Report - aave.waterfall.network/markets

Report Overview

Submitted URL
aave.waterfall.network/markets
IP
78.46.36.131
ASN
#24940 Hetzner Online GmbH
Submitted
2023-02-08 14:41:46
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
98

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	34.214.112.249
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	64 kB	34.120.237.76
rpc.waterfall.network	unknown	2021-12-01T10:18:06Z	2023-03-01T02:02:47Z	1.9 kB	3.4 kB	3.125.75.237
explorer.waterfall.network	unknown	2021-10-10T10:45:38Z	2023-02-08T15:41:36Z	415 B	4.6 kB	78.46.36.131
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	340 B	963 B	104.18.32.68
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	4.1 kB	11 kB	23.36.76.226
aave.waterfall.network	unknown	2022-02-04T13:33:12Z	2023-02-08T15:41:33Z	10 kB	2.7 MB	78.46.36.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-02-08	medium	aave.waterfall.network/markets	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet
2023-02-04	medium	aave.waterfall.network/	Crypto/Wallet

PhishTank

Scan Date	Severity	Indicator	Alert
2023-02-06	medium	aave.waterfall.network/markets	Other
2023-02-06	medium	aave.waterfall.network/static/css/4.5dedc6b1.chunk.css	Other
2023-02-06	medium	aave.waterfall.network/static/js/main.5c7ee652.chunk.js	Other
2023-02-06	medium	aave.waterfall.network/static/js/4.8e30896e.chunk.js	Other
2023-02-06	medium	aave.waterfall.network/favicon64.png	Other
2023-02-06	medium	aave.waterfall.network/favicon32.ico	Other
2023-02-06	medium	aave.waterfall.network/static/media/background.47cc6935.svg	Other
2023-02-06	medium	aave.waterfall.network/fonts/RobotoRegular/RobotoRegular.woff	Other
2023-02-06	medium	aave.waterfall.network/static/media/aaveLogo.d92a06d2.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/aavev2Active.f936c591.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/aavev2.437c02f0.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/fr.2b73cc5a.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/it.1f95c8f2.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/es.30eb0364.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/tr.0eb94b06.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/vi.5d0e6fe0.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/cn.acb9cced.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/ja.e2f58c0d.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/ko.b6392a9e.svg	Other
2023-02-06	medium	aave.waterfall.network/static/media/pt.cf2d92a6.svg	Other
2023-02-06	medium	aave.waterfall.network/fonts/RobotoMedium/RobotoMedium.woff	Other
2023-02-06	medium	aave.waterfall.network/fonts/RobotoBold/RobotoBold.woff	Other
2023-02-06	medium	aave.waterfall.network/fonts/RobotoLight/RobotoLight.woff	Other
2023-02-06	medium	aave.waterfall.network/static/media/arrows.af2e11b4.svg	Other

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-08	medium	aave.waterfall.network/markets	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	aave.waterfall.network/markets	2.6 kB	2023-03-13	2023-03-13
Pretty URL aave.waterfall.network/markets IP 78.46.36.131 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:12:11 Last Seen2023-03-13 19:42:51 Times Seen1 Hash 2001013532a4d986ff71aecb481be35d f30c48445064906a45160e4c91d43c6ad09fa95d 6079cc1ef1b9ae1f8505d830467a45acef596d1ff54ee4eb02793d8b80da4fe4 Loading...

	aave.waterfall.network/static/js/main.5c7ee652.chunk.js	1.4 MB	2023-03-13	2023-03-13
Pretty URL aave.waterfall.network/static/js/main.5c7ee652.chunk.js IP 78.46.36.131 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:12:11 Last Seen2023-03-13 19:42:51 Times Seen1 Hash b11554453e85de59973c1e84835d85d1 d3c049a5db85ca9886b981e9fb132dea34196dcf 5463f0ea0beb1d59f236becaadb6f7083e117d5958fe8d89321aadb0d56c537c Loading...

	aave.waterfall.network/static/js/4.8e30896e.chunk.js	6.6 MB	2023-03-13	2023-03-13
Pretty URL aave.waterfall.network/static/js/4.8e30896e.chunk.js IP 78.46.36.131 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:12:11 Last Seen2023-03-13 19:42:51 Times Seen1 Hash a3c871bd10994ac0d852718beb8b25a1 6bd7f212aec737bdb80ae8098da7a70d32340c7b 50cd6a90c135196278edd9fd2523b318f6c1282a11a8ffb0ae42db531a3edfec Loading...

