Report - zgjbcnuxrc.myfunnelish.com/netflix/

Report Overview

Visited public
2025-01-23 17:08:10
Tags
netflix phishing
Submit Tags
URL
zgjbcnuxrc.myfunnelish.com/netflix/
Finishing URL
zgjbcnuxrc.myfunnelish.com/netflix/
IP / ASN
151.101.2.132
#54113 FASTLY
Title
Netflix
Phishing - Netflix

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
zgjbcnuxrc.myfunnelish.com	unknown	2024-12-02	2025-01-23	2025-01-23	1.6 kB	42 kB	151.101.2.132
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-01-22	1.1 kB	82 kB	142.250.74.35
img.funnelish.com	unknown	2017-04-30	2021-05-14	2025-01-21	1.0 kB	10 kB	151.101.2.132
analytics.app.funnelish.com	unknown	2017-04-30	2023-10-28	2025-01-18	1.1 kB	906 B	34.111.146.89

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	zgjbcnuxrc.myfunnelish.com/netflix/	ScriptElement	83 B	2025-01-23	2025-01-23
Pretty URL zgjbcnuxrc.myfunnelish.com/netflix/ IP 151.101.2.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-23 16:49 Last Seen2025-01-23 17:08 Times Seen2 Hash cb8018fff4f87965ecb3b41b40ea8b8e c72f121ae236ec8ac1b39c4ccdd2bafbee3a0f33 2c11d3086227301c882cc76376c7b224a892422a33f74cc2d51e8638c5c2ec9a Loading...

	zgjbcnuxrc.myfunnelish.com/core.min.js	ScriptElement	79 kB	2025-01-20	2025-06-26
Pretty URL zgjbcnuxrc.myfunnelish.com/core.min.js IP 151.101.2.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-20 18:39 Last Seen2025-06-26 09:54 Times Seen50 Hash f512ccec4a56de76f3bb9f7f799a9d91 d4a7aaf61d1b4c69df3480b95a879fe15bca40e2 6a3a940f138366798b5e1970737016be82cefadea5136747d3db619a548536d1 Loading...

	zgjbcnuxrc.myfunnelish.com/netflix/	ScriptElement	20 B	2023-03-10	2025-06-26
Pretty URL zgjbcnuxrc.myfunnelish.com/netflix/ IP 151.101.2.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 01:06 Last Seen2025-06-26 09:54 Times Seen57 Hash 6b5934199b6934ffcccc34933ba5a19b 1db464a8fca4f4d47a8192670f3793089c4291de 31e6942423afd0b78378666a6cd81d07c3d4af79e3979f4350788f0a690a7de9 Loading...

	zgjbcnuxrc.myfunnelish.com/netflix/	ScriptElement	378 B	2025-01-23	2025-01-23
Pretty URL zgjbcnuxrc.myfunnelish.com/netflix/ IP 151.101.2.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-23 16:49 Last Seen2025-01-23 17:08 Times Seen2 Hash d85da5b2e79f2b9dba0c84071796289c cc5631bcb89871bc7bd7357a44eb9226bcb0b34e 46ae645d3d0d9f81a5504742d4f7c6953c10c81cd31d7ffe093d52bdca701a3c Loading...

	zgjbcnuxrc.myfunnelish.com/netflix/	ScriptElement	17 B	2024-08-05	2025-06-26
Pretty URL zgjbcnuxrc.myfunnelish.com/netflix/ IP 151.101.2.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-05 06:27 Last Seen2025-06-26 09:54 Times Seen47 Hash be78a30ff1a50ef526d7f345a8979ffe 4ebffc2495f33f7a034547f71a8af781ca2088f1 2cd631e80f0d66ffdcbb6807ce7912c86958e0deff3f23881883a6993373f6e0 Loading...

	zgjbcnuxrc.myfunnelish.com/netflix/	ScriptElement	7.9 kB	2023-03-10	2025-06-26
Pretty URL zgjbcnuxrc.myfunnelish.com/netflix/ IP 151.101.2.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 01:06 Last Seen2025-06-26 09:54 Times Seen59 Hash 64205afed553776bd6b32fdf6fe05d0b a1d105ed3e8799b960a9fbb532c5f79814b08d10 7377049825e92bef3d485ea1aff055b8c931eded48a0f550190d3cfa16f05a9f Loading...

