Report - teleinfows.com/

Report Overview

Visited public
2023-08-13 14:12:33
Tags
meta whatsapp social
URL
teleinfows.com/
Finishing URL
teleinfows.com/
IP / ASN
154.82.100.80
#399077 TERAEXCH
Title
Telegram Messenger
Phishing - WhatsApp

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

104

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dvcasha2.ocsp-certum.com	71753	2013-12-19	2014-11-27 09:04:42	2023-08-12 06:14:01	676 B	3.7 kB	23.36.79.17
teleinfows.com	unknown	2023-08-03	2023-08-10 06:02:20	2023-08-10 17:34:34	28 kB	25 MB	154.82.100.222
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-08-12 18:12:03	666 B	1.4 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-08-12 19:04:42	2.7 kB	443 kB	172.217.21.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram
2023-08-10	medium	teleinfows.com/	Telegram

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (39)

	URL	From	Size	First Seen	Last Seen
	teleinfows.com/js/config.js	ScriptElement	360 B	2023-03-12	2025-01-31
Pretty URL teleinfows.com/js/config.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:05 Last Seen2025-01-31 12:40 Times Seen512 Hash 0f473dc8cb0eed8e543f26b9043a3fb6 56069d0c86850c8bcdef6495d213405e4a8b3f6d e9885f72beec80104d584000fea488790bd8c910793bfb3879dc85c2fc54d98b Loading...

	teleinfows.com/js/downloadlist/t168.js	ScriptElement	4.0 kB	2023-07-01	2023-08-18
Pretty URL teleinfows.com/js/downloadlist/t168.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 09:39 Last Seen2023-08-18 01:37 Times Seen16 Hash 209450572d7f94212d0ab7c9b8312736 08e4c44f225dec846f9dd912b3381627123b8766 c3bf4df2dfd690e0cb35632a29bb8ff018da4aa56158ad222e36f8e8818636fe Loading...

	teleinfows.com/TG_ZH/index.html	ScriptElement	152 B	2023-03-12	2025-01-31
Pretty URL teleinfows.com/TG_ZH/index.html IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 21:05 Last Seen2025-01-31 12:40 Times Seen565 Hash 5000e1c0d952344d55c4dabef597c7f4 4f252e3f44f982ae64eb23fca16cf8adfc3516bf 367a59b0504b661ded95278dd9c3bbfd9c28e6ed965fa5a1d9fe03b40fb17e6e Loading...

	teleinfows.com/TG_ZH/index.html	ScriptElement	357 B	2023-03-12	2025-01-31
Pretty URL teleinfows.com/TG_ZH/index.html IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 21:05 Last Seen2025-01-31 12:40 Times Seen573 Hash e5f7a5a45fb070de38e2239bc385060a 5942e3224566ba691288214cbace8554a81b8948 26d030aa3c20704a34fab17b4d255b1a6800b9e528d567c0d988fbfaeaff20ac Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5X96JGP	ScriptElement	137 kB	2023-08-13	2023-08-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5X96JGP IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 16:12 Last Seen2023-08-13 16:12 Times Seen1 Hash f38f44e076aab7bb61a1e2a60d3827da 82a6163bad4264db5e19ea9ede5ae0ea6d55409b abc6a5203204cf946ad4162a29f5b681555328b151e72801e005692e945e3e79 Loading...

	www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c	ScriptElement	235 kB	2023-08-13	2023-08-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 16:12 Last Seen2023-08-13 16:12 Times Seen1 Hash 8c274e461cbf32add8456c7d87ea5908 31dbaa8fa6bd4f3fa1bca9d9b7e53e0535f40604 ee32acdf79ca3f2300f033db7b6a75e6bef6f5148912bc8631fb5b8a9d3d96f2 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 23:17 Times Seen341218 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c	ScriptElement	221 kB	2023-08-13	2023-08-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 16:12 Last Seen2023-08-13 16:12 Times Seen1 Hash cf9672154af72bf9c73a852d776dded7 af11a64327e5ada8d7add843c48f99e5355ebfb8 e86180ef1895cc0028b7ec6d1f645b2b4345dc6db34a295cda68df8f97e3bef4 Loading...

	teleinfows.com/js/downloadlist/t111.js	ScriptElement	2.1 kB	2023-05-18	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t111.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2023-08-22 01:03 Times Seen37 Hash 49e346430661bddcee69f5a3561f32fe a8bbfcf4a7d00b19eb9e59379ea94df98a2828e1 12f447aa624d32e2c49603196bae7c9ac34954589dd824b95449c343f7795d74 Loading...

	teleinfows.com/js/redirect.js	ScriptElement	1.4 kB	2023-05-18	2025-01-31
Pretty URL teleinfows.com/js/redirect.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2025-01-31 12:40 Times Seen480 Hash 2490e6600fce98123314f7170bb81756 e8fc4723f93c2f5527558c159998d4f864322a48 c3948e7959d9652e15a5b4ced6f078edfef982e4a37f73f2fac6d7e763d5f9ad Loading...

	teleinfows.com/TG_ZH/index.html	ScriptElement	189 B	2023-03-12	2025-01-31
Pretty URL teleinfows.com/TG_ZH/index.html IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 21:05 Last Seen2025-01-31 12:40 Times Seen539 Hash ba308764957703be86acad39a720dd38 893a332a0183d9a04c2cfad9270a2c40db321b65 0ad9261293f4448a259fbdec3e4235abb10494721bec9eb4fa0b5005c9018444 Loading...

	www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c	ScriptElement	221 kB	2023-08-13	2023-08-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 16:12 Last Seen2023-08-13 16:12 Times Seen1 Hash 27399abda9226b7a3d28afc19db8d62d 40b28e1444534cdcdd82c18f5f93ee2b75e3fe24 ecba0a21aba63a1b914ae4ec86f705a08aa68f019929fc50e69bd937e3076cec Loading...

	teleinfows.com/js/download.js	ScriptElement	3.5 kB	2023-07-12	2024-08-21
Pretty URL teleinfows.com/js/download.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-12 13:54 Last Seen2024-08-21 09:37 Times Seen456 Hash 9b3fba1b3c1f07ebaa4cc0d8c627ce46 353ce9ff4ad2cf0dbddf1645425d6f6c6aa8e434 a01cfd51880bb90e4396b1df541b893dcd761de237e5409bba626c165244b2aa Loading...