HTTP Transactions (53)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14128
Expires: Wed, 08 Feb 2023 18:37:01 GMT
Date: Wed, 08 Feb 2023 14:41:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Wed, 08 Feb 2023 16:17:15 GMT
Date: Wed, 08 Feb 2023 14:41:33 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 14:34:13 GMT
content-type: application/json
age: 440
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10044
Expires: Wed, 08 Feb 2023 17:28:57 GMT
Date: Wed, 08 Feb 2023 14:41:33 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: xpn4fGqJXmGNIjVBQcNf51nOgQP/IEhKQ/ZwuWoIDF5cIo1cfnX9a8saz3zjXP4b9fD6yhMKG6s=
x-amz-request-id: 95ZWNYPDV0ZFFSRB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 14:35:58 GMT
age: 335
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
3d73a4771eb896244eecf37de3d4490e
4a1a7d1372d5da187ee6a8328a16996b109f4051
5d8b62ee59d3eb5e3c699b2d8e8b5c99b2a743883dbe23fdd9114d3fac8abc40

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 08:01:37 GMT
Expires: Tue, 14 Feb 2023 08:01:36 GMT
Etag: "4a1a7d1372d5da187ee6a8328a16996b109f4051"
Cache-Control: max-age=493802,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7965207888ee0afe-OSL

aave.waterfall.network/markets

78.46.36.131

200 OK

2.0 kB

URL HTTP/1.1
aave.waterfall.network/markets
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4754), with no line terminators
Size
2.0 kB (2049 bytes)
Hash
0c7fe70069660162de37014abfdcdd1e
05f2bbd7bc22f376ba0463086d4ba9106eec072c
12f40bc0479ac865fbcf7d78b21a98b76d222a55970bb802133aa41e07692581

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing

HTTP Headers

GET /markets HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="index.html"
Accept-Ranges: bytes
ETag: "aa0453478e04814500a35e02a60f62eb8359bfb2"
Vary: Accept-Encoding
Content-Encoding: gzip

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:41:33 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

aave.waterfall.network/static/css/4.5dedc6b1.chunk.css

78.46.36.131

200 OK

2.5 kB

URL HTTP/1.1
aave.waterfall.network/static/css/4.5dedc6b1.chunk.css
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (11287)
Size
2.5 kB (2495 bytes)
Hash
82e96fb9721b3448ae4b0c226bd682dd
51a8d0918a2dfb76294191366fe5d4052834580e
8b98ef5f9c9f6aae1b56b64a6a9e0df14640d90779be3ba99bbfd918686e2794

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/css/4.5dedc6b1.chunk.css HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="4.5dedc6b1.chunk.css"
Accept-Ranges: bytes
ETag: "da8e7c567414db4aba9111be0811b7fb0aeed085"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/static/js/main.5c7ee652.chunk.js

78.46.36.131

200 OK

246 kB

URL HTTP/1.1
aave.waterfall.network/static/js/main.5c7ee652.chunk.js
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (65536), with no line terminators
Size
246 kB (246254 bytes)
Hash
71f0d782c21594daf1e7c30efbb58fdb
45813211ff4525e22cd75a4d9ee18d549282ad66
406d7e4846928acfe3182f2836abab221514d791502dc325d03d554028dbb893

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/js/main.5c7ee652.chunk.js HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="main.5c7ee652.chunk.js"
Accept-Ranges: bytes
ETag: "1ac19876de53b7586cb60521e113e80537fbafca"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/static/js/4.8e30896e.chunk.js

