Report - discord.flawing.workers.dev/

Report Overview

Submitted URL
discord.flawing.workers.dev/
IP
172.67.145.254
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 16:53:23
Access
public
Website Title
Discord | Your Place to Talk and Hang Out
Final URL
discord.flawing.workers.dev/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
discord.com	1053	2000-11-06	2013-06-04	2024-04-24	1.9 kB	39 kB	162.159.128.233
discord.flawing.workers.dev	unknown	2019-02-08	2023-11-16	2024-03-15	2.3 kB	122 kB	172.67.145.254
d3e54v103j8qbb.cloudfront.net	unknown	2008-04-25	2016-03-11	2024-04-24	523 B	90 kB	143.204.42.99
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-25	502 B	246 kB	142.250.74.168
global.localizecdn.com	29924	2016-04-14	2016-10-11	2024-04-18	422 B	64 kB	104.18.4.175
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-25	883 B	38 kB	142.250.74.170
assets-global.website-files.com	14027	2019-01-23	2020-11-01	2024-04-24	7.6 kB	1.1 MB	143.204.55.47
assets.website-files.com	13552	2019-01-23	2020-11-01	2024-04-23	3.5 kB	239 kB	143.204.55.95

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-04-25 16:52:54	low	Client IP	172.67.145.254	ET INFO Observed Cloudflare workers.dev Domain in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	discord.flawing.workers.dev/	Discord
2024-04-25	medium	discord.flawing.workers.dev/	Discord
2024-04-25	medium	discord.flawing.workers.dev/	Discord
2024-04-25	medium	discord.flawing.workers.dev/	Discord

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js	13 kB	2023-03-07	2024-05-05
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:17 Last Seen2024-05-05 11:31:48 Times Seen22736 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	discord.com/webflow-scripts/head.js	8.5 kB	2024-03-22	2024-05-03
Pretty URL discord.com/webflow-scripts/head.js IP 162.159.128.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 17:26:10 Last Seen2024-05-03 07:31:34 Times Seen124 Hash 5f85c48349fcc177a601c0d2910e2b5b 58804d25e4cb6bc4a77506c6d36db87788ff6966 dd53642818deded757546d764295563addb95b0713b4f2352e7209d9f72942e0 Loading...

	discord.flawing.workers.dev/	132 B	2024-02-16	2024-05-03
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-16 12:37:45 Last Seen2024-05-03 07:31:34 Times Seen138 Hash 826d3afe636b1906b61f9a8debcad652 1032f03b6e3933a9ed66e99a958564de76a12109 378f38d14703c00da0ab6271dbeb0853fd9f9e5906d89032cc20c599c3ac9575 Loading...

	discord.flawing.workers.dev/	181 B	2023-03-07	2024-05-05
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:17:43 Last Seen2024-05-05 16:51:43 Times Seen3839 Hash 0e9e3ad57abeefde87342864450cc232 4dc8676bf3417d597053d5f253fce034007f63da 9a37601d1f5a5f2fba3b000694d4bf5e035c606d5485dd94e2997cbe2efe5c26 Loading...

	unknown	283 B	2024-04-25	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 18:53:25 Last Seen2024-04-25 18:53:25 Times Seen1 Hash 192d41fa4f2b4e0ad2436a6b6922de31 d5de365f914e8a8d70d753e9626e4dc18c4a274b 1c27a7dafbd86ddca8dd92c08973deb4048cd9ab9bf7013fd46d4e4a2d8d5ee5 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-N7BVC2W&gtm_auth=GI0g9O-54_SitcgmxQKxlA&gtm_preview=env-2&gtm_cookies_win=x	245 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-N7BVC2W&gtm_auth=GI0g9O-54_SitcgmxQKxlA&gtm_preview=env-2&gtm_cookies_win=x IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 18:53:25 Last Seen2024-04-25 18:53:26 Times Seen2 Hash e9081282a00d4d2068becd418c033789 e01c80aaaedbff035e68b82e45038af7f379e0e9 2606f2100c2f5cef50b2acbb7c316d32ab91cbc30307a4063df59d34e5c704ec Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-05-05
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-05 19:22:57 Times Seen266100 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2	90 kB	2023-03-07	2024-05-05
Pretty URL d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2 IP 143.204.42.99 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-05 19:14:49 Times Seen141621 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	discord.flawing.workers.dev/	26 B	2024-01-26	2024-05-03
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-26 11:16:50 Last Seen2024-05-03 07:31:34 Times Seen132 Hash 04169f0d55ccf701d1f023d9e5bc29d3 417e9b0c0d3c96f8c6686c11460a61c394c352ff 54e3df18163e5e04c3330846e354b9799c8c2a5bb780deb4b2ec023c3599f0c6 Loading...