HTTP Transactions (9)

URL IP Response Size

GET zgjbcnuxrc.myfunnelish.com/netflix/

151.101.2.132

200 OK

7.3 kB

URL User Request GET HTTP/2
zgjbcnuxrc.myfunnelish.com/netflix/
IP
151.101.2.132:443
ASN
#54113 FASTLY

Certificate
IssuerCertainly
Subject*.myfunnelish.com
Fingerprint38:99:C4:76:36:F7:29:34:FA:30:D0:37:A9:2B:8D:6A:3A:86:2D:BD
ValiditySun, 12 Jan 2025 05:47:43 GMT - Tue, 11 Feb 2025 05:47:42 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9748)
Size
7.3 kB (7330 bytes)
Hash
94b668331be94fb606dd646cc1367502
01c9920170794f0e00774558c8777f1f7e78a991
4c3df55bb625d181b0559537e699f46db42ea117c0249bfdde6825a7f67def82

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /netflix/ HTTP/1.1
Host: zgjbcnuxrc.myfunnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-step-type: 5
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin, <https://images.funnelish.com>; rel=preconnect; crossorigin, <https://img.youtube.com>; rel=preconnect; crossorigin
content-type: text/html; charset=UTF-8
x-country: no
via: 1.1 varnish, 1.1 varnish
x-page: F_69337_692773_2241009_2557470
x-index: 3
content-encoding: gzip
accept-ranges: bytes
age: 0
date: Thu, 23 Jan 2025 17:07:45 GMT
x-served-by: cache-hel1410033-HEL, cache-hel1410026-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1737652065.801022,VS0,VE342
vary: X-Country, Accept-Encoding
set-cookie: x-country_code=NO;
x-geo-city=oslo;
x-geo-latitude=59.920;
x-geo-longitude=10.740;
X-ResourcesToken=1737659265_0xaedecfccddf4b3a9fc86083b7a8d3efe4f597ef6; Path=/; SameSite=None; Secure
X-Page=F_69337_692773_2241009_2557470; Path=/; SameSite=None; Secure
content-length: 7330
X-Firefox-Spdy: h2

GET zgjbcnuxrc.myfunnelish.com/core.min.js

151.101.2.132

200 OK

23 kB

URL GET HTTP/2
zgjbcnuxrc.myfunnelish.com/core.min.js
IP
151.101.2.132:443
ASN
#54113 FASTLY

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerCertainly
Subject*.myfunnelish.com
Fingerprint38:99:C4:76:36:F7:29:34:FA:30:D0:37:A9:2B:8D:6A:3A:86:2D:BD
ValiditySun, 12 Jan 2025 05:47:43 GMT - Tue, 11 Feb 2025 05:47:42 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65485), with no line terminators
Size
23 kB (22765 bytes)
Hash
f512ccec4a56de76f3bb9f7f799a9d91
d4a7aaf61d1b4c69df3480b95a879fe15bca40e2
6a3a940f138366798b5e1970737016be82cefadea5136747d3db619a548536d1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /core.min.js HTTP/1.1
Host: zgjbcnuxrc.myfunnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zgjbcnuxrc.myfunnelish.com/netflix/
Cookie: X-ResourcesToken=1737659265_0xaedecfccddf4b3a9fc86083b7a8d3efe4f597ef6; X-Page=F_69337_692773_2241009_2557470
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-store
content-type: text/javascript; charset=utf-8
via: 1.1 varnish, 1.1 varnish
last-modified: Sat, 04 Jan 2025 06:08:01 GMT
content-encoding: gzip
accept-ranges: bytes
age: 548419
date: Thu, 23 Jan 2025 17:07:45 GMT
x-served-by: cache-hel1410033-HEL, cache-hel1410026-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1737652066.581386,VS0,VE1
vary: Accept-Encoding
set-cookie: x-country_code=NO;
x-geo-city=oslo;
x-geo-latitude=59.920;
x-geo-longitude=10.740;
content-length: 22765
X-Firefox-Spdy: h2

GET zgjbcnuxrc.myfunnelish.com/core.min.css

151.101.2.132

200 OK

10 kB

URL GET HTTP/2
zgjbcnuxrc.myfunnelish.com/core.min.css
IP
151.101.2.132:443
ASN
#54113 FASTLY

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerCertainly
Subject*.myfunnelish.com
Fingerprint38:99:C4:76:36:F7:29:34:FA:30:D0:37:A9:2B:8D:6A:3A:86:2D:BD
ValiditySun, 12 Jan 2025 05:47:43 GMT - Tue, 11 Feb 2025 05:47:42 GMT

