Report - bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/

Report Overview

Submitted URL
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
IP
104.17.64.14
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-10 04:06:38
Access
public
Website Title
Alibaba Manufacturer Directory - Suppliers, Manufacturers, Exporters & Importers
Final URL
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com	unknown	2018-12-05	2024-02-21	2024-02-21	11 kB	903 kB	104.17.96.13

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 04:06:12	low	Client IP	104.17.96.13	ET INFO Peer to Peer File Sharing Service Domain in TLS SNI (cf-ipfs .com)
2024-05-10 04:06:12	low	Client IP	104.17.96.13	ET INFO Peer to Peer File Sharing Service Domain in TLS SNI (cf-ipfs .com)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba
2024-05-09	medium	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	Alibaba

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/	107 B	2023-04-05	2024-05-19
Pretty URL bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/ IP 104.17.96.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 23:34:58 Last Seen2024-05-19 13:47:18 Times Seen2293 Hash f7b6920f91b377d96182c59ec7a602ef 8ccd10b362878127dea4bc36da2904360930ec7b ac9c5c74bdde7ae3431524f529acde42d52d711503b7b85750ab072893367d43 Loading...

HTTP Transactions (15)

URL IP Response Size

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/t1.png

104.17.96.13

200 OK

213 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/t1.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 1349 x 174, 8-bit/color RGBA, non-interlaced
Size
213 kB (212812 bytes)
Hash
9012cfa25e74fb3165ccbdc6b880ae74
7489a522969e7ec823ca7287b5e535220903fba9
063816079a84781aada33cbf42dac68db225d4d57d1d1118788435b0cae2b112

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /t1.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 212812
cf-ray: 88170e2a2b77b509-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 14469
cache-control: public, max-age=29030400, immutable
etag: "bafkreiaghalapguepank3iz4x5bnvrunwis5jvl5duirq6eegwymvyvrci"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/t1.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreiaghalapguepank3iz4x5bnvrunwis5jvl5duirq6eegwymvyvrci
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g4.png

104.17.96.13

200 OK

29 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g4.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 1349 x 161, 8-bit/color RGBA, non-interlaced
Size
29 kB (28665 bytes)
Hash
d81ca05e767223648228ef15a10d3bf3
14d29f5da15f8ad55ac10e5645b9ce30d2604d90
22671f2fe3a671c6e27d53ef0345486367a973e1cf17be4b9fcbd9ad1dfc8d2a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g4.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 28665
cf-ray: 88170e2a2b7cb509-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 14469
cache-control: public, max-age=29030400, immutable
etag: "bafkreibcm4ps7y5gohdoe7kt54buksddm6uxhyopc67exh6l3gwr37enfi"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g4.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreibcm4ps7y5gohdoe7kt54buksddm6uxhyopc67exh6l3gwr37enfi
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/t2.png

104.17.96.13

200 OK

262 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/t2.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 1349 x 206, 8-bit/color RGBA, non-interlaced
Size
262 kB (261714 bytes)
Hash
d5e4834f6125ad786337eb88cb407a36
09cc8d9e4b66587667d0c731818e1ddb6ac748a2
1c12a6873897d087791b35be445fabc81d0052e0e63d94bd429a536d599e61ba

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /t2.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 261714
cf-ray: 88170e2a2b79b509-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 14469
cache-control: public, max-age=29030400, immutable
etag: "bafkreia4cktiooex2cdxsgzvxzcf7k6iduaffyhghwkl2qu2knwvthtbxi"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/t2.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreia4cktiooex2cdxsgzvxzcf7k6iduaffyhghwkl2qu2knwvthtbxi
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/t3.png

104.17.96.13

200 OK

352 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/t3.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 1349 x 227, 8-bit/color RGBA, non-interlaced
Size
352 kB (351548 bytes)
Hash
929b3fe5bf667aeec3f2e780f8286f6a
02611e5b4da303f92ed1ef814f498f46c89e9acf
aa0129e9bcd1bcd7c860b46f556f7b446445c75b8629a03916738b7872a78d42

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /t3.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 351548
cf-ray: 88170e2a3b7eb509-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 14469
cache-control: public, max-age=29030400, immutable
etag: "bafybeibbd67ya4ntki4xcjdnhi45py5r5t5ewwej4cnsxnv5aqe5fiquja"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/t3.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafybeibbd67ya4ntki4xcjdnhi45py5r5t5ewwej4cnsxnv5aqe5fiquja
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/ag.png