78.46.36.131

200 OK

2.0 MB

URL HTTP/1.1
aave.waterfall.network/static/js/4.8e30896e.chunk.js
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (65462)
Size
2.0 MB (2000194 bytes)
Hash
291a6d1ee08e2741c63015e4c5bc8575
6494f84592ffbe14cb4a3458c18a13f2d792edd0
c7b633fdbdd041fa4cd2a87805788f60813c3e4101299d4969409730efc08044

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/js/4.8e30896e.chunk.js HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="4.8e30896e.chunk.js"
Accept-Ranges: bytes
ETag: "5ffcc9144ea97a8ae2d7833d5d84192421992397"
Vary: Accept-Encoding
Content-Encoding: gzip

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 14:14:52 GMT
age: 1602
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4852
Expires: Wed, 08 Feb 2023 16:02:26 GMT
Date: Wed, 08 Feb 2023 14:41:34 GMT
Connection: keep-alive

push.services.mozilla.com/

34.214.112.249

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.112.249:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: h4emzEDkaIs00pLxkSgxGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cuQcxIZoe3AdTcb8yNI2AAsK+5U=

aave.waterfall.network/favicon64.png

78.46.36.131

200 OK

1.9 kB

URL HTTP/1.1
aave.waterfall.network/favicon64.png
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 64 x 64, 8-bit/color RGB, non-interlaced\012- data
Size
1.9 kB (1902 bytes)
Hash
1961577a92361d60c7066f575a37d466
e1cc8cfb0bce8f6e94171b362800a50df3c487e1
5dca3e91aff5fa797943e68ca194ab7fec1fadb74505378154f6223619c9c540

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /favicon64.png HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:34 GMT
Content-Type: image/png
Content-Length: 1902
Connection: keep-alive
Content-Disposition: inline; filename="favicon64.png"
Accept-Ranges: bytes
ETag: "fcc9096937e7a6994567146395e97bd31e7f71c0"

aave.waterfall.network/favicon32.ico

78.46.36.131

200 OK

1.2 kB

URL HTTP/1.1
aave.waterfall.network/favicon32.ico
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Size
1.2 kB (1176 bytes)
Hash
5df2e6d9e5f939d0a53a07d884ded552
5e6b47e1125f910b88190d7f76a17d925a0fb223
981a373ada48ba3bc32bc5324124d2e197cbb3dbb9710d9a9794ddf4826f4e15

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /favicon32.ico HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:34 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="favicon32.ico"
Accept-Ranges: bytes
ETag: "542e3cf0628fbcc8a0bb62e366b36393433b66e3"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/static/media/background.47cc6935.svg

78.46.36.131

200 OK

2.7 kB

URL HTTP/1.1
aave.waterfall.network/static/media/background.47cc6935.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (12800), with no line terminators
Size
2.7 kB (2692 bytes)
Hash
0945a1e396d46539b078a7aa806e8efe
ef385eba23d96718b7ced3451d2bed88baef9711
0331b9553cf5657f7e057b22f7c3f7ecc06936639f34e65af5ca7d6635713298

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/background.47cc6935.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:35 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="background.47cc6935.svg"
Accept-Ranges: bytes
ETag: "a49f59de87206deb3c67be5039871e96efc6d6dd"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/fonts/RobotoRegular/RobotoRegular.woff

78.46.36.131

200 OK

93 kB

URL HTTP/1.1
aave.waterfall.network/fonts/RobotoRegular/RobotoRegular.woff
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format, TrueType, length 93388, version 0.0\012- data
Size
93 kB (93388 bytes)
Hash
94dac78eee406a8c8f0406b69b85ac2b
e9e77fc073e302b714e30698276fad6adaf179cd
18ab5ae448dcec1f31abbbaa7dce8dcb1d890479f1bc4670a89c95f10063cf3e

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /fonts/RobotoRegular/RobotoRegular.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:35 GMT
Content-Type: application/font-woff
Content-Length: 93388
Connection: keep-alive
Content-Disposition: inline; filename="RobotoRegular.woff"
Accept-Ranges: bytes
ETag: "1963e45862d0b560cb0bc50373d81662166ff468"