	discord.flawing.workers.dev/	87 B	2023-03-08	2024-05-03
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 09:18:41 Last Seen2024-05-03 07:31:34 Times Seen156 Hash 4660c99ff509402822c528d30bb5a29f 692a4b8873ee74b4a9ee69e10d35280cd367748e 8d8ffb8d6add76d3546fe638085296687f91da5aea826fcb017ef613c48ba8ac Loading...

	discord.com/webflow-scripts/bodyEnd.js	12 kB	2024-03-22	2024-05-03
Pretty URL discord.com/webflow-scripts/bodyEnd.js IP 162.159.128.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 17:26:10 Last Seen2024-05-03 07:31:34 Times Seen127 Hash cf1fcdb5511493e70497b458944e1358 16edf79361fb9f6232e78fe790e05afc8c0f22c3 565361427f87e795807c3fdcf5debe1dc807c6edbf5f5e57a10d9c9d593c9a1d Loading...

	discord.flawing.workers.dev/	4.8 kB	2024-01-26	2024-05-03
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-26 11:16:51 Last Seen2024-05-03 07:31:34 Times Seen141 Hash 9b874ef9584a272c4f2ba7cef116cd4b 5f1fd8a78c0f362b180a632460e4aea1b48f91d4 c639020f104e3364e5227e43a4640ce1a26575be0088730a9518df5b8ea5fb1d Loading...

	discord.com/webflow-scripts/landing.js	1.7 kB	2024-03-22	2024-05-03
Pretty URL discord.com/webflow-scripts/landing.js IP 162.159.128.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 17:26:10 Last Seen2024-05-03 07:31:34 Times Seen123 Hash 6873ba0d8e966bfe2f6428009c1f4255 4db49fba2d81920a64192997c693e94b857886ea 17184c99c6227c46e9e0550667946e3f55ad4bdd1999c05f4e3201083e9a5940 Loading...

	global.localizecdn.com/localize.js	63 kB	2024-04-08	2024-04-28
Pretty URL global.localizecdn.com/localize.js IP 104.18.4.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-08 18:37:25 Last Seen2024-04-28 19:02:33 Times Seen112 Hash 3be6398804eeab2124f4b83c4f33c1aa 4f46201052f4a4c856d99e1a31d05a45082d5109 cbd7cc3a254b7639e03a2ccb89f9ec2b0287c74d41b684863167558973c740dd Loading...

	assets-global.website-files.com/6257adef93867e50d84d30e2/js/discord-2022.df5932b9c.js	2.8 MB	2024-04-25	2024-04-26
Pretty URL assets-global.website-files.com/6257adef93867e50d84d30e2/js/discord-2022.df5932b9c.js IP 143.204.55.47 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 18:53:25 Last Seen2024-04-26 08:15:15 Times Seen16 Hash df5932b9c5279eedc143a36ee1565c6c 12fe5a13055a910d4a35b03353c1c00f6f814440 5fbf13898c4fbaaaf2931a26a1dded89a4f3c6cfa7aa9cea88bd89759101c781 Loading...

	discord.flawing.workers.dev/	23 B	2023-03-08	2024-05-03
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 09:18:41 Last Seen2024-05-03 07:31:34 Times Seen158 Hash a106c6b63912566571a0b020acec86ac 28deb75636623e968c1dfc2929fbb832e4dbb067 4eb63702a97229f65db08dcb62ccbabbc18085c90b1177b22dc14ada039ed7c5 Loading...

	discord.flawing.workers.dev/	126 B	2023-03-08	2024-05-03
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 09:18:41 Last Seen2024-05-03 07:31:34 Times Seen156 Hash 9b6f31f0b2a5f1d7382584a8f877c62d 6864ba993fd3fc3773b68039fce3704a9d08dcd2 95538bfa01f8ed7d0b8b942b896359ebd1dcafeef50ec5c5bc6990c4df53a41c Loading...

	discord.flawing.workers.dev/	521 B	2024-01-26	2024-05-03
Pretty URL discord.flawing.workers.dev/ IP 172.67.145.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-26 11:16:52 Last Seen2024-05-03 07:31:34 Times Seen142 Hash fecb1979673fcc384241f64fe3327048 129cf7177947ac56d7d434213ca08dde5d7b85f3 b55793318927446fc801d08744694377d4b66d7dbfad7d1ee07a5a3fd9602966 Loading...