File type
Unicode text, UTF-8 text, with very long lines (50856), with no line terminators
Size
10 kB (9962 bytes)
Hash
19cdc4a8cbcffebcc6e49a29445f29e9
8ad19d27e2df2ae07b26fbc0d34d1b4887adf9e9
c89c058ad70b8c60c39360c12e4b033fee413d53b4b90acafab51d9b8e5ab4e7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /core.min.css HTTP/1.1
Host: zgjbcnuxrc.myfunnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zgjbcnuxrc.myfunnelish.com/netflix/
Cookie: X-ResourcesToken=1737659265_0xaedecfccddf4b3a9fc86083b7a8d3efe4f597ef6; X-Page=F_69337_692773_2241009_2557470
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-store
content-type: text/css; charset=utf-8
via: 1.1 varnish, 1.1 varnish
last-modified: Sat, 04 Jan 2025 11:48:51 GMT
content-encoding: gzip
accept-ranges: bytes
age: 548419
date: Thu, 23 Jan 2025 17:07:45 GMT
x-served-by: cache-hel1410027-HEL, cache-hel1410026-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1737652066.582861,VS0,VE1
vary: Accept-Encoding
set-cookie: x-country_code=NO;
x-geo-city=oslo;
x-geo-latitude=59.920;
x-geo-longitude=10.740;
content-length: 9962
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0A:7E:C7:68:03:0C:7D:D9:EA:D1:64:B5:09:F0:73:23:7E:07:0A:F2
ValidityMon, 09 Dec 2024 08:37:20 GMT - Mon, 03 Mar 2025 08:37:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zgjbcnuxrc.myfunnelish.com
DNT: 1
Connection: keep-alive
Referer: https://zgjbcnuxrc.myfunnelish.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:03:46 GMT
expires: Fri, 23 Jan 2026 10:03:46 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
age: 25439
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0A:7E:C7:68:03:0C:7D:D9:EA:D1:64:B5:09:F0:73:23:7E:07:0A:F2
ValidityMon, 09 Dec 2024 08:37:20 GMT - Mon, 03 Mar 2025 08:37:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zgjbcnuxrc.myfunnelish.com
DNT: 1
Connection: keep-alive
Referer: https://zgjbcnuxrc.myfunnelish.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Jan 2025 10:03:46 GMT
expires: Fri, 23 Jan 2026 10:03:46 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
age: 25439
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET img.funnelish.com/69337/692773/1737103445-Netflix-logo.png

151.101.2.132

200 OK

7.4 kB

URL GET HTTP/2
img.funnelish.com/69337/692773/1737103445-Netflix-logo.png
IP
151.101.2.132:443
ASN
#54113 FASTLY

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerLet's Encrypt
Subjectimg.funnelish.com
Fingerprint56:53:5C:62:1F:86:E7:E6:20:78:93:89:4C:AC:77:9B:F4:32:39:22
ValidityMon, 23 Dec 2024 19:47:40 GMT - Sun, 23 Mar 2025 19:47:39 GMT

File type
RIFF (little-endian) data, Web/P image
Size
7.4 kB (7358 bytes)
Hash
0819cc6f60da57b5fd0588c899999647
dfd928d739b73df013b2b764f320488e506eaba1
33ba065c49c6d6800fbc227132cc0994ad6082ad9a13b4e120b76ceb33f1e0e2

HTTP Headers

GET /69337/692773/1737103445-Netflix-logo.png HTTP/1.1
Host: img.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zgjbcnuxrc.myfunnelish.com
DNT: 1
Connection: keep-alive
Referer: https://zgjbcnuxrc.myfunnelish.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=31536000
content-type: image/webp
etag: "nFnVBmIvuaVsaklCfT6/CLjdIce3U1jd+IYk5fRv73c"
fastly-io-info: ifsz=25403 idim=1500x1500 ifmt=png ofsz=7358 odim=1500x1500 ofmt=webp
fastly-io-served-by: img02-europe-west1
fastly-stats: io=1
server: UploadServer
x-goog-generation: 1737103445531036
x-goog-hash: crc32c=O/sbog==, md5=P8VaV8oBj7vkEAXTID7UxQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 25403
x-guploader-uploadid: AFIdbgSt72U8kD3SOAz0DNuhZ30G98694AebjeAO6PPxF2rQ-onmVebMGH2_uOLnv2pGG05a5fQN4ek
accept-ranges: bytes
age: 297603
date: Thu, 23 Jan 2025 17:07:45 GMT
via: 1.1 varnish
x-served-by: cache-hel1410033-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1737652066.876525,VS0,VE1
vary: Accept
content-length: 7358
X-Firefox-Spdy: h2