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10202 bytes)
Hash
f175de8eebe398f5de2829cd551b3f04
e6da63e9b03289bfded190d999a20da78232437c
b5d1ee4bd6186cbac1e4ac037766c9e453e166b0cfb2e08004cb11b8bb7daa88

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10202
x-amzn-requestid: 15e6c7ee-acef-4638-9a15-a01864ac74f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PEYFZOoAMFzEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c54f-3681217a71e5b9472b9cdb8a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PyOVGtKFSYIU2don5C7_L_pTUxdP_VEAhLZUhtBWo2PZ4kvPqaTg9g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:13:47 GMT
etag: "e6da63e9b03289bfded190d999a20da78232437c"
content-type: image/jpeg
age: 59268
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13160 bytes)
Hash
003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:30:12 GMT
age: 33083
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7847 bytes)
Hash
5129898de057eb92808f18d120eb7a70
eb0a900843beac5c4ee46686b89b3e8b8d77f80f
7ce3e4f7be652895e93cb8c1a9019b70d699c0a9da013d311395a6440b4e9f96

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 60759e32-ac58-4dda-8ea3-fd80413c0deb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkkEpMoAMFnGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c483-61b8715a0da73f4526215649;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TCX7ZFhV73kN0UBshXeb0qdSkY-8qdeNN6EgioqOUmSAnraEhAohMQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:11 GMT
age: 61164
etag: "eb0a900843beac5c4ee46686b89b3e8b8d77f80f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12216 bytes)
Hash
fe800d6af728cd622a6192ad5e7dda6a
3a301dd894fc428c7d1863c9d5eaf2652f5c2083
f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: C1EXSLUCdc9GzSKxUzv9_uWK4ZTqggdr03uVW5SWuZwVVSn2wc4k7w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:44:01 GMT
age: 61054
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6342 bytes)
Hash
d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xc32O6lBfn7jYg9I3VlZ5FnR9YpJtU3DbYD_ozsf_-R_Ih1-2e1-CQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:10 GMT
age: 61165
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8170 bytes)
Hash
fbe359ce6fb136add75c8f3d3cc06330
e6584afcf39b6fad21eccbcce95c6645b8e1b3b8
29478bf1b8168dc457bb7d298448a78e1040bd3aa80cbf11cfa37475568590d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8170
x-amzn-requestid: d1ddb47f-3472-4015-8d55-72f435671f03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5aSPHiroAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e070da-114975440d70915472cdba2f;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:15:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0w6JgtsKSRHLPJ3LyY6YUI8N7PS-gVlLuivQUq9jdyeYYm3STiJJIQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:13:34 GMT
age: 37681
etag: "e6584afcf39b6fad21eccbcce95c6645b8e1b3b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6138b948f4d7371a6df17a803f5b6e64
e3bf65b0a0f343f2818af0553b2fc6c5c078aa55
b9c6ac0be4d10bf1f59748e9413020cdd7dfc4fc10ad282f3682fad0dc49646f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9C6AC0BE4D10BF1F59748E9413020CDD7DFC4FC10AD282F3682FAD0DC49646F"
Last-Modified: Tue, 07 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 08 Feb 2023 20:41:36 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e49eef3cf0dab3caaad1418822d56240
bab4674455572c1a5098f55833265da77f24bdeb
05de480496d1290e7bbaa65361430c4bbd51241bf89066f7e876376d9db79c26

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05DE480496D1290E7BBAA65361430C4BBD51241BF89066F7E876376D9DB79C26"
Last-Modified: Tue, 07 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Wed, 08 Feb 2023 20:40:46 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e49eef3cf0dab3caaad1418822d56240
bab4674455572c1a5098f55833265da77f24bdeb
05de480496d1290e7bbaa65361430c4bbd51241bf89066f7e876376d9db79c26