	teleinfows.com/js/downloadlist/t112.js	ScriptElement	449 B	2023-05-18	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t112.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2023-08-22 01:03 Times Seen37 Hash f911e72c86ade2f4e5afba006b95c351 b0aaf60e7db12b047d0ef6d6f4cc24f0630caa10 7701db5a142e8c4fdba0c1381035ac4ba4d69b8b86bbf1ef14ad199156360803 Loading...

	teleinfows.com/js/downloadlist/t110.js	ScriptElement	4.8 kB	2023-06-11	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t110.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-11 23:35 Last Seen2023-08-22 01:03 Times Seen37 Hash dba5fdeb4429e0999fa5a6989a9617a1 3aad0c2077d7a4903530d0aa99382d1ff5c5e785 81fb2b45372962009d60750018adfdad1b17f9019f31651a201c2cd30116ae84 Loading...

	teleinfows.com/js/downloadlist/t115.js	ScriptElement	1.0 kB	2023-05-18	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t115.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2023-08-22 01:03 Times Seen37 Hash a0f2026326e27da2e634893723338c14 9f9ecefad83f9a3bdce99aca6aabed6eeccc8442 f71dc5df52ffab4456fa3bee4e9202b56bb7ac83f70c394c5e6dc93560ab1dc3 Loading...

	teleinfows.com/TG_ZH/index.html	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL teleinfows.com/TG_ZH/index.html IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 23:35 Times Seen4658327 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	teleinfows.com/TG_ZH/index_files/v652eace1692a40cfa3763df669d7439c1639079717194	ScriptElement	14 kB	2023-03-07	2025-04-28
Pretty URL teleinfows.com/TG_ZH/index_files/v652eace1692a40cfa3763df669d7439c1639079717194 IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-04-28 15:48 Times Seen703 Hash 19514b1be5ee33b45d32c1fcd4c67ec2 bdeab77b43cafcc638df9d7c26f1aa7f46bf1fd5 fd0a1ac929c11b08e819fe4b0a18c5574012c44f09de8987c6be99a0f055a505 Loading...

	teleinfows.com/js/downloadlist/t127.js	ScriptElement	1.1 kB	2024-08-21	2024-08-21
Pretty URL teleinfows.com/js/downloadlist/t127.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 08:51 Last Seen2024-08-21 08:51 Times Seen1 Hash 5710597b6efc4ad7fbba56e0384fce7d 2640e10036d1179f28df4b1bc9aacb5e7ef64fe8 f1f12d87119492fe1388ce1b34b4d18dd5c0bedd3879d34ffe6e2b62d167e849 Loading...

	teleinfows.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL teleinfows.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 23:17 Times Seen342020 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	teleinfows.com/js/downloadlist/t108.js	ScriptElement	2.5 kB	2023-05-18	2025-01-31
Pretty URL teleinfows.com/js/downloadlist/t108.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2025-01-31 12:40 Times Seen485 Hash 19610ffffb5f8db346ac477b61881b9a 6c67ec85150a99971ebc6154d93abc63e68e6f3f 25cb46b283e4f73d90fa61138ad36987d098d83abfd2a4e2c0cce04b0352b106 Loading...

	teleinfows.com/js/downloadlist/t118.js	ScriptElement	2.2 kB	2023-05-18	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t118.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2023-08-22 01:03 Times Seen37 Hash 93e0f8911c6b54768044d308bfa83cc1 8f2df93a1304b83966d78bde5ded37bca0951086 a5013a167fdd315b5e7137874e631d9607eb21d16f19ba6893d4db3b931f30d4 Loading...

	teleinfows.com/js/downloadlist/t123.js	ScriptElement	1.3 kB	2023-05-18	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t123.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2023-08-22 01:03 Times Seen37 Hash 666a4150c89998324fb7f3552c6c1321 8ee9c62ac86b8b03c60a2a6ca54a1604e1ded145 1cb30ca9ce9f07ed50c13d36425f8546ea97f33b52ddb3c0aa4c1c03988cdf13 Loading...

	teleinfows.com/TG_ZH/index_files/gtm.js.download	ScriptElement	119 kB	2023-03-12	2025-01-31
Pretty URL teleinfows.com/TG_ZH/index_files/gtm.js.download IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:05 Last Seen2025-01-31 12:40 Times Seen551 Hash c2f5efa78f85a28c9dbc2b5adac56ec5 4ccee472dbdfc7919cdcbe02f09692ed69fa5b95 8cbaae5ea817ea19555ba3c88649f6db86533c6a0fb945042ac060b0c446199c Loading...

	teleinfows.com/TG_ZH/index_files/js(1)	ScriptElement	211 kB	2023-03-12	2025-01-31
Pretty URL teleinfows.com/TG_ZH/index_files/js(1) IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:05 Last Seen2025-01-31 12:40 Times Seen547 Hash abfaa1e5adb26dd8dcee9ce4a2dc6148 467cd255cd9bd6fa0afdfd5813b52cda6cdc48fc 5a93b0bce4a0f9e2c5fe4117885c4d1adec6b2ab688ebfe5a32d492ea5e75ba9 Loading...

	teleinfows.com/js/downloadlist/dev.js	ScriptElement	394 B	2023-06-01	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/dev.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-01 01:50 Last Seen2023-08-22 01:03 Times Seen37 Hash 9c13d7ccc5ecbad03de74eccb0a0bfd7 c214d2252417802bb867d926ec9e6db21d8fcf02 f9ba64cd87494fe03479c7d1f2179c4df84a81ce6f8fb84da7dda69392fc28b8 Loading...

	teleinfows.com/js/downloadlist/t117.js	ScriptElement	2.0 kB	2023-08-04	2024-08-21
Pretty URL teleinfows.com/js/downloadlist/t117.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-04 17:24 Last Seen2024-08-21 09:37 Times Seen111 Hash 8b0cf6dbb024830d36ba7eeab47ffc94 cbb462d15964bd100730ea9982caaff5308fa776 f383feca7f368901879876f60488b5e88dbe603fc6a43cd332d43943b9b20f7f Loading...

	teleinfows.com/js/downloadlist/t109.js	ScriptElement	1.1 kB	2023-05-18	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t109.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2023-08-22 01:03 Times Seen37 Hash 1dbe3488d80e33a70f9a6338b418af4d f3d5dc7e9f25ebc40011ed053e6b00cc9e3c1489 8039872b1ca45be8fb710e76cd2685149f9d37e5ed0afd7099e41d25eb6a2932 Loading...

	teleinfows.com/js/downloadlist/t121.js	ScriptElement	865 B	2023-05-18	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t121.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2023-08-22 01:03 Times Seen37 Hash 02472884b4ce869aee04090270887702 00e2564219c92e5d56b74e2e0344c4c1375513c6 2179bce7f7eefa87a74a6cea13e0f5a36594cc4f71ccbcd791165e485c58f0f4 Loading...

