Report - mirror.quantum5.ca/

Report Overview

Visited public
2023-12-04 21:34:05
Tags
URL
mirror.quantum5.ca/
Finishing URL
mirror.quantum5.ca/
IP / ASN
184.147.181.10
#577 BACOM
Title
Quantum's Mirrors

Detections

urlquery

0

Network Intrusion Detection

3

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
mirror.quantum5.ca	unknown	2022-01-11	2023-04-26 00:20:52	2023-09-30 15:41:17	940 B	21 kB	184.147.181.10
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-04 05:09:20	981 B	2.6 kB	151.101.65.229
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-12-04 06:43:52	499 B	146 kB	104.18.10.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-04 21:33:54	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain
2023-12-04 21:33:54	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain
2023-12-04 21:33:55	medium	Client IP	Internal IP	ET INFO DYNAMIC_DNS Query to a *.freeddns .org Domain

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	cdn.jsdelivr.net/gh/tofsjonas/sortable@1.80.1/sortable.min.js	ScriptElement	973 B	2023-12-04	2023-12-04
Pretty URL cdn.jsdelivr.net/gh/tofsjonas/sortable@1.80.1/sortable.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 22:34 Last Seen2023-12-04 22:34 Times Seen1 Hash def5e77212652ef0cb5bf21eb183deda b488bf6379cd55cdba5c47f660b02b5433a76f8a 15ca86afb3b3c702c6654694212f8b032c4663bfe11bee7f2f755641fce9f643 Loading...

HTTP Transactions (5)

	URL	IP	Response	Size
	mirror.quantum5.ca/	184.147.181.10	200 OK	5.2 kB
URL User Request GET HTTP/2 mirror.quantum5.ca/ IP 184.147.181.10:443 ASN #577 BACOM Certificate IssuerLet's Encrypt Subject.quantum5.ca FingerprintF1:BF:D9:3F:36:F9:9D:81:3B:8C:D7:21:B1:E1:E3:F4:64:53:9F:BC ValidityThu, 12 Oct 2023 13:28:44 GMT - Wed, 10 Jan 2024 13:28:43 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 5.2 kB (5207 bytes) Hash 22a0c9cca56c00df0d1c5244c4337a54 de02a63f2bc46a40e2999f6f32580375bcafbb26 3d9212123e9c8a74857daf2021eb111687abd728995b4b607234cbdd02bb22fa HTTP Headers `GET / HTTP/1.1 Host: mirror.quantum5.ca User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.24.0 date: Mon, 04 Dec 2023 21:33:48 GMT content-type: text/html content-length: 5207 last-modified: Mon, 04 Dec 2023 21:30:02 GMT etag: "656e44da-1457" accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn.jsdelivr.net/gh/tofsjonas/sortable@1.80.1/sortable.min.js	151.101.65.229	200 OK	573 B
URL GET HTTP/2 cdn.jsdelivr.net/gh/tofsjonas/sortable@1.80.1/sortable.min.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://mirror.quantum5.ca/ Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text, with very long lines (508) Size 573 B (573 bytes) Hash def5e77212652ef0cb5bf21eb183deda b488bf6379cd55cdba5c47f660b02b5433a76f8a 15ca86afb3b3c702c6654694212f8b032c4663bfe11bee7f2f755641fce9f643 HTTP Headers `GET /gh/tofsjonas/sortable@1.80.1/sortable.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://mirror.quantum5.ca DNT: 1 Connection: keep-alive Referer: https://mirror.quantum5.ca/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 1.80.1 x-jsd-version-type: version etag: W/"3cd-tIi/Y3nNVc26XEf2YLArVDOnb4o" content-encoding: br accept-ranges: bytes date: Mon, 04 Dec 2023 21:33:49 GMT age: 2386839 x-served-by: cache-fra-eddf8230127-FRA, cache-bma1633-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 573 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/gh/tofsjonas/sortable@1.80.1/sortable.min.css	151.101.65.229	200 OK	518 B
URL GET HTTP/2 cdn.jsdelivr.net/gh/tofsjonas/sortable@1.80.1/sortable.min.css IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://mirror.quantum5.ca/ Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (1340) Size 518 B (518 bytes) Hash 1975c07c5846428f7189572554ce464e e15d06e9438d4ba2c3abb4f83fc0d33f77c8e042 1e0b6870388e6371acf3198e5a5823eba1b147dedc3cadf69697086eb89c8425 HTTP Headers `GET /gh/tofsjonas/sortable@1.80.1/sortable.min.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://mirror.quantum5.ca DNT: 1 Connection: keep-alive Referer: https://mirror.quantum5.ca/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: text/css; charset=utf-8 x-jsd-version: 1.80.1 x-jsd-version-type: version etag: W/"54c-4V0G6UONS6LDq7T4P8DTP3fI4EI" content-encoding: br accept-ranges: bytes date: Mon, 04 Dec 2023 21:33:49 GMT age: 1623970 x-served-by: cache-fra-eddf8230022-FRA, cache-bma1633-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 518 X-Firefox-Spdy: h2

	mirror.quantum5.ca/favicon.ico	184.147.181.10	200 OK	15 kB
URL GET HTTP/2 mirror.quantum5.ca/favicon.ico IP 184.147.181.10:443 ASN #577 BACOM Requested by https://mirror.quantum5.ca/ Certificate IssuerLet's Encrypt Subject.quantum5.ca FingerprintF1:BF:D9:3F:36:F9:9D:81:3B:8C:D7:21:B1:E1:E3:F4:64:53:9F:BC ValidityThu, 12 Oct 2023 13:28:44 GMT - Wed, 10 Jan 2024 13:28:43 GMT File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size 15 kB (15086 bytes) Hash 03ba6f77bbfc609b6150fbc56932314d 895ef57a42edc55b76594af828d04968034abfa0 e8ef6347bb36b3ad0f3d2a68746f65fe2530fc2456a5bc1bb06bf8441bc902e7 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: mirror.quantum5.ca User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://mirror.quantum5.ca/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.24.0 date: Mon, 04 Dec 2023 21:33:49 GMT content-type: image/vnd.microsoft.icon content-length: 15086 last-modified: Sun, 05 Mar 2023 04:08:03 GMT etag: "640415a3-3aee" accept-ranges: bytes X-Firefox-Spdy: h2`

	maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css	104.18.10.207	200 OK	145 kB
URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css IP 104.18.10.207:443 ASN #13335 CLOUDFLARENET Requested by https://mirror.quantum5.ca/ Certificate IssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04 ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT File type ASCII text, with very long lines (65325) Size 145 kB (144877 bytes) Hash 450fc463b8b1a349df717056fbb3e078 895125a4522a3b10ee7ada06ee6503587cbf95c5 2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d HTTP Headers `GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://mirror.quantum5.ca DNT: 1 Connection: keep-alive Referer: https://mirror.quantum5.ca/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 04 Dec 2023 21:33:49 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 etag: W/"450fc463b8b1a349df717056fbb3e078" last-modified: Mon, 25 Jan 2021 22:04:04 GMT cdn-cachedat: 10/31/2023 18:48:44 cdn-proxyver: 1.04 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 752 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-status: 200 cdn-requestid: 24911fbd90a1b995a872b1f0c8fcee4e cdn-cache: HIT cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 83072b7ddd6f56c1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2