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05DE480496D1290E7BBAA65361430C4BBD51241BF89066F7E876376D9DB79C26"
Last-Modified: Tue, 07 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Wed, 08 Feb 2023 20:41:07 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e49eef3cf0dab3caaad1418822d56240
bab4674455572c1a5098f55833265da77f24bdeb
05de480496d1290e7bbaa65361430c4bbd51241bf89066f7e876376d9db79c26

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05DE480496D1290E7BBAA65361430C4BBD51241BF89066F7E876376D9DB79C26"
Last-Modified: Tue, 07 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21507
Expires: Wed, 08 Feb 2023 20:40:03 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive

rpc.waterfall.network/rpc

3.125.75.237

200 OK

23 B

URL HTTP/1.1
rpc.waterfall.network/rpc
IP
3.125.75.237:0
ASN
#16509 AMAZON-02

File type
data
Size
23 B (23 bytes)
Hash
f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f

HTTP Headers

OPTIONS /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://aave.waterfall.network/
Origin: https://aave.waterfall.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Cache-Control: max-age=0

HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Length: 23
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 600
Content-Encoding: gzip
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers

rpc.waterfall.network/rpc

3.125.75.237

200 OK

23 B

URL HTTP/1.1
rpc.waterfall.network/rpc
IP
3.125.75.237:0
ASN
#16509 AMAZON-02

File type
data
Size
23 B (23 bytes)
Hash
f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f

HTTP Headers

OPTIONS /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://aave.waterfall.network/
Origin: https://aave.waterfall.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Cache-Control: max-age=0

HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Length: 23
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 600
Content-Encoding: gzip
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers

rpc.waterfall.network/rpc

3.125.75.237

200 OK

366 B

URL HTTP/1.1
rpc.waterfall.network/rpc
IP
3.125.75.237:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (16295)
Size
366 B (366 bytes)
Hash
2d599ebaa757fec4553abf9d6553ea35
fd3556c966f2b4a110bc4c026b9a700b61c60d87
7ffa2c488b44386cd7e4439d0cc0c1234d20f797361f4e5cc6242b1454738722

HTTP Headers

POST /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aave.waterfall.network/
content-type: application/json
Origin: https://aave.waterfall.network
Content-Length: 201
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/json
Content-Length: 366
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Origin

rpc.waterfall.network/rpc

3.125.75.237

200 OK

1.8 kB

URL HTTP/1.1
rpc.waterfall.network/rpc
IP
3.125.75.237:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (21735)
Size
1.8 kB (1793 bytes)
Hash
1f4bdd66c7f100f4d5b47b2adcf93801
49895a7c823d979567bfdaeb40980863a3209d0b
1e51869ccbc0d9a691d9011f8994db07da857afe484955b4361edfd400826e05

HTTP Headers

POST /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aave.waterfall.network/
content-type: application/json
Origin: https://aave.waterfall.network
Content-Length: 201
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/json
Content-Length: 1793
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Origin

aave.waterfall.network/static/media/aaveLogo.d92a06d2.svg

78.46.36.131

200 OK

993 B

URL HTTP/1.1
aave.waterfall.network/static/media/aaveLogo.d92a06d2.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2904), with no line terminators
Size
993 B (993 bytes)
Hash
c4afb2429185d38a48562e9a720e14ed
4f3a3b30c32450d81300f537125ae6e95d28e9c6
1c9592a2c3b27c225a5487124cab83cfc84052992983c64c928bbd3e920992fa

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/aaveLogo.d92a06d2.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="aaveLogo.d92a06d2.svg"
Accept-Ranges: bytes
ETag: "ca51e73c1f6453d0b606d8fcc85802c58013327b"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/static/media/aavev2Active.f936c591.svg

78.46.36.131

200 OK

2.1 kB

URL HTTP/1.1
aave.waterfall.network/static/media/aavev2Active.f936c591.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4797), with no line terminators
Size
2.1 kB (2125 bytes)
Hash
2b2a2908fb3e6e05519032a76ee7a6d6
9916f7d61c6b1b3a598fd35584f5afea5cb44daa
5c319e03479b44559d959e869a891bc67f2af2d358eb4ece3c63d9c754ad4b55