104.17.96.13

200 OK

3.5 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/ag.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 277 x 45, 8-bit/color RGBA, non-interlaced
Size
3.5 kB (3500 bytes)
Hash
e05466a22f1cd766ecb0138970640dfb
c4a3d55f936f30a68437cca8f04ebd3724fa98b5
c66ab323d675c12fa376dfd14c00956bc77e9af0844f7a9e1d3ee5aecdda0c6d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /ag.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 3500
cf-ray: 88170e2a3b93b509-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 14469
cache-control: public, max-age=29030400, immutable
etag: "bafkreiggnkzshvtvyex2g5w72fgabflly57jv4eej55j4hj64wxm3wqmnu"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/ag.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreiggnkzshvtvyex2g5w72fgabflly57jv4eej55j4hj64wxm3wqmnu
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g5.png

104.17.96.13

200 OK

1.8 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g5.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 177 x 36, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1774 bytes)
Hash
5ebeed2af155885413a361caa0dc1985
f8ad0a4c3b5bcb7b2e43fdcc7ccae013b95733fe
c5bf35fa15dbec30ec0b590c65e4ba3bdde7de702773889fb45202c954e89692

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g5.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 1774
cf-ray: 88170e2a3b82b509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreigfx427ufo35qyoyc2zbrs6jor33xt544bhooej7ncsalevj2ewsi"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g5.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreigfx427ufo35qyoyc2zbrs6jor33xt544bhooej7ncsalevj2ewsi
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g8.png

104.17.96.13

200 OK

553 B

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g8.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 50 x 13, 8-bit/color RGBA, non-interlaced
Size
553 B (553 bytes)
Hash
55b31b8890b7371336c114a07681e4c8
a905d96017257eb789dd84900f8b0831b4d0f8bf
3af98476b8ddf350a952c82799846fd558e991880be00c2d8302b4b994ea4e89

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g8.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 553
cf-ray: 88170e2a3b8bb509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreib27gchnog56niksuwie6myi36vlduzdcal4agc3aycws4zj2sore"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g8.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreib27gchnog56niksuwie6myi36vlduzdcal4agc3aycws4zj2sore
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g10.png

104.17.96.13

200 OK

573 B

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g10.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 40 x 13, 8-bit/color RGBA, non-interlaced
Size
573 B (573 bytes)
Hash
98c043878751bc35c28cb140b38d7f17
6a85a2ddfa3a0be7318a5c1f79c330b231cbb3da
29b7e7bae5465b1b667de9c3da1c69f683c98a039e5aed66e19a2009cd153a6a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g10.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 573
cf-ray: 88170e2a3b8fb509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreibjw7t3vzkglmnwm7pjypnby2pwqpeyua46llwwnym2eae42fj2ni"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g10.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreibjw7t3vzkglmnwm7pjypnby2pwqpeyua46llwwnym2eae42fj2ni
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g6.png

104.17.96.13

200 OK

2.3 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g6.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 159 x 39, 8-bit/color RGBA, non-interlaced
Size
2.3 kB (2262 bytes)
Hash
6356ceb97266a66f42ed72ca64128aef
2ca93527336587cdcb5c549dec92d073bdeb7d7f
58d33b5f14662f10d1c5ea0c5b482cc4029d549c34ec1d8ab2432c0f3c18fba8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g6.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 2262
cf-ray: 88170e2a3b85b509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreicy2m5v6fdgf4indrpkbrnuqlgeakovjhbu5qoyvmsdfqhtygh3va"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g6.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreicy2m5v6fdgf4indrpkbrnuqlgeakovjhbu5qoyvmsdfqhtygh3va
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g11.png

104.17.96.13

200 OK

848 B

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g11.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 54 x 49, 8-bit/color RGBA, non-interlaced
Size
848 B (848 bytes)
Hash
7a1c75384d617997899ede6a6337e272
65732321002eba06a8ec59631a978ebe6de05d65
002c445e2a90f09d186cd7d899b74c60d3dd39411feacb134f8aa641cc3feea5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g11.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 848
cf-ray: 88170e2a4b95b509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreiaafrcf4kuq6corq3gx3cm3otda2potsqi75lfrgt4kuza4yp7ouu"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g11.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreiaafrcf4kuq6corq3gx3cm3otda2potsqi75lfrgt4kuza4yp7ouu
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g7.png