HTTP Transactions (33)

URL IP Response Size

ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js

142.250.74.170

200 OK

5.4 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (2134)
Size
5.4 kB (5437 bytes)
Hash
7c96a5f11d9741541d5e3c42ff6380d7
d3fa2564c021cf730e58ffddb138cf6b57ed126e
81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee

HTTP Headers

GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 22:37:07 GMT
expires: Tue, 22 Apr 2025 22:37:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 238548
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31017 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 18:59:06 GMT
expires: Tue, 22 Apr 2025 18:59:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 251629
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css

143.204.55.47

200 OK

196 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size
196 kB (195910 bytes)
Hash
4afedac70a14cea0a4487ab5e4faa208
016689b5910c7c059082bf2ad2ffc01fe7942d97
579c0e5e8516ea3b31a01e48c7c6268c7fa3b949e8b588a1f83c7377b9d666e4

HTTP Headers

GET /6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 195910
date: Thu, 25 Apr 2024 15:28:03 GMT
last-modified: Thu, 25 Apr 2024 15:27:37 GMT
etag: "d4027132e29f8140ca290dd7db0dd8f0"
x-amz-server-side-encryption: AES256
cache-control: max-age=84600, must-revalidate
content-encoding: gzip
x-amz-version-id: D81L7lO07eIHzmXPj2slF8JzuFb48eUn
accept-ranges: bytes
server: AmazonS3
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 5093
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k9j8ovlVC1GbSBCXX-qqEKy2GzUXgt9jFT3BhN9dGjJK8-OOe5ehew==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/js/discord-2022.df5932b9c.js

143.204.55.47

200 OK

303 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/js/discord-2022.df5932b9c.js
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (42312)
Size
303 kB (303286 bytes)
Hash
df5932b9c5279eedc143a36ee1565c6c
12fe5a13055a910d4a35b03353c1c00f6f814440
5fbf13898c4fbaaaf2931a26a1dded89a4f3c6cfa7aa9cea88bd89759101c781

HTTP Headers

GET /6257adef93867e50d84d30e2/js/discord-2022.df5932b9c.js HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
content-length: 303286
date: Thu, 25 Apr 2024 16:12:02 GMT
last-modified: Thu, 25 Apr 2024 16:11:35 GMT
etag: "57497e1cc7b8096bf1610f347877a9fe"
x-amz-server-side-encryption: AES256
cache-control: max-age=84600, must-revalidate
content-encoding: gzip
x-amz-version-id: pLfT8h1_m6GqZFwhX7wDrci34SgtKOM3
accept-ranges: bytes
server: AmazonS3
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 2454
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mTovap7Dd6-h_cOrzSO3csDv93dmWAtHIlOvwAVXnbHU6EuB7O2Hcg==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg

143.204.55.47

200 OK

814 B

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
814 B (814 bytes)
Hash
8b196637ae590a18d9cf2f5bb692ae73
bd8d86ba72a2dcc2c2d8acbea63dfd8997062f25
56c2a50032005ce4082a752c124a0c1b7453395b72ac1b2b166c42fbeff33768

HTTP Headers

GET /6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 814
date: Wed, 24 Jan 2024 06:03:22 GMT
last-modified: Wed, 20 Dec 2023 09:22:43 GMT
etag: "8b196637ae590a18d9cf2f5bb692ae73"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: Qzr6LIeIFRKthbSvTy9usKiqu1qEgDXI
accept-ranges: bytes
server: AmazonS3
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 7987774
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AlX7GsWlxygp1tzr4ejHF0I6AzzlxLjzZegdURY249mdnfQzwG2iDw==
X-Firefox-Spdy: h2

assets.website-files.com/6257adef93867e50d84d30e2/652736292cbf8363b43d077a_ggsans-Normal.woff2