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/aavev2Active.f936c591.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="aavev2Active.f936c591.svg"
Accept-Ranges: bytes
ETag: "4fafb12552c57bf42dbd62bb5450737aec9b2a8e"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/static/media/aavev2.437c02f0.svg

78.46.36.131

200 OK

2.5 kB

URL HTTP/1.1
aave.waterfall.network/static/media/aavev2.437c02f0.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5725), with no line terminators
Size
2.5 kB (2450 bytes)
Hash
404e96104d8b0217be84ea2831011a30
1f86a0444c463c6af5bdd02be206d85f6749d62a
23b5542bf03dae07604acf9b4aeb6b0eecb6f76fd630fed0854f94bb2ee8e684

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/aavev2.437c02f0.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="aavev2.437c02f0.svg"
Accept-Ranges: bytes
ETag: "1eb157d9d89d8a934d3f986498061425cba4e0ee"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/static/media/fr.2b73cc5a.svg

78.46.36.131

200 OK

194 B

URL HTTP/1.1
aave.waterfall.network/static/media/fr.2b73cc5a.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
194 B (194 bytes)
Hash
c6ad3636055d0b5a84bae6ba5f70ce6f
039a73055773ac3aa70bbfddb2505a2fb45aae1a
562a4c9c6601bfbd1c4a3209c47f2b840650a431041f6616b8af9a0eaa888489

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/fr.2b73cc5a.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 194
Connection: keep-alive
Content-Disposition: inline; filename="fr.2b73cc5a.svg"
Accept-Ranges: bytes
ETag: "4b751d68c64197ea294eac9d90d0849221c3daca"
Vary: Accept-Encoding

aave.waterfall.network/static/media/it.1f95c8f2.svg

78.46.36.131

200 OK

202 B

URL HTTP/1.1
aave.waterfall.network/static/media/it.1f95c8f2.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
202 B (202 bytes)
Hash
bc7da45bedf17f56a56cabd7ffdbd1f8
07b372ea679652a0c1d0b8f77eed93acb75cb512
7f818fa8e36ca606a8cbd35106fd7d277f094f10f2aa1f7a0585421a20e37070

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/it.1f95c8f2.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 202
Connection: keep-alive
Content-Disposition: inline; filename="it.1f95c8f2.svg"
Accept-Ranges: bytes
ETag: "0bb4e9285244bef3d89bc6352b97ef85cb9c5605"
Vary: Accept-Encoding

aave.waterfall.network/static/media/es.30eb0364.svg

78.46.36.131

200 OK

18 kB

URL HTTP/1.1
aave.waterfall.network/static/media/es.30eb0364.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (50152), with no line terminators
Size
18 kB (17995 bytes)
Hash
34d3bbc6d6138f51bef32467636cf4ca
a633c2c0ba1c1930ede4dd40d08a899f084d6f05
2c2e2167d5b764a17afc5ab66ac0d9c15b5e0a7f52df3ec5baad82ed405f764a

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/es.30eb0364.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="es.30eb0364.svg"
Accept-Ranges: bytes
ETag: "8bd0344ba3b34413efca1e5778a6747497ca8b7f"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/static/media/tr.0eb94b06.svg

78.46.36.131

200 OK

304 B

URL HTTP/1.1
aave.waterfall.network/static/media/tr.0eb94b06.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (304), with no line terminators
Size
304 B (304 bytes)
Hash
da3d6dc0d61b1d04e77681442f6c471e
ecc1b07f057160007c9c04c4b69faa5af12819ef
4817c664fdec869bd9b32576fb131065d5ec0276262e5be0a31178352272b206

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/tr.0eb94b06.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 304
Connection: keep-alive
Content-Disposition: inline; filename="tr.0eb94b06.svg"
Accept-Ranges: bytes
ETag: "dfdc9a8d349bb17f81d412648d580720f58e9c42"
Vary: Accept-Encoding

aave.waterfall.network/static/media/vi.5d0e6fe0.svg

78.46.36.131

200 OK

196 B

URL HTTP/1.1
aave.waterfall.network/static/media/vi.5d0e6fe0.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
196 B (196 bytes)
Hash
0743671adef6ec257f349d1fe323ea2e
784b383c9650e9c82ccd64269d31acef22f25eab
8c0bf50e9cc509f95b380a15c199c3e3df46d5975ae13c6fe0517d7ebe13151b

