Report Overview

  1. Submitted URL

    luxuriant-periodic-witness.glitch.me/NFCULogon.HTML?entity=4892463

  2. IP

    34.194.135.141

    ASN

    #14618 AMAZON-AES

  3. Submitted

    2023-01-31 13:56:52

    Access

  4. Website Title

  5. Final URL

  6. urlquery detections

    Phishing - Navy Federal Credit Union

    Suspicious - Suspicious JS code

Detections

  1. urlquery

    28

  2. Network Intrusion Detection

    167

  3. Threat Detection Systems

    4

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-03-13T05:09:10Z
luxuriant-periodic-witness.glitch.meunknown
r3.o.lencr.org3442020-12-02T09:52:13Z2023-03-13T05:09:07Z
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-03-13T05:09:13Z
e1.o.lencr.org61592021-08-20T09:36:30Z2023-03-13T05:21:46Z
cdn.glitch.com1183562017-10-27T15:29:36Z2023-03-13T03:32:05Z
freezing-sedate-crown.glitch.meunknown2023-01-29T21:38:04Z2023-01-31T14:56:54Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-03-13T05:09:16Z
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-03-13T05:09:35Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-03-13T05:09:14Z
ocsp.sca1b.amazontrust.com10152017-03-03T16:20:51Z2019-03-27T05:05:54Z
cdn.glitch.me1059282018-06-21T17:11:59Z2023-03-13T03:33:13Z
cloud.typenetwork.com226132016-06-15T09:16:58Z2023-03-13T05:37:34Z
cloud.webtype.com505932017-01-30T06:21:03Z2023-03-13T05:37:34Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IPInternal IP
mediumClient IPInternal IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
high 34.194.135.141Client IP
medium 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
high 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
medium 34.194.135.141Client IP
high 34.194.135.141Client IP
mediumClient IPInternal IP
mediumClient IPInternal IP
mediumClient IP 54.226.70.29

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumfreezing-sedate-crown.glitch.me//NFCU.HTMLPhishing
mediumfreezing-sedate-crown.glitch.me//NFCU.HTMLPhishing

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (18)

HTTP Transactions (39)

URLIPResponseSize
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
luxuriant-periodic-witness.glitch.me/NFCULogon.HTML?entity=4892463
34.194.135.141200 OK2.8 MB
push.services.mozilla.com/
54.201.77.8101 Switching Protocols0 B
luxuriant-periodic-witness.glitch.me/Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%C2%AE_files/ip.js.download
34.194.135.141404 Not Found3.7 kB
luxuriant-periodic-witness.glitch.me/Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%C2%AE_files/font-awesome.min.css
34.194.135.141404 Not Found3.7 kB
luxuriant-periodic-witness.glitch.me/Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%C2%AE_files/saved_resource.html
34.194.135.141404 Not Found3.7 kB
luxuriant-periodic-witness.glitch.me/Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%C2%AE_files/saved_resource(1).html
34.194.135.141404 Not Found3.7 kB
e1.o.lencr.org/
23.33.119.27200 OK345 B
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK471 B
luxuriant-periodic-witness.glitch.me/Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%C2%AE_files/saved_resource(3).html
34.194.135.141404 Not Found3.7 kB
luxuriant-periodic-witness.glitch.me/Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%C2%AE_files/saved_resource(4).html
34.194.135.141404 Not Found3.7 kB
luxuriant-periodic-witness.glitch.me/Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%C2%AE_files/saved_resource(2).html
34.194.135.141404 Not Found3.7 kB
e1.o.lencr.org/
23.33.119.27200 OK345 B
cdn.glitch.com/d7f4f279-e13b-4330-8422-00b2d9211424%2FGlitch-Error-Rainbow-Mug-hires.png?v=1595481653593
18.66.248.111301 Moved Permanently0 B
cloud.typenetwork.com/css/3a8e55c6-b1f3-4659-99eb-125ae72bd084.css
151.101.129.91301 Moved Permanently0 B
cloud.typenetwork.com/css/3a8e55c6-b1f3-4659-99eb-125ae72bd084.css
151.101.129.91301 Moved Permanently0 B
cloud.typenetwork.com/css/3a8e55c6-b1f3-4659-99eb-125ae72bd084.css
151.101.129.91301 Moved Permanently0 B
cloud.typenetwork.com/projects/5027/fontface.css/
151.101.129.91200 OK889 B
cdn.glitch.me/d7f4f279-e13b-4330-8422-00b2d9211424%2FGlitch-Error-Rainbow-Mug-hires.png
54.230.111.115200 OK170 kB
freezing-sedate-crown.glitch.me//NFCU.HTML
54.226.70.29206 Partial Content901 kB
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
freezing-sedate-crown.glitch.me//NFCU.HTML
54.226.70.29200 OK21 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
34.120.237.76200 OK14 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK10 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
34.120.237.76200 OK8.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK11 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK6.8 kB
cloud.webtype.com/css/3a8e55c6-b1f3-4659-99eb-125ae72bd084.css
172.67.167.75301 Moved Permanently0 B