143.204.55.95

200 OK

32 kB

URL GET HTTP/2
assets.website-files.com/6257adef93867e50d84d30e2/652736292cbf8363b43d077a_ggsans-Normal.woff2
IP
143.204.55.95:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31736, version 1.0
Size
32 kB (31736 bytes)
Hash
ef78ef4e179e7e1766882d2f044cb39d
ff3734cda8426368beb9deee703344815817e987
88fba47546b0201525b02b5f65c8af1b09367d470fff48aca932e7b43e3fd67d

HTTP Headers

GET /6257adef93867e50d84d30e2/652736292cbf8363b43d077a_ggsans-Normal.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://discord.flawing.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 31736
date: Tue, 16 Jan 2024 01:28:54 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "ef78ef4e179e7e1766882d2f044cb39d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: agtU.RiHNiUEYCZ7XSMt8TbraKajaRFo
accept-ranges: bytes
server: AmazonS3
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
age: 8695443
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RQLqJTWnzVSH0aB6iytm1HK_fT_35NmWSw3r4g6iado9PIvl6spatg==
X-Firefox-Spdy: h2

assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2

143.204.55.95

200 OK

33 kB

URL GET HTTP/2
assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2
IP
143.204.55.95:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 32592, version 1.0
Size
33 kB (32592 bytes)
Hash
6db712e9212169e71d90c9999b5d98f6
dac145a44f8530b801f8fa525742ebc93efce6ba
d68a183592ac8ad34c6a0649690b01946cfd17762dc317e0ca31791e707a2d84

HTTP Headers

GET /6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://discord.flawing.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32592
date: Tue, 16 Jan 2024 00:16:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "6db712e9212169e71d90c9999b5d98f6"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: O.MN014CaJ7rpd0EYtYKL1gJt0CuPry8
accept-ranges: bytes
server: AmazonS3
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
age: 8699804
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UCmhvl6yxcwKKcVauQd8zVGkIDGzdoSRk8rsJ7trQPIzfGHRb73I8Q==
X-Firefox-Spdy: h2

assets.website-files.com/6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2

143.204.55.95

200 OK

32 kB

URL GET HTTP/2
assets.website-files.com/6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2
IP
143.204.55.95:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 32540, version 1.0
Size
32 kB (32540 bytes)
Hash
db6b320298071092b190ca887d06e95c
8016461ca1131ea676cff368c4405d79f52c7867
9f97ff47d66b2f3cdd1aa40988382749ef90ac9051d1a548b12a1260d10c1e6e

HTTP Headers

GET /6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://discord.flawing.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32540
date: Thu, 07 Dec 2023 15:36:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:16 GMT
etag: "db6b320298071092b190ca887d06e95c"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: ZA.NEdTV8MFcZm5wwoKrA5eTikBcQl_s
accept-ranges: bytes
server: AmazonS3
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
age: 12100612
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BwsTc28LTl1Mp4gjJw1KJIQIKJZqecD92P-RUP5k38u1_kvzm4jYkg==
X-Firefox-Spdy: h2

assets.website-files.com/6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff

143.204.55.95

200 OK

63 kB

URL GET HTTP/2
assets.website-files.com/6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff
IP
143.204.55.95:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 62768, version 0.0
Size
63 kB (62768 bytes)
Hash
746a4f241e03deffc59b08c5650cf458
16569eaca9910e7538f31bc3c1460c2761eb5ca3
12954218db16e3a3c86a6ee84e41be8bb35cee983ffd5233b37c7e094f9dcf11

HTTP Headers

GET /6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://discord.flawing.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-font-woff
content-length: 62768
date: Thu, 30 Nov 2023 20:07:25 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:57:22 GMT
etag: "746a4f241e03deffc59b08c5650cf458"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: jA5XmHZ6LxEy4IR9.UBRjDzTvaXkKSaO
accept-ranges: bytes
server: AmazonS3
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
age: 12689132
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ch9T7P2rlK07ASudGTjwZbrASkKdqp7spAfsGYmz_qOwo-tc68l2EQ==
X-Firefox-Spdy: h2

assets.website-files.com/6257adef93867e50d84d30e2/65273da62cbf8363b445b021_abcgintonord-800-extrabold.woff2