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/vi.5d0e6fe0.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 196
Connection: keep-alive
Content-Disposition: inline; filename="vi.5d0e6fe0.svg"
Accept-Ranges: bytes
ETag: "82e3059e0cfbeea618985266da940a196b919c6d"
Vary: Accept-Encoding

aave.waterfall.network/static/media/cn.acb9cced.svg

78.46.36.131

200 OK

559 B

URL HTTP/1.1
aave.waterfall.network/static/media/cn.acb9cced.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (559), with no line terminators
Size
559 B (559 bytes)
Hash
ac97fb38bb7dac277dd445c588c59546
ef74b8a308d0c95ed6af830d7bbcb2e6f405a714
55987a0b327c7ca454171edddbe1be3a44a00f8b95d86f3baa2559643fc0c386

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/cn.acb9cced.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 559
Connection: keep-alive
Content-Disposition: inline; filename="cn.acb9cced.svg"
Accept-Ranges: bytes
ETag: "7d66317592b7291e11100a43206261a7b4b753bc"
Vary: Accept-Encoding

aave.waterfall.network/static/media/ja.e2f58c0d.svg

78.46.36.131

200 OK

160 B

URL HTTP/1.1
aave.waterfall.network/static/media/ja.e2f58c0d.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
160 B (160 bytes)
Hash
b4dbf8d28cc3aa8fc5a763ec7127e0d8
a45b1793372e7a6b65f82cb67e55fcd1d67a9745
e8e6f6e75bc02eeb35e5904edc13df9b5990da70ac1ff1daa7a9fcc61c709a03

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/ja.e2f58c0d.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 160
Connection: keep-alive
Content-Disposition: inline; filename="ja.e2f58c0d.svg"
Accept-Ranges: bytes
ETag: "1733c53242a44f8fa34de35e97a98c9ad4a94a47"
Vary: Accept-Encoding

aave.waterfall.network/static/media/ko.b6392a9e.svg

78.46.36.131

200 OK

576 B

URL HTTP/1.1
aave.waterfall.network/static/media/ko.b6392a9e.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (576), with no line terminators
Size
576 B (576 bytes)
Hash
38c833964f54bb10d6774ae1aef66cfe
35676c746f2b334a1a789ed7bf0585c46b2505fe
65e6993d62055333a33b10d7f7a4f65e38647d316c91c41fa7f67b5f2d30f4df

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/ko.b6392a9e.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 576
Connection: keep-alive
Content-Disposition: inline; filename="ko.b6392a9e.svg"
Accept-Ranges: bytes
ETag: "588feeb2a6e02568265b3773c6cc7f9e54a1a8a7"
Vary: Accept-Encoding

aave.waterfall.network/static/media/pt.cf2d92a6.svg

78.46.36.131

200 OK

5.2 kB

URL HTTP/1.1
aave.waterfall.network/static/media/pt.cf2d92a6.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11174), with no line terminators
Size
5.2 kB (5180 bytes)
Hash
84ed6d6389ed50e9149a683bcc843bdd
cf2544918506cca1510ba929145899e584d7beb3
b2063ca4cd1f9abd57a99aa25f0190ad1b399006f4eae05e5b5724f5be45e363

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/pt.cf2d92a6.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="pt.cf2d92a6.svg"
Accept-Ranges: bytes
ETag: "65c8339e2046d1820ed22c60a1370f45ebeb57fa"
Vary: Accept-Encoding
Content-Encoding: gzip

aave.waterfall.network/fonts/RobotoMedium/RobotoMedium.woff

78.46.36.131

200 OK

94 kB

URL HTTP/1.1
aave.waterfall.network/fonts/RobotoMedium/RobotoMedium.woff
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format, TrueType, length 94032, version 0.0\012- data
Size
94 kB (94032 bytes)
Hash
9a3bf7acae14d9b5ed5a88458106b58b
3e38dce596d2b9ab706d7371a28613d618b32220
e3aa2710d491e00e12efac880a32633506131aa8cf337ade92ee723cfc9733aa