GET img.funnelish.com/69337/692773/1737103445-Netflix-logo.png?auto=webp&fit=bounds&width=40&height=40

151.101.2.132

200 OK

868 B

URL GET HTTP/2
img.funnelish.com/69337/692773/1737103445-Netflix-logo.png?auto=webp&fit=bounds&width=40&height=40
IP
151.101.2.132:443
ASN
#54113 FASTLY

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerLet's Encrypt
Subjectimg.funnelish.com
Fingerprint56:53:5C:62:1F:86:E7:E6:20:78:93:89:4C:AC:77:9B:F4:32:39:22
ValidityMon, 23 Dec 2024 19:47:40 GMT - Sun, 23 Mar 2025 19:47:39 GMT

File type
RIFF (little-endian) data, Web/P image
Size
868 B (868 bytes)
Hash
e3ed793d38f91091227824462a81c378
1095364c66c4292045d061d8739e3b49c7621361
a365cc26459e1f871a100892589f372c4a443a246481979fd4e2eb8d4706bba3

HTTP Headers

GET /69337/692773/1737103445-Netflix-logo.png?auto=webp&fit=bounds&width=40&height=40 HTTP/1.1
Host: img.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zgjbcnuxrc.myfunnelish.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=31536000
content-type: image/webp
etag: "TnRR9gXHDOEsjMc2slLHmGICIfibn+GDa1QX+rHkYBo"
fastly-io-info: ifsz=25403 idim=1500x1500 ifmt=png ofsz=868 odim=40x40 ofmt=webp
fastly-io-served-by: img03-europe-west1
fastly-stats: io=1
server: UploadServer
x-goog-generation: 1737103445531036
x-goog-hash: crc32c=O/sbog==, md5=P8VaV8oBj7vkEAXTID7UxQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 25403
x-guploader-uploadid: AFIdbgRrkcc1jUiiWx9gz3sHOsLDpza4TQ8uUTnwcug7upf4kHYnjtfccB8juczGhgj64FvL
accept-ranges: bytes
date: Thu, 23 Jan 2025 17:07:46 GMT
via: 1.1 varnish
age: 199205
x-served-by: cache-hel1410028-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1737652066.005716,VS0,VE0
vary: Accept
content-length: 868
X-Firefox-Spdy: h2

POST analytics.app.funnelish.com/view

34.111.146.89

204 No Content

0 B

URL POST HTTP/2
analytics.app.funnelish.com/view
IP
34.111.146.89:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerGoogle Trust Services
Subjectanalytics.app.funnelish.com
Fingerprint62:36:37:61:86:EC:73:75:AA:BE:66:C5:05:93:06:EC:50:92:7D:66
ValidityThu, 28 Nov 2024 19:43:56 GMT - Wed, 26 Feb 2025 20:37:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /view HTTP/1.1
Host: analytics.app.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://zgjbcnuxrc.myfunnelish.com/
Origin: https://zgjbcnuxrc.myfunnelish.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-headers: content-type
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: *
allow: OPTIONS, POST
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-cloud-trace-context: 667c2659096a5c739f4620d9b3635d6d
date: Thu, 23 Jan 2025 17:07:50 GMT
content-type: text/html
server: Google Frontend
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST analytics.app.funnelish.com/view

34.111.146.89

200 OK

69 B

URL POST HTTP/2
analytics.app.funnelish.com/view
IP
34.111.146.89:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://zgjbcnuxrc.myfunnelish.com/netflix/
Certificate
IssuerGoogle Trust Services
Subjectanalytics.app.funnelish.com
Fingerprint62:36:37:61:86:EC:73:75:AA:BE:66:C5:05:93:06:EC:50:92:7D:66
ValidityThu, 28 Nov 2024 19:43:56 GMT - Wed, 26 Feb 2025 20:37:30 GMT

File type
JSON text data
Size
69 B (69 bytes)
Hash
97c5dbe55e7cc5f5c471dc3c9ba3580b
9830a59427eeaccfc0a35dba7ac56ef803404bf1
4e3f9a6c58d819f0aeca9a1e08c7989b3cf4ad70d40ffd2e90eb42daf75858ce

HTTP Headers

POST /view HTTP/1.1
Host: analytics.app.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zgjbcnuxrc.myfunnelish.com/
Content-Type: application/json
Content-Length: 408
Origin: https://zgjbcnuxrc.myfunnelish.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
vary: Origin
x-cloud-trace-context: 38695c014fd33cd3fffcaad2227521df
date: Thu, 23 Jan 2025 17:07:50 GMT
server: Google Frontend
content-length: 69
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (9)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type