143.204.55.95

200 OK

42 kB

URL GET HTTP/2
assets.website-files.com/6257adef93867e50d84d30e2/65273da62cbf8363b445b021_abcgintonord-800-extrabold.woff2
IP
143.204.55.95:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 41872, version 1.6553
Size
42 kB (41872 bytes)
Hash
3d07f5abf272fbb5670d02ed687453d0
5ba49c861917331a4d29d2a81ed4f93e94f62212
3afc8b61c01534f04c628962b34e53104e0487b010f197a54d2e9ce357bf9733

HTTP Headers

GET /6257adef93867e50d84d30e2/65273da62cbf8363b445b021_abcgintonord-800-extrabold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://discord.flawing.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 41872
date: Tue, 16 Jan 2024 00:16:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:28:23 GMT
etag: "3d07f5abf272fbb5670d02ed687453d0"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: Ntbz1viACAtTV6OeKRAGMck.yUrF3AVv
accept-ranges: bytes
server: AmazonS3
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
age: 8699804
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9MQL5mzqM_8NcLCe0V6D_f_GI8wAxEthsYmyO52MgO7ZXxnf9D1nwQ==
X-Firefox-Spdy: h2

assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2

143.204.55.95

200 OK

33 kB

URL GET HTTP/2
assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2
IP
143.204.55.95:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 32952, version 1.0
Size
33 kB (32952 bytes)
Hash
890a9ab504c3657183ff118b1aff212b
127609df5d04fc779da4a9e90d8d09bdbb390149
d472a71a0f92855881ce2c2334df77a333461f6936f1f0388f952fedb056fb3e

HTTP Headers

GET /6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://discord.flawing.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32952
date: Tue, 16 Jan 2024 00:44:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "890a9ab504c3657183ff118b1aff212b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: WIOu3nzmwbn9so0iCvFU.l8wZizfTi6I
accept-ranges: bytes
server: AmazonS3
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
age: 8698089
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2jbbsNXJhdFKiRLO5atyYJQiEJTrus9E7x1_dbmMBNlPYq_BkuHucg==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg

143.204.55.47

200 OK

3.0 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
3.0 kB (3040 bytes)
Hash
dc4b72ee696aff33e51574bbcf8a2b6f
a977005152d42b71bdb33846e65eca35a5613919
cb623dd8ed6551a3c12ee1e9760a8696ebf4f50de7facfa917f4598dee79e806

HTTP Headers

GET /6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 05 Nov 2023 12:52:27 GMT
last-modified: Thu, 14 Apr 2022 07:50:22 GMT
etag: W/"af172fc4474c781e2dd37c0bf905e86a"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: L3xb6VYoQ.AotyKi_Z9N2_J5hV1m9MOY
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 14875230
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iej_8QZTneuGm6KylMMoPNb4QqTQ0RmjeRn6JxCfF4OmhTgVaPOUQA==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/632d9b371770507a4c801977_Icon%20-%20Download.svg

143.204.55.47

200 OK

399 B

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/632d9b371770507a4c801977_Icon%20-%20Download.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
399 B (399 bytes)
Hash
a5b531f679e3aaeeef5195f1c653ff0b
ac05f6c7f113260cd919e554447c2086223c8246
9d35e368949f55bc97041eba8a70d97fcc1352f0c1d93f3a3589b330069a2469

HTTP Headers

GET /6257adef93867e50d84d30e2/632d9b371770507a4c801977_Icon%20-%20Download.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 399
date: Tue, 26 Mar 2024 16:33:37 GMT
last-modified: Fri, 23 Sep 2022 11:40:41 GMT
etag: "a5b531f679e3aaeeef5195f1c653ff0b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: MUirW0ivsS_DC1LoG2DsWiw0x633eOnt
accept-ranges: bytes
server: AmazonS3
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 2593160
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p4RiVGReE99G_90y84sQnqaf0paZohBrGarn3rGAM4i9WMRBL5QciQ==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/6582c1b717efff2306ef179e_Where%20hanging%20out%20is%20easy.svg

143.204.55.47

200 OK

149 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/6582c1b717efff2306ef179e_Where%20hanging%20out%20is%20easy.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
149 kB (148839 bytes)
Hash
a22034070de371342ad1044d66386e10
0d559d7adf675cd33295d7d03361959bfaf3d73e
ec214111a51a29fd7df667ea1f9b6998e84621873672671d030e88dd92372d60