	teleinfows.com/js/downloadlist/t125.js	ScriptElement	4.2 kB	2023-06-16	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t125.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-16 13:14 Last Seen2023-08-22 01:03 Times Seen37 Hash 6c8658c98dffb31219bbd89b50ba17f8 84b1a7cb47f99deb776dc59144945d945054d95b 0972cd89d4efc964889d18fede98f815a3d9c7e02408661345b8d705f1242e4e Loading...

	www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c	ScriptElement	235 kB	2023-08-13	2023-08-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 16:12 Last Seen2023-08-13 16:12 Times Seen1 Hash e6faca5a4a441bcb8d27ee8562e25b51 1236623f730291ea4c3adf621e9d443dc57840a2 a351bcaf7dac0638b160df4ac9a920465c0ad5fe54e1573061c993180d55292e Loading...

	teleinfows.com/js/main.js	ScriptElement	21 kB	2023-03-08	2025-04-27
Pretty URL teleinfows.com/js/main.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:42 Last Seen2025-04-27 14:33 Times Seen575 Hash 401f247640476ab57f1562643278c690 88d3d9ce942bc4f83013a1f302fa57281c62dbd8 39a10a24888c4e0898d8c9c9ed332d88d0203c08d0f5cfbbf82c84cd9eee584f Loading...

	teleinfows.com/js/downloadlist/t101.js	ScriptElement	2.3 kB	2023-08-04	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t101.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-04 07:29 Last Seen2023-08-22 01:03 Times Seen37 Hash dc319cdfd8b69a8501ae0470ed95d2dc 1d545141898e760436794a3a60cac812d164d32c c8c05d793d39a95225afc52a1dcde1d81070785c72697675a89123ed32164085 Loading...

	teleinfows.com/js/downloadlist/t888.js	ScriptElement	3.5 kB	2023-05-18	2025-01-31
Pretty URL teleinfows.com/js/downloadlist/t888.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2025-01-31 12:40 Times Seen485 Hash f5f4169266f561dc31defb576f011271 0081b577b30cebb75724f3132e04cfa6b61be037 a9621c2d617dc70b2e069a909f47485f3725937352047a33ce2c906e31b3e52a Loading...

	teleinfows.com/js/downloadlist/t158.js	ScriptElement	1.8 kB	2023-07-27	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t158.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-27 21:56 Last Seen2023-08-22 01:03 Times Seen37 Hash 6c25995b0653a5076e32a79c1b1af2ca 7f1437bc29fb3482f0bf05ac99d0697324a991a2 6459fc1585ec24d900cc01f668c8a552d5d84313b3fd4890a093dbbb558c594d Loading...

	teleinfows.com/js/downloadlist/t126.js	ScriptElement	595 B	2023-07-12	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t126.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-12 13:54 Last Seen2023-08-22 01:03 Times Seen37 Hash 753562021574bf0329b388ee30fe90cc f475d9c10102d751ed10f586a8de762560733730 f665a1a7f27f4df2d609d8590386cfc171ff7ffe8e1ef25582a3baf01bc38b69 Loading...

	teleinfows.com/TG_ZH/index_files/js	ScriptElement	107 kB	2023-05-18	2025-01-31
Pretty URL teleinfows.com/TG_ZH/index_files/js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 00:58 Last Seen2025-01-31 12:40 Times Seen551 Hash d28613ff9ab6c4f187868ad0543de0f3 9be8b9973f87458167e984bf5ca3ea11651d4c98 377a867c84d7622e8505d60ab3f2cd91c2bee74035d45971e9fd11f904cc3da6 Loading...

	www.googletagmanager.com/gtag/js?id=UA-212845866-1&l=dataLayer&cx=c	ScriptElement	184 kB	2023-08-13	2023-08-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-212845866-1&l=dataLayer&cx=c IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 16:12 Last Seen2023-08-13 16:12 Times Seen1 Hash faddd3057e3d28363434c0e35938cb1f 616890408493c6bbf324b738009a8752acd2847e f80df6a73b0dcd750d281c3c3b6e17984dea114997c804434a3951bb748522bb Loading...

	teleinfows.com/js/downloadlist/t188.js	ScriptElement	409 B	2023-07-10	2023-08-22
Pretty URL teleinfows.com/js/downloadlist/t188.js IP 154.82.100.222 ASN #399077 TERAEXCH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-10 01:39 Last Seen2023-08-22 01:03 Times Seen37 Hash b0d338d293caebc24ea5d04655968eec 010e7acce9d5aebacd965c031319c77090bcd402 0f826630959ae74651223511732480d758b35a041eea0c72dff775d3cf601aa4 Loading...

HTTP Transactions (63)

URL IP Response Size

dvcasha2.ocsp-certum.com/

23.36.79.17

1.6 kB

URL
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
44a45a3600a48783da05e1b391c20258
bf226833b48f8483c2b9746ef7da584b66d69393
67883532e2cc066d2325e87b50ec9a1c48bd7a0c99f8528847e35d71d1e8a202

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: MISS
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sun, 13 Aug 2023 14:12:14 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.17

1.6 kB

URL
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
44a45a3600a48783da05e1b391c20258
bf226833b48f8483c2b9746ef7da584b66d69393
67883532e2cc066d2325e87b50ec9a1c48bd7a0c99f8528847e35d71d1e8a202

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sun, 13 Aug 2023 14:12:14 GMT
Connection: keep-alive
X-N: S

teleinfows.com/

154.82.100.222

200 OK

476 B

URL User Request GET HTTP/2
teleinfows.com/
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
476 B (476 bytes)
Hash
6558055141a3d97f9cca7af47ec0e453
d13ab44e7508a71c1e4e35e788b45ae7488168ce
7cbf9f187f8d0ada6bae23489672fd84fd044b935c62099ff80ba28fa7b6565f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET / HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:14 GMT
content-type: text/html
content-length: 476
content-encoding: gzip
last-modified: Wed, 05 Apr 2023 07:53:50 GMT
etag: "ee366c29367d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/redirect.js

154.82.100.222

200 OK

700 B

URL GET HTTP/2
teleinfows.com/js/redirect.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
700 B (700 bytes)
Hash
2490e6600fce98123314f7170bb81756
e8fc4723f93c2f5527558c159998d4f864322a48
c3948e7959d9652e15a5b4ced6f078edfef982e4a37f73f2fac6d7e763d5f9ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/redirect.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:15 GMT
content-type: application/javascript
content-length: 700
content-encoding: gzip
last-modified: Wed, 05 Apr 2023 07:53:50 GMT
etag: "ee366c29367d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/config.js

154.82.100.222

200 OK

316 B

URL GET HTTP/2
teleinfows.com/js/config.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
316 B (316 bytes)
Hash
0f473dc8cb0eed8e543f26b9043a3fb6
56069d0c86850c8bcdef6495d213405e4a8b3f6d
e9885f72beec80104d584000fea488790bd8c910793bfb3879dc85c2fc54d98b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/config.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:15 GMT
content-type: application/javascript
content-length: 316
content-encoding: gzip
last-modified: Thu, 17 Nov 2022 09:32:07 GMT
etag: "eef157667fad81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index.html

154.82.100.222

200 OK

5.0 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index.html
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (430)
Size
5.0 kB (5024 bytes)
Hash
1cd80beb10e9c6a2b4fe22531b4ee94a
4d26f4436c260a6b671804361c0a83d17b34d45d
02a01d88474a06d372dc3412584bf7c252e03125166c241ebe684ec6a4e81e66

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index.html HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:15 GMT
content-type: text/html
content-length: 5024
content-encoding: gzip
last-modified: Sun, 18 Dec 2022 07:15:04 GMT
etag: "0cc2c73b012d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/bootstrap.min.css

154.82.100.222

200 OK

8.0 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/bootstrap.min.css
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with very long lines (42164)
Size
8.0 kB (7999 bytes)
Hash
c2656e265ef58a9cc9f4b70b15da5fb9
85c5ebdb89d4574d72688c2650d4b84b9b09770a
f1d083ffaa644c708f11db29707aa57c19246e6d32643b03fee3f82c17b224b3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/bootstrap.min.css HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/css
content-length: 7999
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "0f32e44fecfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/favicon.ico

154.82.100.222

404 Not Found

23 kB

URL GET HTTP/2
teleinfows.com/favicon.ico
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Size
23 kB (22817 bytes)
Hash
d60fe6e305f836d5b942b32278a7b1a7
072d98fd864ad203e2164af8fa5942b6c623bdc8
217997338677cb4c6028849c2c69b11146e515f0bc49c01fa18a3e5f66201204

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - WhatsApp
OpenPhish	phishing	Telegram

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: NgxFence
date: Sun, 13 Aug 2023 14:12:15 GMT
content-type: text/html
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f1e05bc8656466ed7f19cbf61ce78e4
f9e5f6eefc197084c31e45173204d63ac5d1d205
b945ab01642936f842281d00a2ab1444d5541585022b74f74229ba9c7e789e9f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Aug 2023 14:12:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-5X96JGP

172.217.21.168

200 OK

52 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5X96JGP
IP
172.217.21.168:443
ASN
#15169 GOOGLE

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (2271)
Size
52 kB (52339 bytes)
Hash
f38f44e076aab7bb61a1e2a60d3827da
82a6163bad4264db5e19ea9ede5ae0ea6d55409b
abc6a5203204cf946ad4162a29f5b681555328b151e72801e005692e945e3e79

HTTP Headers

GET /gtm.js?id=GTM-5X96JGP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Aug 2023 14:12:16 GMT
expires: Sun, 13 Aug 2023 14:12:16 GMT
cache-control: private, max-age=900
last-modified: Sun, 13 Aug 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52339
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f1e05bc8656466ed7f19cbf61ce78e4
f9e5f6eefc197084c31e45173204d63ac5d1d205
b945ab01642936f842281d00a2ab1444d5541585022b74f74229ba9c7e789e9f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Aug 2023 14:12:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

teleinfows.com/TG_ZH/index_files/js

154.82.100.222

200 OK

41 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with very long lines (1615)
Size
41 kB (41037 bytes)
Hash
d28613ff9ab6c4f187868ad0543de0f3
9be8b9973f87458167e984bf5ca3ea11651d4c98
377a867c84d7622e8505d60ab3f2cd91c2bee74035d45971e9fd11f904cc3da6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/plain
content-length: 41037
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "0f32e44fecfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/gtm.js.download

154.82.100.222

200 OK

45 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/gtm.js.download
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with very long lines (1615)
Size
45 kB (45077 bytes)
Hash
c2f5efa78f85a28c9dbc2b5adac56ec5
4ccee472dbdfc7919cdcbe02f09692ed69fa5b95
8cbaae5ea817ea19555ba3c88649f6db86533c6a0fb945042ac060b0c446199c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/gtm.js.download HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/plain
content-length: 45077
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "0f32e44fecfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-212845866-1&l=dataLayer&cx=c

172.217.21.168

200 OK

67 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-212845866-1&l=dataLayer&cx=c
IP
172.217.21.168:443
ASN
#15169 GOOGLE

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (4289)
Size
67 kB (66582 bytes)
Hash
faddd3057e3d28363434c0e35938cb1f
616890408493c6bbf324b738009a8752acd2847e
f80df6a73b0dcd750d281c3c3b6e17984dea114997c804434a3951bb748522bb

HTTP Headers

GET /gtag/js?id=UA-212845866-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Aug 2023 14:12:16 GMT
expires: Sun, 13 Aug 2023 14:12:16 GMT
cache-control: private, max-age=900
last-modified: Sun, 13 Aug 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66582
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c

172.217.21.168

200 OK

82 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c
IP
172.217.21.168:443
ASN
#15169 GOOGLE

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (3034)
Size
82 kB (81928 bytes)
Hash
8c274e461cbf32add8456c7d87ea5908
31dbaa8fa6bd4f3fa1bca9d9b7e53e0535f40604
ee32acdf79ca3f2300f033db7b6a75e6bef6f5148912bc8631fb5b8a9d3d96f2

HTTP Headers

GET /gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Aug 2023 14:12:16 GMT
expires: Sun, 13 Aug 2023 14:12:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81928
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c

172.217.21.168

200 OK

82 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c
IP
172.217.21.168:443
ASN
#15169 GOOGLE

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (3034)
Size
82 kB (81917 bytes)
Hash
e6faca5a4a441bcb8d27ee8562e25b51
1236623f730291ea4c3adf621e9d443dc57840a2
a351bcaf7dac0638b160df4ac9a920465c0ad5fe54e1573061c993180d55292e

HTTP Headers

GET /gtag/js?id=G-VE3X12E1EV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Aug 2023 14:12:16 GMT
expires: Sun, 13 Aug 2023 14:12:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81917
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c

172.217.21.168

200 OK

78 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c
IP
172.217.21.168:443
ASN
#15169 GOOGLE

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (5857)
Size
78 kB (78174 bytes)
Hash
27399abda9226b7a3d28afc19db8d62d
40b28e1444534cdcdd82c18f5f93ee2b75e3fe24
ecba0a21aba63a1b914ae4ec86f705a08aa68f019929fc50e69bd937e3076cec

HTTP Headers

GET /gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Aug 2023 14:12:16 GMT
expires: Sun, 13 Aug 2023 14:12:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78174
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

teleinfows.com/TG_ZH/index_files/js(1)

154.82.100.222

200 OK

74 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/js(1)
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with very long lines (15517)
Size
74 kB (73781 bytes)
Hash
abfaa1e5adb26dd8dcee9ce4a2dc6148
467cd255cd9bd6fa0afdfd5813b52cda6cdc48fc
5a93b0bce4a0f9e2c5fe4117885c4d1adec6b2ab688ebfe5a32d492ea5e75ba9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/js(1) HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/plain
content-length: 73781
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "0f32e44fecfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/t_logo.png

154.82.100.222

200 OK

11 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/t_logo.png
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11449 bytes)
Hash
2c84be4c4dec401d09a64498cbbd382d
1c7053b083d5e59ed5cb4912c5500f39beaf765e
88afe4caad9d3ef9d7b4a5301d1b2b4378b54d233038079f0145e2f387f4eed9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/t_logo.png HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/png
content-length: 11449
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "c78ec444fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c

172.217.21.168

200 OK

78 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c
IP
172.217.21.168:443
ASN
#15169 GOOGLE

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintB8:00:22:F1:F1:80:E5:11:65:10:02:04:DA:9B:FA:C3:3E:F6:7A:70
ValidityMon, 17 Jul 2023 08:16:31 GMT - Mon, 09 Oct 2023 08:16:30 GMT

File type
ASCII text, with very long lines (5857)
Size
78 kB (78242 bytes)
Hash
cf9672154af72bf9c73a852d776dded7
af11a64327e5ada8d7add843c48f99e5355ebfb8
e86180ef1895cc0028b7ec6d1f645b2b4345dc6db34a295cda68df8f97e3bef4

HTTP Headers

GET /gtag/js?id=G-NW6YF835DY&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Aug 2023 14:12:16 GMT
expires: Sun, 13 Aug 2023 14:12:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78242
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

teleinfows.com/js/download.js

154.82.100.222

200 OK

989 B

URL GET HTTP/2
teleinfows.com/js/download.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
989 B (989 bytes)
Hash
9b3fba1b3c1f07ebaa4cc0d8c627ce46
353ce9ff4ad2cf0dbddf1645425d6f6c6aa8e434
a01cfd51880bb90e4396b1df541b893dcd761de237e5409bba626c165244b2aa

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/download.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: application/javascript
content-length: 989
content-encoding: gzip
last-modified: Mon, 10 Jul 2023 11:30:20 GMT
etag: "0ee7de821b3d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/main.js

154.82.100.222

200 OK

5.8 kB

URL GET HTTP/2
teleinfows.com/js/main.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
5.8 kB (5804 bytes)
Hash
401f247640476ab57f1562643278c690
88d3d9ce942bc4f83013a1f302fa57281c62dbd8
39a10a24888c4e0898d8c9c9ed332d88d0203c08d0f5cfbbf82c84cd9eee584f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/main.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: application/javascript
content-length: 5804
content-encoding: gzip
last-modified: Fri, 04 Nov 2022 10:14:52 GMT
etag: "0f6254736f0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/v652eace1692a40cfa3763df669d7439c1639079717194

154.82.100.222

200 OK

5.1 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/v652eace1692a40cfa3763df669d7439c1639079717194
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with very long lines (13970), with no line terminators
Size
5.1 kB (5146 bytes)
Hash
19514b1be5ee33b45d32c1fcd4c67ec2
bdeab77b43cafcc638df9d7c26f1aa7f46bf1fd5
fd0a1ac929c11b08e819fe4b0a18c5574012c44f09de8987c6be99a0f055a505

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/plain
content-length: 5146
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:13:19 GMT
etag: "8089c744fecfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/file/66eebb00fd46acb1ce.jpg

154.82.100.222

200 OK

171 kB

URL GET HTTP/2
teleinfows.com/file/66eebb00fd46acb1ce.jpg
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x374, components 3\012- data
Size
171 kB (171309 bytes)
Hash
98e1ad4f472359ad088f4a937ac00c32
55c5d6480be58cccc9f42456654cdd2a57489c32
adbb4d0a389cd244a73b98167b6ee4ce19f18a1c9a31e25628a618609ef0352c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/66eebb00fd46acb1ce.jpg HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/jpeg
content-length: 171309
last-modified: Wed, 16 Nov 2022 05:52:12 GMT
etag: "c7d8ef927ff9d81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/img/twitter.png

154.82.100.222

200 OK

1.3 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/img/twitter.png
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
PNG image data, 21 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1272 bytes)
Hash
1ed9bf7633f4f449c8d2df94ea0eb35f
2902ba9c2b127c74c2550298a0578d7d8da941c2
e7d23b06a4ffd600558e5443d1e32daaaf13a27cf7bb8b7cc163a92b4054aaf2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/img/twitter.png HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/png
content-length: 1272
last-modified: Sat, 24 Sep 2022 10:13:13 GMT
etag: "351e4441fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/img/SiteAndroid.jpg?2

154.82.100.222

200 OK

21 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/img/SiteAndroid.jpg?2
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 290x270, components 3\012- data
Size
21 kB (21090 bytes)
Hash
f5eb8dcf9b18f19053034101e920574e
9513c6c5e39669ad27132d470008955dbaae61f0
15a94720d72ed1727fb281ed4af914e17cd8166bb18f5a8484f32f9faff4f365

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/img/SiteAndroid.jpg?2 HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/jpeg
content-length: 21090
last-modified: Sat, 24 Sep 2022 10:13:13 GMT
etag: "57903a41fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/img/SiteiOS.jpg?2

154.82.100.222

200 OK

31 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/img/SiteiOS.jpg?2
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 442x270, components 3\012- data
Size
31 kB (31305 bytes)
Hash
89486a05599a1cfd549f8fb2d70e7d73
24867697525df19b88e79d75ff32384eba57b321
5a2c666b6e4f30ff921353cd9a3eccc09b9314c5c5ab11e1a3928936e497b2dc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/img/SiteiOS.jpg?2 HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/jpeg
content-length: 31305
last-modified: Sat, 24 Sep 2022 10:13:13 GMT
etag: "622d3d41fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/img/t_main_Android_demo.mp4

154.82.100.222

404 Not Found

1.2 kB

URL GET HTTP/2
teleinfows.com/img/t_main_Android_demo.mp4
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Size
1.2 kB (1231 bytes)
Hash
d60fe6e305f836d5b942b32278a7b1a7
072d98fd864ad203e2164af8fa5942b6c623bdc8
217997338677cb4c6028849c2c69b11146e515f0bc49c01fa18a3e5f66201204

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - WhatsApp
OpenPhish	phishing	Telegram

HTTP Headers

GET /img/t_main_Android_demo.mp4 HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/html
content-length: 1231
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
X-Firefox-Spdy: h2

teleinfows.com/img/t_main_iOS_demo.mp4

154.82.100.222

404 Not Found

1.2 kB

URL GET HTTP/2
teleinfows.com/img/t_main_iOS_demo.mp4
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Size
1.2 kB (1231 bytes)
Hash
d60fe6e305f836d5b942b32278a7b1a7
072d98fd864ad203e2164af8fa5942b6c623bdc8
217997338677cb4c6028849c2c69b11146e515f0bc49c01fa18a3e5f66201204

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - WhatsApp
OpenPhish	phishing	Telegram

HTTP Headers

GET /img/t_main_iOS_demo.mp4 HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/html
content-length: 1231
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/img/SiteDesktop.jpg?2

154.82.100.222

200 OK

98 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/img/SiteDesktop.jpg?2
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1246x260, components 3\012- data
Size
98 kB (97628 bytes)
Hash
fa44f18971e0750249cbcf34f66ae11a
0b4017cad011b2ef346094e1c37abb912fa9b7d7
9d47030d555e1765171c05b57ed755744d6051364674efbd99a98df9ec7fa9cd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/img/SiteDesktop.jpg?2 HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/jpeg
content-length: 97628
last-modified: Sat, 24 Sep 2022 10:13:13 GMT
etag: "36f33c41fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/file/cbc986292284a428e2.jpg

154.82.100.222

200 OK

147 kB

URL GET HTTP/2
teleinfows.com/file/cbc986292284a428e2.jpg
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x357, components 3\012- data
Size
147 kB (147023 bytes)
Hash
cee9bffa334b7617b4c695e6e00408f4
3967a9583b519497bcad6432bb5ef7ee9897b324
1a2b102a55c9f22ec06063eb2be4ee54f6ca0e21391c8b096ee9e0c08fe92d89

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /file/cbc986292284a428e2.jpg HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/jpeg
content-length: 147023
last-modified: Wed, 16 Nov 2022 05:52:12 GMT
etag: "7c3bf2927ff9d81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/config.js

154.82.100.222

200 OK

316 B

URL GET HTTP/2
teleinfows.com/js/config.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
316 B (316 bytes)
Hash
0f473dc8cb0eed8e543f26b9043a3fb6
56069d0c86850c8bcdef6495d213405e4a8b3f6d
e9885f72beec80104d584000fea488790bd8c910793bfb3879dc85c2fc54d98b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/config.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:17 GMT
content-type: application/javascript
content-length: 316
content-encoding: gzip
last-modified: Thu, 17 Nov 2022 09:32:07 GMT
etag: "eef157667fad81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: MISS
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/d4b936ecc2c939f4fa.gif

154.82.100.222

200 OK

2.2 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/d4b936ecc2c939f4fa.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
2.2 MB (2202471 bytes)
Hash
9f6cb1e0d2a29541764755e05b484de7
d443f92ed7059a30db98857f6c5c290589ebfe24
abdbfc359a2954fadb7d335a20c2ae29cc5b00dbd538e88b03d612f978654e45

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/d4b936ecc2c939f4fa.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 2202471
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "9565bd44fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/7318c11715aa2ec45b.gif

154.82.100.222

200 OK

2.3 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/7318c11715aa2ec45b.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
2.3 MB (2254846 bytes)
Hash
999ccb074c15d6377f97302832038c14
c08b94482ad5540f68a896f30cc890474c058e1d
15d01829fac9057a922b9168d68d9ea940d7612b0128ae9b67fe69a1dd10e62d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/7318c11715aa2ec45b.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 2254846
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "e5feb344fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/dev.js

154.82.100.222

200 OK

335 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/dev.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
335 B (335 bytes)
Hash
9c13d7ccc5ecbad03de74eccb0a0bfd7
c214d2252417802bb867d926ec9e6db21d8fcf02
f9ba64cd87494fe03479c7d1f2179c4df84a81ce6f8fb84da7dda69392fc28b8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/dev.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 335
content-encoding: gzip
last-modified: Sat, 20 May 2023 02:35:49 GMT
etag: "cfa4c3c9c38ad91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t101.js

154.82.100.222

200 OK

528 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t101.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
528 B (528 bytes)
Hash
dc319cdfd8b69a8501ae0470ed95d2dc
1d545141898e760436794a3a60cac812d164d32c
c8c05d793d39a95225afc52a1dcde1d81070785c72697675a89123ed32164085

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t101.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 528
content-encoding: gzip
last-modified: Fri, 04 Aug 2023 03:46:13 GMT
etag: "3aace63686c6d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t108.js

154.82.100.222

200 OK

608 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t108.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
608 B (608 bytes)
Hash
19610ffffb5f8db346ac477b61881b9a
6c67ec85150a99971ebc6154d93abc63e68e6f3f
25cb46b283e4f73d90fa61138ad36987d098d83abfd2a4e2c0cce04b0352b106

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t108.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 608
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 11:49:04 GMT
etag: "2a514673a26bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t168.js

154.82.100.222

200 OK

557 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t168.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
557 B (557 bytes)
Hash
209450572d7f94212d0ab7c9b8312736
08e4c44f225dec846f9dd912b3381627123b8766
c3bf4df2dfd690e0cb35632a29bb8ff018da4aa56158ad222e36f8e8818636fe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t168.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 557
content-encoding: gzip
last-modified: Fri, 30 Jun 2023 11:55:11 GMT
etag: "80f910b949abd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t188.js

154.82.100.222

200 OK

345 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t188.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
345 B (345 bytes)
Hash
b0d338d293caebc24ea5d04655968eec
010e7acce9d5aebacd965c031319c77090bcd402
0f826630959ae74651223511732480d758b35a041eea0c72dff775d3cf601aa4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t188.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 345
content-encoding: gzip
last-modified: Thu, 06 Jul 2023 06:07:14 GMT
etag: "95d5141cd0afd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t888.js

154.82.100.222

200 OK

495 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t888.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
495 B (495 bytes)
Hash
f5f4169266f561dc31defb576f011271
0081b577b30cebb75724f3132e04cfa6b61be037
a9621c2d617dc70b2e069a909f47485f3725937352047a33ce2c906e31b3e52a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t888.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 495
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "80bc5e8f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t112.js

154.82.100.222

200 OK

345 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t112.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
345 B (345 bytes)
Hash
f911e72c86ade2f4e5afba006b95c351
b0aaf60e7db12b047d0ef6d6f4cc24f0630caa10
7701db5a142e8c4fdba0c1381035ac4ba4d69b8b86bbf1ef14ad199156360803

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t112.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 345
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "4591b98f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t111.js

154.82.100.222

200 OK

622 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t111.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
622 B (622 bytes)
Hash
49e346430661bddcee69f5a3561f32fe
a8bbfcf4a7d00b19eb9e59379ea94df98a2828e1
12f447aa624d32e2c49603196bae7c9ac34954589dd824b95449c343f7795d74

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t111.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 622
content-encoding: gzip
last-modified: Tue, 25 Apr 2023 06:09:31 GMT
etag: "c68129803c77d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t110.js

154.82.100.222

200 OK

761 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t110.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
761 B (761 bytes)
Hash
dba5fdeb4429e0999fa5a6989a9617a1
3aad0c2077d7a4903530d0aa99382d1ff5c5e785
81fb2b45372962009d60750018adfdad1b17f9019f31651a201c2cd30116ae84

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t110.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 761
content-encoding: gzip
last-modified: Thu, 08 Jun 2023 07:13:28 GMT
etag: "05c1b9d899d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t117.js

154.82.100.222

200 OK

562 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t117.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
562 B (562 bytes)
Hash
8b0cf6dbb024830d36ba7eeab47ffc94
cbb462d15964bd100730ea9982caaff5308fa776
f383feca7f368901879876f60488b5e88dbe603fc6a43cd332d43943b9b20f7f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t117.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 562
content-encoding: gzip
last-modified: Fri, 04 Aug 2023 10:59:02 GMT
etag: "98379eadc2c6d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t115.js

154.82.100.222

200 OK

403 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t115.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
403 B (403 bytes)
Hash
a0f2026326e27da2e634893723338c14
9f9ecefad83f9a3bdce99aca6aabed6eeccc8442
f71dc5df52ffab4456fa3bee4e9202b56bb7ac83f70c394c5e6dc93560ab1dc3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t115.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 403
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "4591b98f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t118.js

154.82.100.222

200 OK

503 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t118.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
503 B (503 bytes)
Hash
93e0f8911c6b54768044d308bfa83cc1
8f2df93a1304b83966d78bde5ded37bca0951086
a5013a167fdd315b5e7137874e631d9607eb21d16f19ba6893d4db3b931f30d4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t118.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 503
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "4591b98f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t109.js

154.82.100.222

200 OK

421 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t109.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
421 B (421 bytes)
Hash
1dbe3488d80e33a70f9a6338b418af4d
f3d5dc7e9f25ebc40011ed053e6b00cc9e3c1489
8039872b1ca45be8fb710e76cd2685149f9d37e5ed0afd7099e41d25eb6a2932

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t109.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 421
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "4591b98f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t121.js

154.82.100.222

200 OK

401 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t121.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with CRLF line terminators
Size
401 B (401 bytes)
Hash
02472884b4ce869aee04090270887702
00e2564219c92e5d56b74e2e0344c4c1375513c6
2179bce7f7eefa87a74a6cea13e0f5a36594cc4f71ccbcd791165e485c58f0f4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t121.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 401
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "4591b98f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t123.js

154.82.100.222

200 OK

460 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t123.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with CRLF line terminators
Size
460 B (460 bytes)
Hash
666a4150c89998324fb7f3552c6c1321
8ee9c62ac86b8b03c60a2a6ca54a1604e1ded145
1cb30ca9ce9f07ed50c13d36425f8546ea97f33b52ddb3c0aa4c1c03988cdf13

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t123.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 460
content-encoding: gzip
last-modified: Mon, 10 Apr 2023 05:51:57 GMT
etag: "17e1bb8f706bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t158.js

154.82.100.222

200 OK

448 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t158.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
448 B (448 bytes)
Hash
6c25995b0653a5076e32a79c1b1af2ca
7f1437bc29fb3482f0bf05ac99d0697324a991a2
6459fc1585ec24d900cc01f668c8a552d5d84313b3fd4890a093dbbb558c594d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t158.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 448
content-encoding: gzip
last-modified: Tue, 25 Jul 2023 10:25:54 GMT
etag: "c69d8364e2bed91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t125.js

154.82.100.222

200 OK

729 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t125.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with CRLF line terminators
Size
729 B (729 bytes)
Hash
6c8658c98dffb31219bbd89b50ba17f8
84b1a7cb47f99deb776dc59144945d945054d95b
0972cd89d4efc964889d18fede98f815a3d9c7e02408661345b8d705f1242e4e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t125.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 729
content-encoding: gzip
last-modified: Wed, 14 Jun 2023 04:03:27 GMT
etag: "8051f52b759ed91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t126.js

154.82.100.222

200 OK

366 B

URL GET HTTP/2
teleinfows.com/js/downloadlist/t126.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text
Size
366 B (366 bytes)
Hash
753562021574bf0329b388ee30fe90cc
f475d9c10102d751ed10f586a8de762560733730
f665a1a7f27f4df2d609d8590386cfc171ff7ffe8e1ef25582a3baf01bc38b69

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t126.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 366
content-encoding: gzip
last-modified: Mon, 10 Jul 2023 04:34:41 GMT
etag: "f283f5d7e7b2d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/img/SiteLogos.png

154.82.100.222

404 Not Found

963 B

URL GET HTTP/2
teleinfows.com/TG_ZH/img/SiteLogos.png
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Size
963 B (963 bytes)
Hash
d60fe6e305f836d5b942b32278a7b1a7
072d98fd864ad203e2164af8fa5942b6c623bdc8
217997338677cb4c6028849c2c69b11146e515f0bc49c01fa18a3e5f66201204

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - WhatsApp
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/img/SiteLogos.png HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index_files/telegram.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/html
x-powered-by: ASP.NET
x-cache: DYNAMIC
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/feb1e161b1d3608613.gif

154.82.100.222

200 OK

2.4 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/feb1e161b1d3608613.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
2.4 MB (2424803 bytes)
Hash
14c0a01070573bc00e0f462023e8162f
8d8725f9bdbe99060b86e0a03434bb5c4e3be8af
116029bd091ec390064879df7dad05e601e284413f53b9d51978875b85dc7471

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/feb1e161b1d3608613.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 2424803
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "a92bc244fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/f3cec6c451d023c109.gif

154.82.100.222

200 OK

2.7 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/f3cec6c451d023c109.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
2.7 MB (2700330 bytes)
Hash
21528f532493017ca7a8cdfa73ba1f09
798073fd3b30c0688787edac94667d6025b027ae
3da30018745ee9d2032bb71f2907a2fa3647d1660d402200d35f161854b0ef48

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/f3cec6c451d023c109.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 2700330
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "e5c8bf44fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/dd4eeb46cc5efc0688.gif

154.82.100.222

200 OK

2.4 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/dd4eeb46cc5efc0688.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
2.4 MB (2415534 bytes)
Hash
cbd2d6af702cab22fb23c7d159abc428
c0b6c9da2c8da897c00df0a6569d2fd2540dbc1f
58a9156f7cb557eb157598032fd67ade899a5a8b635455fbeb46c7bfa0f122e4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/dd4eeb46cc5efc0688.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 2415534
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "9565bd44fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/9ce5fa5f3fb74460b4.gif

154.82.100.222

200 OK

3.3 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/9ce5fa5f3fb74460b4.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
3.3 MB (3327196 bytes)
Hash
3ca4222d4871d2c299e44dbbd14ebb46
19ee2e1c0d6da440c08076dc1a657c8e58aa0662
e21cceb8262a91f878fe4e5202139793e9cd3a02da2dd08d2dc4180cd29ac402

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/9ce5fa5f3fb74460b4.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 3327196
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "549fb844fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/7d57d7159cf4fbe9b2.gif

154.82.100.222

200 OK

3.4 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/7d57d7159cf4fbe9b2.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
3.4 MB (3422486 bytes)
Hash
e60746b12f4e6cca778727472f415218
4e3b517a1911d891d018bc63b66e1b69837a3e15
b285715d34361c4fed5058a10eb830bf2dd61126518477ded340dd7f95221417

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/7d57d7159cf4fbe9b2.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 3422486
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "d4fb644fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/911807f65dfb4f8f20.gif

154.82.100.222

200 OK

2.0 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/911807f65dfb4f8f20.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
2.0 MB (2002471 bytes)
Hash
6a88bbd5858b7d9234fb7d0c6c5059a6
c3412d69dfa2ce6b208d52e6842ea7807cff42d3
f8152a8d500807f824571c3256320bbf578cdce88d45d0fd048a6422f71c272b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/911807f65dfb4f8f20.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 2002471
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "d4fb644fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/b6c5dbc0e4f6553805.gif

154.82.100.222

200 OK

3.1 MB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/b6c5dbc0e4f6553805.gif
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
GIF image data, version 89a, 512 x 512\012- data
Size
3.1 MB (3145277 bytes)
Hash
5433cf6cf6daa107f38cc2f2b221adc5
84156830cc0e51264342c37f2043c441562b137f
321fb7936dada76ce957347f61cd05be88581c5c3532d5cf87d346ba677474f6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/b6c5dbc0e4f6553805.gif HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: image/gif
content-length: 3145277
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "cc2bb44fecfd81:0"
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/cdn-cgi/rum?

154.82.100.222

404 Not Found

1.2 kB

URL POST HTTP/2
teleinfows.com/cdn-cgi/rum?
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1309), with no line terminators
Size
1.2 kB (1231 bytes)
Hash
6afac3f5abfff7a3361ac72f247cfbac
d6f66d7d3d69323a483f7e2a9447668081d6a207
2487bc6d350f7394ed1a76e1013197159c5b4f3e1885607a97d7b3c9c776b751

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1104
Origin: https://teleinfows.com
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: NgxFence
date: Sun, 13 Aug 2023 14:12:20 GMT
content-type: text/html
x-powered-by: ASP.NET
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-encoding: br
X-Firefox-Spdy: h2

teleinfows.com/TG_ZH/index_files/telegram.css

154.82.100.222

200 OK

110 kB

URL GET HTTP/2
teleinfows.com/TG_ZH/index_files/telegram.css
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with very long lines (1267)
Size
110 kB (110374 bytes)
Hash
081310a3179c096b57d01c1a7ef8f7c9
552a38700f9f99d7a060cd7739c75f4441595f08
8ddab33bd2921e0a99c5f9919ca4a9c22a11916db184f15b9501c0dd6a99947a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /TG_ZH/index_files/telegram.css HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:16 GMT
content-type: text/css
content-length: 22287
content-encoding: gzip
last-modified: Sat, 24 Sep 2022 10:13:18 GMT
etag: "0f32e44fecfd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

teleinfows.com/js/downloadlist/t127.js

154.82.100.222

200 OK

1.1 kB

URL GET HTTP/2
teleinfows.com/js/downloadlist/t127.js
IP
154.82.100.222:443
ASN
#399077 TERAEXCH

Requested by
https://teleinfows.com/TG_ZH/index.html
Certificate
IssuerUnizeto Technologies S.A.
Subjecttelegwok.com
Fingerprint55:40:3F:35:ED:02:49:B0:0C:F5:16:84:71:28:7B:0D:1B:4F:38:34
ValidityThu, 03 Aug 2023 06:59:31 GMT - Sun, 01 Sep 2024 06:59:30 GMT

File type
ASCII text, with very long lines (1247), with no line terminators
Size
1.1 kB (1138 bytes)
Hash
a01652785ff8942f6977d61c38b3f3b2
592a020207c231d918b8db965b04493c40ec33bc
ceaa1a59abd87a902693f9665b8a3a9e1920be55a4f602bf00edda45bb4fdf5e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telegram

HTTP Headers

GET /js/downloadlist/t127.js HTTP/1.1
Host: teleinfows.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teleinfows.com/TG_ZH/index.html
Cookie: _ga_VE3X12E1EV=GS1.1.1691935932.1.0.1691935932.0.0.0; _ga=GA1.1.1739138658.1691935932; _ga_NW6YF835DY=GS1.1.1691935932.1.0.1691935932.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: NgxFence
date: Sun, 13 Aug 2023 14:12:18 GMT
content-type: application/javascript
content-length: 433
content-encoding: gzip
last-modified: Sat, 12 Aug 2023 11:16:36 GMT
etag: "2dca3975ecdd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
x-cache: SCARCE
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by