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /fonts/RobotoMedium/RobotoMedium.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/font-woff
Content-Length: 94032
Connection: keep-alive
Content-Disposition: inline; filename="RobotoMedium.woff"
Accept-Ranges: bytes
ETag: "a71119fabdf8c5f9075df889ea9d9910f92ad5b7"

aave.waterfall.network/fonts/RobotoBold/RobotoBold.woff

78.46.36.131

200 OK

94 kB

URL HTTP/1.1
aave.waterfall.network/fonts/RobotoBold/RobotoBold.woff
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format, TrueType, length 93700, version 0.0\012- data
Size
94 kB (93700 bytes)
Hash
08cb8f79715774f9a6285ee7db2919a3
6fa3b472bb5a784436faa1ef5d2896d426968689
8aa340f033ddfa5e7f8bfe80638c3b137887eb30996588852ec218d2007e68b7

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /fonts/RobotoBold/RobotoBold.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/font-woff
Content-Length: 93700
Connection: keep-alive
Content-Disposition: inline; filename="RobotoBold.woff"
Accept-Ranges: bytes
ETag: "a1d0e658acced6026c1729a9dde7b2908fdeaf4c"

aave.waterfall.network/fonts/RobotoLight/RobotoLight.woff

78.46.36.131

200 OK

93 kB

URL HTTP/1.1
aave.waterfall.network/fonts/RobotoLight/RobotoLight.woff
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format, TrueType, length 93120, version 0.0\012- data
Size
93 kB (93120 bytes)
Hash
10ad0f861c0c5807734017c341940649
42eb5fdef68306d937a8fba20dd8da1b0de2bafa
499d49392c413d3f5adffa7481a1e4572858ee6369c03ed603b6abdd174b1ce4

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /fonts/RobotoLight/RobotoLight.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/font-woff
Content-Length: 93120
Connection: keep-alive
Content-Disposition: inline; filename="RobotoLight.woff"
Accept-Ranges: bytes
ETag: "457dd9b8f7527a69f93a0b699045a38568d8e92e"

explorer.waterfall.network/favicon-72-precomposed.png

78.46.36.131

200 OK

4.3 kB

URL HTTP/1.1
explorer.waterfall.network/favicon-72-precomposed.png
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4301 bytes)
Hash
d25c72e2d29b004ec5e7c80ab08a5094
d1b5606286460b49e1adadc38ac5d02082f5cf14
cb8e91138c8f2afa4fce23127b831769cf6ab051575c24be8fc632f31cfba64e

HTTP Headers

GET /favicon-72-precomposed.png HTTP/1.1
Host: explorer.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/png
Content-Length: 4301
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 22 Jun 2022 12:52:50 GMT
ETag: W/"10cd-1818b78f8d0"

aave.waterfall.network/static/media/arrows.af2e11b4.svg

78.46.36.131

200 OK

721 B

URL HTTP/1.1
aave.waterfall.network/static/media/arrows.af2e11b4.svg
IP
78.46.36.131:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (721), with no line terminators
Size
721 B (721 bytes)
Hash
9a6446ad01278665609f436c047bbdaa
f306ef4129404dc230f65675c3db55e9bfab579b
439a7a4a7e5ebdcc4da03a0d574a444e2c12111c96ee768cba354ae00db443cb

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other

HTTP Headers

GET /static/media/arrows.af2e11b4.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 721
Connection: keep-alive
Content-Disposition: inline; filename="arrows.af2e11b4.svg"
Accept-Ranges: bytes
ETag: "bdd4cd35b24442ff8e904c8a7f6db8eb78ffeb0e"
Vary: Accept-Encoding

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (53)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type