:09 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.payment.min.js

20.49.104.48

200 OK

5.0 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.payment.min.js
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (388), with CRLF line terminators
Size
5.0 kB (5040 bytes)
Hash
e9ed3ffbf7ac1a11ff859c9651e2d6c6
bae93c0eb1264b20d22dd8263f57070b61c25936
f52b083a7f56ae0cf2eea8c5c74e203e9dcd30a8167354d574fbbcc9c4d6780a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/products/lib/v7-lite/packages/jquery.payment.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 5040
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785852751400"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:12 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

fonts.googleapis.com/css2?family=Source+Sans+Pro:wght@200;300;400;500;600;700;800&display=swap

142.250.74.106

200 OK

14 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Source+Sans+Pro:wght@200;300;400;500;600;700;800&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
gzip compressed data, max compression\012- data
Size
14 kB (13843 bytes)
Hash
e8fd2df40322cd09fbe276f110d05a85
18d036ef32b0046ad21e5ca53cfe9d15fc10e8d3
d27774fc2092c137e60e57f103ca9e69d00fb4e579e0b34fc04c857770caf714

HTTP Headers

GET /css2?family=Source+Sans+Pro:wght@200;300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 29 May 2023 15:17:53 GMT
date: Mon, 29 May 2023 15:17:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

offer.primedrawclub.com/views/Products/7711/templates/core.html

20.49.104.48

200 OK

192 B

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/templates/core.html
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
192 B (192 bytes)
Hash
2eab0822b029ee2dbde4adc41d10a087
096227f22af2d41d03d7cc55d5d0e2e85eb18c59
ec57bdbef1d99370056c927948a494078a471057d394d0f5e4a12400a9de0cfb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/Products/7711/templates/core.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 192
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "f8f14a80b17dd91:0"
Last-Modified: Wed, 03 May 2023 11:22:09 GMT
Vary: Accept-Encoding

offer.primedrawclub.com/views/Products/7711/templates/footer.html

20.49.104.48

200 OK

0 B

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/templates/footer.html
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/Products/7711/templates/footer.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
ETag: "815ea80b17dd91:0"
Last-Modified: Wed, 03 May 2023 11:22:10 GMT

offer.primedrawclub.com/views/Products/7711/favicon.png

20.49.104.48

200 OK

6.3 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/favicon.png
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
6.3 kB (6290 bytes)
Hash
782ebb1d244e1bcc83357a5bce408d74
33335f5ca7577b935077362217bf73a6b45a007f
2a912fc64918bc6a350edf455500b10f528969de4994f0c50f7a3af32152d93d

HTTP Headers

GET /views/Products/7711/favicon.png HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 6290
Content-Type: image/png
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB182B93700"
Expires: Tue, 30 May 2023 00:57:54 GMT
Last-Modified: Wed, 03 May 2023 11:22:14 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/Products/7711/views/homepage.html

20.49.104.48

200 OK

17 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/views/homepage.html
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
17 kB (16799 bytes)
Hash
efe874d1592d6474957611b544879460
e7d3659b5363eeefe94942b535ca2e551c9f9bfb
b3799828eb48b928a3ec0de1c416614b8564b18d21e411bf4e5f4a5132edf4a1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/Products/7711/views/homepage.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 16799
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "8079c1bab37dd91:0"
Last-Modified: Wed, 03 May 2023 11:38:07 GMT
Vary: Accept-Encoding

offer.primedrawclub.com/views/Products/7711/templates/header.html

20.49.104.48

200 OK

0 B

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/templates/header.html
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /views/Products/7711/templates/header.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
ETag: "144f9381b17dd91:0"
Last-Modified: Wed, 03 May 2023 11:22:12 GMT

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:36 GMT
expires: Thu, 23 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
age: 486077
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Size
13 kB (12924 bytes)
Hash
4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4

HTTP Headers

GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 03:13:14 GMT
expires: Sun, 26 May 2024 03:13:14 GMT
cache-control: public, max-age=31536000
age: 216279
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dus-flag.png

20.49.104.48

404 Not Found

103 B

URL GET HTTP/1.1
offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dus-flag.png
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
103 B (103 bytes)
Hash
96c5637e1eb8f8f8c34172f2d23eafc6
2a416f86c3c9e26f9c34bf1f8b1bb5daa46e86f9
90b2d35cd5e08370ed20db81197dd9da1a4dbb421f71293fd5733ea49eb7b3e1

HTTP Headers

GET /%7B%7B$root.imagePath%7D%7Dus-flag.png HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Length: 103
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT

offer.primedrawclub.com/views/Products/7711/assets/img/icon-cart.jpg

20.49.104.48

200 OK

1.2 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/assets/img/icon-cart.jpg
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 100x100, components 3\012- data
Size
1.2 kB (1164 bytes)
Hash
50c1e3b00e078e14ddd887fb84e0cb9d
3a0f73889ce874f24dd328de53334e750b2dbe83
032291ce14b39569f2d7101c63ea52377108f20a17b2c70cfd19f6f063a1ec3c

HTTP Headers

GET /views/Products/7711/assets/img/icon-cart.jpg HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 1164
Content-Type: image/jpeg
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB17DF48300"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:22:06 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/views/Products/7711/assets/img/us-flag.png

20.49.104.48

200 OK

3.7 kB

URL GET HTTP/1.1
offer.primedrawclub.com/views/Products/7711/assets/img/us-flag.png
IP
20.49.104.48:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.7 kB (3707 bytes)
Hash
701600eb4265f103084cf58cee663e89
cae157eb6a22ae0692404661b2f554e663f414d4
2d1bef872851eff0b8f19d536103cf0b6431534ac1cbaebe1f9138f12eac7f8a

HTTP Headers

GET /views/Products/7711/assets/img/us-flag.png HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 3707
Content-Type: image/png
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB17D5BEC80"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:22:05 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135

offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dicon-cart.jpg

0.0.0.0

0 B

URL GET
offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dicon-cart.jpg
IP
0.0.0.0:0
ASN
#0

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /%7B%7B$root.imagePath%7D%7Dicon-cart.jpg HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size
13 kB (13036 bytes)
Hash
0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0

HTTP Headers

GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 17:39:39 GMT
expires: Sun, 26 May 2024 17:39:39 GMT
cache-control: public, max-age=31536000
age: 164294
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins:300,400,500,600,700

142.250.74.106

200 OK

5.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (5383), with no line terminators
Size
5.3 kB (5263 bytes)
Hash
f986b4ef808cf5c5ab1bca1e7529f90b
4603da15fb526489041d94431721f12550da9e8e
13a5cb26f894a2f8381fd9c6dd4ff301206429cdbc4a1ef4002e80bec0e69d31

HTTP Headers

GET /css?family=Poppins:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 29 May 2023 15:17:52 GMT
date: Mon, 29 May 2023 15:17:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (38)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations