Report - embedwish.com/f/d5ez3o9ikek1

Report Overview

Visited public
2023-09-19 05:22:02
Tags
Submit Tags
URL
embedwish.com/f/d5ez3o9ikek1
Finishing URL
embedwish.com/f/d5ez3o9ikek1
IP / ASN
172.67.204.105
#13335 CLOUDFLARENET
Title
StreamWish

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
embedwish.com	unknown	2023-08-04	2023-08-04 18:02:45	2023-08-17 04:32:27	5.1 kB	525 kB	104.21.93.44
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-18 18:12:08	666 B	1.4 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-09-18 21:13:19	422 B	93 kB	142.250.74.136
jm.ethylintusker.com	unknown	unknown	No data	No data	412 B	1.5 kB	142.91.159.107

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-19	medium	ethylintusker.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (9)

	URL	From	Size	First Seen	Last Seen
	embedwish.com/wish/js/app.js	ScriptElement	120 B	2023-05-24	2025-07-07
Pretty URL embedwish.com/wish/js/app.js IP 104.21.93.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-24 01:42 Last Seen2025-07-07 18:08 Times Seen83 Hash a79f8fabfb7648a13210846a85a88cf7 6712b8182af3de12fda154bee96ff127cfc963fe ec33448e18837c25e8bad49acb1b6d8a67f9aa49b2804bcd4c8d109ae4e96754 Loading...

	embedwish.com/wish/js/xupload.js?v19	ScriptElement	11 kB	2023-05-24	2023-10-27
Pretty URL embedwish.com/wish/js/xupload.js?v19 IP 104.21.93.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-24 01:42 Last Seen2023-10-27 14:17 Times Seen7 Hash 9b5af689aa7f928aa8147680722eb5f5 05cce40cfa6b149b98da4494ef1c249f2dc00052 af6d1f30ca1c11adb4cfc4a8d25bac545586a79390ceae9ee9e39c78d4f37817 Loading...

	embedwish.com/f/d5ez3o9ikek1	ScriptElement	0 B	0001-01-01	2025-07-09
Pretty URL embedwish.com/f/d5ez3o9ikek1 IP 104.21.93.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-09 10:37 Times Seen5357810 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	embedwish.com/wish/js/bootstrap.bundle.min.js	ScriptElement	81 kB	2023-03-12	2025-07-09
Pretty URL embedwish.com/wish/js/bootstrap.bundle.min.js IP 104.21.93.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:15 Last Seen2025-07-09 07:36 Times Seen3040 Hash e8890063e097beea88fd37621217af9c bff78dd9c02a5008ab43642948739ce58c761b21 061f0b1ea79e6e2ca24f4603e55d3e909f7471ba0b279cdb6dea40554106c6a2 Loading...

	www.googletagmanager.com/gtag/js?id=G-2TL7NH453R	ScriptElement	277 kB	2023-09-19	2023-09-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-2TL7NH453R IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-19 07:22 Last Seen2023-09-19 07:22 Times Seen1 Hash 1f08d70578377f339f9cfad97a632e1c 51d08856834e5450a88b737a4cedbef604e046d1 7b8ab97df108b6990e116f2796ce44b26a7feedb5f8e5a4bd47277c3c3ab4db6 Loading...

	embedwish.com/wish/js/jquery-3.2.1.min.js	ScriptElement	87 kB	2023-03-07	2025-07-09
Pretty URL embedwish.com/wish/js/jquery-3.2.1.min.js IP 104.21.93.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-09 10:27 Times Seen42115 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	embedwish.com/assets/jquery/adult100.js?v=1.0	ScriptElement	4.6 kB	2024-08-21	2024-08-21
Pretty URL embedwish.com/assets/jquery/adult100.js?v=1.0 IP 104.21.93.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 06:22 Last Seen2024-08-21 06:22 Times Seen1 Hash 9766d596682ec35b9bca168fd8d89e78 ecdd0c4c82c82a014606f944f97db713c37a6029 c4ea85a98c65828cb6d05dd8d6446237c3facf8cb5c0e5ed4b0b4d95c76eb42d Loading...

	jm.ethylintusker.com/tY5hzp1VQoJ/55699	ScriptElement	5 B	2023-03-07	2025-07-09
Pretty URL jm.ethylintusker.com/tY5hzp1VQoJ/55699 IP 142.91.159.107 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-07-09 09:35 Times Seen6680 Hash f7a2939527fd9e68723da600e96d76bd a9e717b6364d2895ee0a716050db32ca0ef1bb42 d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a Loading...

	embedwish.com/f/d5ez3o9ikek1	ScriptElement	0 B	0001-01-01	2025-07-09
Pretty URL embedwish.com/f/d5ez3o9ikek1 IP 104.21.93.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-09 10:37 Times Seen5357810 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (15)

URL IP Response Size

GET embedwish.com/daly/images/streamwish123.png

104.21.93.44

200 OK

17 kB

URL GET HTTP/3
embedwish.com/daly/images/streamwish123.png
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
PNG image data, 400 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
17 kB (17444 bytes)
Hash
28a95b4af08dc46dad7c8402dc293193
b065a2809b226a235a2f7533e75eebd7185a72bf
e119c23bce3adb9808264d1dc13141d186ff063f5fbbfe4c1010a235f951a93c

HTTP Headers

GET /daly/images/streamwish123.png HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:44 GMT
content-type: image/png
content-length: 17444
last-modified: Sat, 15 Apr 2023 09:06:26 GMT
etag: "4424-5f95c45bee880"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 1145
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Le3lvHxeLYsFHIlw1VUHSAJXPq7vne95laABQPdjBFTvSsClgz9VvzXHHHlAQ0tmpfg6FvbQJRXdb5pHcl6H8lDWI5wPeIMP2iqKJmAavCtR5B91nuBrJ%2FHLGxT7vVQN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f630f9e470afe-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0cbea850f6613d3261a6ec5e6f5da0f
74e4a3487bec7582d1178f02417a1fc6eb211d11
e0ed8b7d776902b83ddfa6ce2c42edcf4f9b53397db2a04eca4e3a39b49b116d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 05:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET www.googletagmanager.com/gtag/js?id=G-2TL7NH453R

142.250.74.136

200 OK

92 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-2TL7NH453R
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintE6:F7:82:C1:10:AC:08:76:A1:97:70:B7:56:B7:EF:92:30:BA:1E:12
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
ASCII text, with very long lines (5808)
Size
92 kB (92391 bytes)
Hash
1f08d70578377f339f9cfad97a632e1c
51d08856834e5450a88b737a4cedbef604e046d1
7b8ab97df108b6990e116f2796ce44b26a7feedb5f8e5a4bd47277c3c3ab4db6

HTTP Headers

GET /gtag/js?id=G-2TL7NH453R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 19 Sep 2023 05:21:45 GMT
expires: Tue, 19 Sep 2023 05:21:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92391
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0cbea850f6613d3261a6ec5e6f5da0f
74e4a3487bec7582d1178f02417a1fc6eb211d11
e0ed8b7d776902b83ddfa6ce2c42edcf4f9b53397db2a04eca4e3a39b49b116d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 05:21:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET jm.ethylintusker.com/tY5hzp1VQoJ/55699

142.91.159.107

200 OK

25 B

URL GET HTTP/1.1
jm.ethylintusker.com/tY5hzp1VQoJ/55699
IP
142.91.159.107:443
ASN
#7979 SERVERS-COM

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectjm.ethylintusker.com
Fingerprint04:F6:EF:C1:35:6D:D7:AE:7C:96:A8:90:A4:66:1F:11:C9:C1:C8:A5
ValidityFri, 04 Aug 2023 09:04:16 GMT - Thu, 02 Nov 2023 09:04:15 GMT

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
f7a2939527fd9e68723da600e96d76bd
a9e717b6364d2895ee0a716050db32ca0ef1bb42
d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tY5hzp1VQoJ/55699 HTTP/1.1
Host: jm.ethylintusker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 05:21:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://embedwish.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Wed, 20-Sep-2023 05:21:45 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjCC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7B3R; expires=Wed, 20-Sep-2023 05:21:45 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

GET embedwish.com/wish/images/favicon/favicon-16x16.png

104.21.93.44

200 OK

1.2 kB

URL GET HTTP/3
embedwish.com/wish/images/favicon/favicon-16x16.png
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.2 kB (1157 bytes)
Hash
d88fc909ad3b0ebb7abdebbbe333ced0
f51da184450edd981e6f61ddec6cdd46ecf22cf7
bd0d8f287b014e4ea56b4a2e9168652049361cef64d5cef968a127955dbcb21c

HTTP Headers

GET /wish/images/favicon/favicon-16x16.png HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: image/png
content-length: 1157
last-modified: Sat, 15 Apr 2023 02:24:00 GMT
etag: "485-5f956a6883000"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 3928
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m8GNDJSdDuag29K8vprqHaVCJPpZp4j%2FyP%2FwObD6%2BkMd3c0oThvt6OTgDByxp9QOiq%2F8mF1cCA59L3QXXNRZfchH0viGNgalKqGuSGGh%2Fc%2FVvhpI81fKZBVphBDNxa7E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f6312ef9d0afe-OSL
alt-svc: h3=":443"; ma=86400

GET embedwish.com/wish/js/bootstrap.bundle.min.js

104.21.93.44

200 OK

81 kB

URL GET HTTP/3
embedwish.com/wish/js/bootstrap.bundle.min.js
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
ASCII text, with very long lines (65292)
Size
81 kB (80599 bytes)
Hash
e8890063e097beea88fd37621217af9c
bff78dd9c02a5008ab43642948739ce58c761b21
061f0b1ea79e6e2ca24f4603e55d3e909f7471ba0b279cdb6dea40554106c6a2

HTTP Headers

GET /wish/js/bootstrap.bundle.min.js HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 15 Mar 2023 16:39:00 GMT
etag: W/"13ad7-5f6f2fb2b7100"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RsicHBzYiXv5bBS3vhd810gzfmyz2tkKVbJIiG9pqaQv6H6bwxZKETbbdA0HOloX5bZzWlS38ekpHLnVkd%2FwTvT6kXsJKYzqBHQE0f4Ut74Ow3IeErDM9N2M7BydXXGo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f630f9e4b0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET embedwish.com/wish/js/app.js

104.21.93.44

200 OK

120 B

URL GET HTTP/3
embedwish.com/wish/js/app.js
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
ASCII text, with no line terminators
Size
120 B (120 bytes)
Hash
ffa99c7e3202a8c0e9820d78e7a3c118
b1528344fb8268362b42502f698dbfba2a5403ee
4616f6164a541a9b7295a01908412c6f4e6d1000aa1602d5cacd07a631cb165e

HTTP Headers

GET /wish/js/app.js HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 15 Mar 2023 16:39:00 GMT
etag: W/"78-5f6f2fb2b7100"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=um20n%2B%2Bg%2Fy5c1%2FocyQkQ%2FxmGU1lzpBsb3YqQV7e6UcsIRfNkIYhaoTu0aXecYfMOj2hu9GVEoF4qS1p6pO05MWUxF%2FE8qJORcSJyEXsAz6fln9YBBrqxnY2Q27T2cJaA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f63129f790afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET embedwish.com/assets/jquery/adult100.js?v=1.0

104.21.93.44

200 OK

4.6 kB

URL GET HTTP/3
embedwish.com/assets/jquery/adult100.js?v=1.0
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
ASCII text, with very long lines (4730), with no line terminators
Size
4.6 kB (4608 bytes)
Hash
59cc456c15f2f0b7a9c56d6f944f77d7
004fc07e6f053869cff5d33e63e1329c32e9b03d
aa5d3452e408a684ccbf4bc4843320884a306cde5b979503113ea8eb525a8957

HTTP Headers

GET /assets/jquery/adult100.js?v=1.0 HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: text/javascript; charset=UTF-8
expires: Mon, 18 Sep 2023 05:21:45 GMT
x-frame-options: DENY
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Tue, 19 Sep 2023 05:12:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q0ZFsGmmjHYw8EnBN89MJ2PFccks%2BJwShbwBv%2B9qAMGue5x6oNwcGp9ZsF3WvxY%2BjFnk18EOJtngwD%2BP%2FM8mS%2Fye14b%2BY85DwGqJXODYxcUBm9u58srJsHdp76uzNX%2FA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f630f9e480afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET embedwish.com/f/d5ez3o9ikek1

104.21.93.44

200 OK

5.7 kB

URL User Request GET HTTP/2
embedwish.com/f/d5ez3o9ikek1
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6560), with no line terminators
Size
5.7 kB (5712 bytes)
Hash
2b513f57af0bb4b52798cdcfa282011b
c8a75312e563c49a69987a999402e2529c1657e7
9317b5caf01647ada6f80fbe9e11f3e8202c93d89e5d829aab77c3d6a70ba62d

HTTP Headers

GET /f/d5ez3o9ikek1 HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 19 Sep 2023 05:21:44 GMT
content-type: text/html; charset=UTF-8
expires: Mon, 18 Sep 2023 05:21:44 GMT
x-frame-options: DENY
set-cookie: lang=1; domain=.embedwish.com; path=/; HttpOnly
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XHDfFK0%2BYIdlyvCv3JIHktOoIkwHCjXQOLu3WJ1Y%2BHis412tD3YC3l6mQGmQ5AeV9owpZJZ2G6IrzodQs11pJqZWUSIcGCIwvxq9K2CllXcRPxn0OmiKe%2BZDOhgaaIEz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 808f630bbce6b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET embedwish.com/wish/js/xupload.js?v19

104.21.93.44

200 OK

11 kB

URL GET HTTP/3
embedwish.com/wish/js/xupload.js?v19
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
ASCII text, with CRLF line terminators
Size
11 kB (10669 bytes)
Hash
9b5af689aa7f928aa8147680722eb5f5
05cce40cfa6b149b98da4494ef1c249f2dc00052
af6d1f30ca1c11adb4cfc4a8d25bac545586a79390ceae9ee9e39c78d4f37817

HTTP Headers

GET /wish/js/xupload.js?v19 HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 16 Mar 2023 14:46:00 GMT
etag: W/"29ad-5f70584e43a00"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mV5cIo4XTRsoD6JD992U0k9DF9OYTOp92uztbuWmdvd74UHvmU310oecJB8BsrpC%2FJxlYyJw5Bh%2BSzNsZxkF1whAswk5XKEA4lUNhjCVxmMcc8bfdl5s1sUbYGySVK79"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f630f8e450afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET embedwish.com/wish/css/style.css?v=34

104.21.93.44

200 OK

310 kB

URL GET HTTP/3
embedwish.com/wish/css/style.css?v=34
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
ASCII text, with very long lines (392)
Size
310 kB (309901 bytes)
Hash
cc0bd0889a1644ae93b49ea5d1151259
f2ba578cf4425057343532a84a09549eb2b80cf1
f3118abf2614833a8ad1863f94ab489083585c39dbb1bb0f02a6fabaf44d9d18

HTTP Headers

GET /wish/css/style.css?v=34 HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: text/css
last-modified: Thu, 18 May 2023 08:59:37 GMT
etag: W/"4ba8d-5fbf4062f4ac8"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JuOsQyZIV%2F8OPL6xN19cgsCFZt8aUJw40VshtcEqogfDlwbzLO64Nc%2FdnaJI5AVxo36sMpB%2B%2BcbOd7EuDwsVinoFrnF0wugUEhR6YSqEtJjMpFWH3nVDt%2FKaLAXusuBo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f630f8e3f0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET embedwish.com/wish/js/jquery-3.2.1.min.js

104.21.93.44

200 OK

87 kB

URL GET HTTP/3
embedwish.com/wish/js/jquery-3.2.1.min.js
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
ASCII text, with very long lines (32058)
Size
87 kB (86659 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

HTTP Headers

GET /wish/js/jquery-3.2.1.min.js HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 15 Mar 2023 16:39:00 GMT
etag: W/"15283-5f6f2fb2b7100"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nHHQhPgtjApknlX6EvX1G6fiik7wmWEy%2FRKmxzn6g9wmfU0rs49nYryW%2BNDv3LIAG8028mLLF%2BAEhATWFdXj2iq3eopV5%2FtUpdF9334HGyr3zXwGWj87f0EPpRK64xpT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f630f8e400afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET embedwish.com/wish/js/app.js

104.21.93.44

200 OK

120 B

URL GET HTTP/3
embedwish.com/wish/js/app.js
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
ASCII text, with no line terminators
Size
120 B (120 bytes)
Hash
ffa99c7e3202a8c0e9820d78e7a3c118
b1528344fb8268362b42502f698dbfba2a5403ee
4616f6164a541a9b7295a01908412c6f4e6d1000aa1602d5cacd07a631cb165e

HTTP Headers

GET /wish/js/app.js HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 15 Mar 2023 16:39:00 GMT
etag: W/"78-5f6f2fb2b7100"
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nvowCKxJidkYHbX5%2BA95uZ%2F4uY8HMpbUrr%2Bv6MUcMEU%2BkgFhrG%2Fh%2Fv5yS65apLu6WB8xGG8lb8rjZZUs5BbpTb4FXbDec9wOAy%2B23tY4xstb13S%2FNczZK0OP7CD%2F7ckL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f630f8e440afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET embedwish.com/wish/images/favicon/apple-touch-icon.png

104.21.93.44

404 Not Found

196 B

URL GET HTTP/3
embedwish.com/wish/images/favicon/apple-touch-icon.png
IP
104.21.93.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedwish.com/f/d5ez3o9ikek1
Certificate
IssuerLet's Encrypt
Subjectembedwish.com
FingerprintD5:DF:3D:20:7B:9F:33:61:AA:E4:80:BF:6A:4A:1E:64:E7:00:0C:FF
ValidityFri, 04 Aug 2023 15:02:02 GMT - Thu, 02 Nov 2023 15:02:01 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
196 B (196 bytes)
Hash
4c2721a6662ce6d1ac5be54d16d51d12
a1541245769dedbff563e4ff40a83cb8d675e6e8
d3887c1020b92158055e9155e606f4cb8bed040d5a67e7550e74e8efbe649f8b

HTTP Headers

GET /wish/images/favicon/apple-touch-icon.png HTTP/1.1
Host: embedwish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedwish.com/f/d5ez3o9ikek1
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 19 Sep 2023 05:21:45 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AMhoCQ4BEOLpR3bWId4WSSifq8uwmINp4dL9k8rm4Wd9y1gzzIFvYrw3cEto4Y60h%2BRzJSgDBa7%2Frrr0nVqHKfopZrCEvRu2CYTczjM2mhtDU53TNSWgw6Xz5Um9Y%2F6X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 808f6312ef9c0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (15)

URL GET HTTP/3

IP

ASN