HTTP Headers

GET /6257adef93867e50d84d30e2/6582c1b717efff2306ef179e_Where%20hanging%20out%20is%20easy.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 18 Jan 2024 17:54:26 GMT
last-modified: Wed, 20 Dec 2023 10:28:08 GMT
etag: W/"a22034070de371342ad1044d66386e10"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: efh4guWbNZVkbXrUU6H8DcePzFm1l6cb
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 8463511
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YNJy-oMzDEhtEEvIkRP5s93HHdD01fUZtHruE-SaovNc9s2EHBibEg==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/6266bc493fb42d4e27bb8393_847541504914fd33810e70a0ea73177e.ico

143.204.55.47

200 OK

286 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/6266bc493fb42d4e27bb8393_847541504914fd33810e70a0ea73177e.ico
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
286 kB (285478 bytes)
Hash
847541504914fd33810e70a0ea73177e
84b82d07b293907113d9d4dafd29bfa170bbf9b6
0ff2884845f93cd730470ad755f5c38d334e6976ad59c8016b1353b8e30e64f8

HTTP Headers

GET /6257adef93867e50d84d30e2/6266bc493fb42d4e27bb8393_847541504914fd33810e70a0ea73177e.ico HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
content-length: 285478
date: Tue, 03 Oct 2023 16:30:54 GMT
last-modified: Thu, 18 Aug 2022 06:39:10 GMT
etag: "847541504914fd33810e70a0ea73177e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: mW2.2AZmx60AbtKEbat_fy6.zokRl1ju
accept-ranges: bytes
server: AmazonS3
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 17713323
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8pXPeP0WMN1QXWpl_LOiK30PaQ_LsIXawkjzV7cu0DA7lPMDvILyuA==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/6582c18a9cff186bd3731704_Create%20an%20invite-only%20place%20where%20you%20belong.svg

143.204.55.47

200 OK

48 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/6582c18a9cff186bd3731704_Create%20an%20invite-only%20place%20where%20you%20belong.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
48 kB (48290 bytes)
Hash
b63666803e06a268bde0df5c9ff5bca1
8c0f71c173debbca5921686857befccfd9a95465
8020d84a55d0ecdfbdc68fbbcf0ea97135d72a9e6565da87feaa2ed1d11637ec

HTTP Headers

GET /6257adef93867e50d84d30e2/6582c18a9cff186bd3731704_Create%20an%20invite-only%20place%20where%20you%20belong.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 25 Jan 2024 19:29:45 GMT
last-modified: Wed, 20 Dec 2023 10:27:23 GMT
etag: W/"6663c28b499d1b41349dd9ece236019d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 0Qdvngn3KrPl.t2A3gTQcgVBYrxsy1wD
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 7852992
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8A7jpElSsn8zDnNHKA9zaKznAudfnt4XLH-co6fxUw6ZFARWdM0LWw==
X-Firefox-Spdy: h2

discord.com/assets/oneTrust/v4/scripttemplates/otSDKStub.js

162.159.128.233

403 Forbidden

12 kB

URL GET HTTP/3
discord.com/assets/oneTrust/v4/scripttemplates/otSDKStub.js
IP
162.159.128.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (4536)
Size
12 kB (12311 bytes)
Hash
f6392f8f3071d21f23363f6c4b9b5f58
5aa01047cc11378e82d80b315336382ee2cf2fda
c0e9ad570cf93afdfd72a198bd41e7436fe1bfe6f7cbb27485ead49453b6cabb

HTTP Headers

GET /assets/oneTrust/v4/scripttemplates/otSDKStub.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Cookie: __cfruid=42512382051522a1872d68c23e1846948611fcca-1714063975; _cfuvid=6kldR1ZAlUCx6ulp7sinhv3rs5hJFZhslCyl_cQY0PM-1714063975324-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
date: Thu, 25 Apr 2024 16:52:56 GMT
content-type: text/html
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Thu, 25 Apr 2024 16:53:11 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rXMknN1SQZOBOZldQFk4Q6GmEH7KQlWbeBdlFp1LrXlohTeIF6ggaF4ZMF8kNh8KP9gCKMVlDGq2SQvX4kxoF29WS0DdK1N3ufnmW0A2y7zddHRQXBTZCnVVnLkv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 879fd8ab2894569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/webflow-scripts/landing.js