104.17.96.13

200 OK

1.1 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g7.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 100 x 16, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1120 bytes)
Hash
65e69303cba6a25507e442688ddd1e1f
f29d86f02e7a8efed255add5fe54d35e7471ea1e
ac2a0498218e099571b06cdbfc4b63d884e3a2f67612fe9b6cedb44020777c95

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g7.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: image/png
content-length: 1120
cf-ray: 88170e2a3b88b509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreifmficjqimobgkxdmdm3p6ewy6yqtr2f5twcl7jw3hnwraca534su"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g7.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreifmficjqimobgkxdmdm3p6ewy6yqtr2f5twcl7jw3hnwraca534su
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/singin.png

104.17.96.13

200 OK

726 B

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/singin.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 362 x 32, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
f8cb049a194985cc2da4e684e8fe1650
443b786ee45e98298d13de1b1a23036530d26fb8
b2174ca5b220bdb2faf3ae6f338a54a911609d70e3645f4a4fe4a28eb75a3dc3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /singin.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:13 GMT
content-type: image/png
content-length: 726
cf-ray: 88170e2a4b98b509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreifsc5gklmraxwzpv45on4zyuvfjcfqj24hdmrpuut7eukhlowr5ym"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/singin.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreifsc5gklmraxwzpv45on4zyuvfjcfqj24hdmrpuut7eukhlowr5ym
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/favicon.ico

104.17.96.13

429 Too Many Requests

16 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/favicon.ico
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
HTML document, ASCII text, with very long lines (16108), with no line terminators
Size
16 kB (16108 bytes)
Hash
048bf48fe639a71109f73af06e8c9eb5
3f0721cc2718fdb92329084f65b04131f957b4bd
3bcde691803eaa651a28395fca90eea606c25b4035b00db1ab0ed74abae3c0e9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 429 Too Many Requests
date: Fri, 10 May 2024 04:06:13 GMT
content-type: text/html; charset=UTF-8
content-length: 16108
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: u+7l+Zn4naP9zYx9nPGD48wKzeu+CtXexw9ZGNQApTuak9dZJ0UO2+KdTqYQjsbwdjed94C2fG5N/x4HWimn/x5WUJ7+FOWoCqLHWXqXvZqWupOj+LdzmKyK8+zHGxU6Cl7PS7wYz7PlcyYlSgET/g==$sWyIdFOuf0Qd40P48YVMJw==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 88170e2c9d04b509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g9.png

104.17.96.13

200 OK

1.2 kB

URL GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/g9.png
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
PNG image data, 122 x 14, 8-bit/color RGBA, non-interlaced
Size
1.2 kB (1182 bytes)
Hash
fec4294ddc0f8292ae6a504d73b18fc6
ba851615b42b7ef2e221e10c03074e3741f2ac9b
a838b168c42e9200ece3db9c95318d70a4454ab5833f8093228653a6190fe32c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /g9.png HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
Cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:13 GMT
content-type: image/png
content-length: 1182
cf-ray: 88170e2a3b8db509-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreifihcywrrbosiaozy63tsktddlqurcuvnmdh6ajgiugkotbsd7dfq"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/g9.png
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4,bafkreifihcywrrbosiaozy63tsktddlqurcuvnmdh6ajgiugkotbsd7dfq
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/

104.17.96.13

200 OK

4.9 kB

URL User Request GET HTTP/2
bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com/
IP
104.17.96.13:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type
JavaScript source, ASCII text, with very long lines (5272), with no line terminators
Size
4.9 kB (4892 bytes)
Hash
febb336335ee6e634e4ee951ec48c708
35f2f004d4804b697a63bea8121c3aa5c31f5812
c68fddd2e25cea42135ec79d8b78b3f307462d852c9f70ead192224e8f1a28a2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET / HTTP/1.1
Host: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 04:06:12 GMT
content-type: text/html
cf-ray: 88170e25c8feb509-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 14470
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4/
x-ipfs-roots: bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4
set-cookie: __cf_bm=.gXt8xPWkR1icYggFw_M8n94loUNaaOLRtSJIi0YM.M-1715313972-1.0.1.1-pXrdxMN8yMP6vkYZet0kvcYX8iVBi5nyoUn2VEeO_3OcfWnmpZ.cQJNseJldXuhHcMb5cbwmORbrov.qBa_mTA; path=/; expires=Fri, 10-May-24 04:36:12 GMT; domain=.bafybeihjqzyhwwiud4mysdwhr7rgchjbjugwfqo2h4ui4z44galyezvbz4.ipfs.cf-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (15)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type