162.159.128.233

200 OK

1.7 kB

URL GET HTTP/2
discord.com/webflow-scripts/landing.js
IP
162.159.128.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1798), with no line terminators
Size
1.7 kB (1712 bytes)
Hash
7f4ec64bf2a7aa3380131153447754c5
cc1d42bde351e8480f8a7aa33ce71212e75ede96
620f2e8df770c6e9f4f26c3c5421e35d546dd1c551872add95fe0492b677c0c3

HTTP Headers

GET /webflow-scripts/landing.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:52:55 GMT
content-type: application/javascript
cf-ray: 879fd8a589f8b50b-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=30
etag: W/"6873ba0d8e966bfe2f6428009c1f4255"
last-modified: Thu, 21 Mar 2024 18:09:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pg3vs0EnwRIYY3vH3ro8D%2BLwRDvVNwYfGA7KEVTF5M3uqjl1LHWqjTaxUMWi3C9Z1jtaU8wODUCoU4LT%2BZmltboKa8tzsKQzq%2F5NOjphCgWbJ%2Bhy44qA0QIWwElD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=42512382051522a1872d68c23e1846948611fcca-1714063975; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=v_xlKJZ7wKbSTJHageFujS.HNAi.JNF4aX_5DxLxV60-1714063975320-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

discord.com/webflow-scripts/bodyEnd.js

162.159.128.233

200 OK

12 kB

URL GET HTTP/2
discord.com/webflow-scripts/bodyEnd.js
IP
162.159.128.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
12 kB (11690 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /webflow-scripts/bodyEnd.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:52:55 GMT
content-type: application/javascript
cf-ray: 879fd8a58a04b50b-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=30
etag: W/"cf1fcdb5511493e70497b458944e1358"
last-modified: Thu, 21 Mar 2024 18:09:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WXkBIKWnh8In%2B95YiGbavdP9R4V9pzSe1RYiTdXkIJnGSP0mD2A7yxAwCwpetvbZSCaeOXep5BczwCOGZJ07XuH6nBuV%2FNaG9WGFc1i8tdge6oAS5M7lieNaMog7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=42512382051522a1872d68c23e1846948611fcca-1714063975; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=6kldR1ZAlUCx6ulp7sinhv3rs5hJFZhslCyl_cQY0PM-1714063975324-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

discord.flawing.workers.dev/w/loader/loader.js

172.67.145.254

404 Not Found

20 kB

URL GET HTTP/3
discord.flawing.workers.dev/w/loader/loader.js
IP
172.67.145.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectflawing.workers.dev
Fingerprint60:AB:63:5F:CE:EF:59:33:B6:0A:C6:26:EB:7B:B2:BD:94:82:95:32
ValidityWed, 13 Mar 2024 06:50:40 GMT - Tue, 11 Jun 2024 06:50:39 GMT

File type
HTML document, ASCII text, with very long lines (13068)
Size
20 kB (19985 bytes)
Hash
9b16cb59710fd34b0f3c8865c942b56d
6a123d880ba89c787a3de8a598979fe59d7a4378
fdb257504c764d8e98827091b47e3735f5d01c1bfad23b940b043c50a228c50b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Discord

HTTP Headers

GET /w/loader/loader.js HTTP/1.1
Host: discord.flawing.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Cookie: __dcfduid=42fc9450032411efa3c47d11f8843a47; __sdcfduid=42fc9451032411efa3c47d11f8843a47c82f0736cbd4f4df1bc17470ce035f11cdb87a0e7230fd15bf47058ce8be7c18
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 16:52:55 GMT
content-type: text/html; charset=UTF-8
cf-ray: 879fd8a4dfb55699-OSL
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2FL3Ke4%2BHPhKLubzyERx89jnp7meQUzLsRXSMaKs64tXrOxL4sWlW%2F7lIdBv90TCoKj9sh4qjAeuknnZEHw5yI%2BAC%2FgreRmrdM9VJrJJ5XHLdXF58ft9OU3OhEHDgv%2BPIyEEWtW%2FIKzxIHHZTkc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg

143.204.55.47

403 Forbidden

0 B

URL GET HTTP/2
assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /plugins/Basic/assets/placeholder.60f9b1840c.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 25 Apr 2024 16:52:54 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sgMr2OZhMwyyoSMNJruIJvwUWcuiJ7ivG_uOm0DfS3ZxwJaXM3f2Pg==
X-Firefox-Spdy: h2

discord.flawing.workers.dev/w/loader/loader.js

172.67.145.254

404 Not Found

20 kB

URL GET HTTP/3
discord.flawing.workers.dev/w/loader/loader.js
IP
172.67.145.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectflawing.workers.dev
Fingerprint60:AB:63:5F:CE:EF:59:33:B6:0A:C6:26:EB:7B:B2:BD:94:82:95:32
ValidityWed, 13 Mar 2024 06:50:40 GMT - Tue, 11 Jun 2024 06:50:39 GMT

File type
HTML document, ASCII text, with very long lines (13068)
Size
20 kB (19985 bytes)
Hash
9b16cb59710fd34b0f3c8865c942b56d
6a123d880ba89c787a3de8a598979fe59d7a4378
fdb257504c764d8e98827091b47e3735f5d01c1bfad23b940b043c50a228c50b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Discord

HTTP Headers

GET /w/loader/loader.js HTTP/1.1
Host: discord.flawing.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Cookie: __dcfduid=42fc9450032411efa3c47d11f8843a47; __sdcfduid=42fc9451032411efa3c47d11f8843a47c82f0736cbd4f4df1bc17470ce035f11cdb87a0e7230fd15bf47058ce8be7c18; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 16:52:56 GMT
content-type: text/html; charset=UTF-8
cf-ray: 879fd8ab2ea75699-OSL
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jVcsF2QPmeFaw%2FY4tJJ3cdK5p7LsIxhlbe2nM3jV5PKTLlG%2Flh25nZ5bfOTeYJ6jJRpm9OJTCAJ%2Fy%2FYD1owhlhwaDGGxWrjDzzj%2FOAqPUhJWWfuAV5TF%2F%2Bp8HA3geHKwCh2W3M1%2BbmwhrtCaAc0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/webflow-scripts/head.js

162.159.128.233

200 OK

8.5 kB

URL GET HTTP/2
discord.com/webflow-scripts/head.js
IP
162.159.128.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9203), with no line terminators
Size
8.5 kB (8521 bytes)
Hash
ead29bb49c8564607c1ea3c501bc90a1
862db3517616c1f938c08b92200f623027e93156
899bfdd53e88b7ad8144fe74ff2fea0c1c902554a38562ac07bb800c24582e52

HTTP Headers

GET /webflow-scripts/head.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:52:55 GMT
content-type: application/javascript
cf-ray: 879fd8a59a1ab50b-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=30
etag: W/"5f85c48349fcc177a601c0d2910e2b5b"
last-modified: Thu, 21 Mar 2024 18:09:20 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fQ48M8TmZ9vYWbvTAH%2BklcC4mimQdMwjjygFFU6ulpy%2FhIR3ad28sIBj%2FGFGhRW%2BUAuzxoWwfit9pZCpvtU40M3YLa0GeoUwcx9TNi0XIspq9ZwMs5Exws2Yd7l4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=42512382051522a1872d68c23e1846948611fcca-1714063975; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=6kldR1ZAlUCx6ulp7sinhv3rs5hJFZhslCyl_cQY0PM-1714063975324-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4df2dc8d7a9a081ebd_8a8375ab7908384e1fd6efe408284203.svg

143.204.55.47

200 OK

62 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4df2dc8d7a9a081ebd_8a8375ab7908384e1fd6efe408284203.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
62 kB (61585 bytes)
Hash
8a8375ab7908384e1fd6efe408284203
c860bf9ebb02c0110e452b0d27b21d50083dd165
0863f0e2352e91b8f69c16eb1896aa0cc802ad66efca43f07ad6810da239025a

HTTP Headers

GET /6257adef93867e50d84d30e2/644fab4df2dc8d7a9a081ebd_8a8375ab7908384e1fd6efe408284203.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 05 Nov 2023 12:25:38 GMT
last-modified: Mon, 01 May 2023 12:06:39 GMT
etag: W/"8a8375ab7908384e1fd6efe408284203"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: YNA2LFAIbq2g4FOlDDqfRHFxqlA2SfR_
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 14876838
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -QyCbLlOpYi5CPe72bJlQhJ_s6XeEQOmhuAelyOrvo8O2j1WOyviFA==
X-Firefox-Spdy: h2

discord.flawing.workers.dev/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.145.254

404 Not Found

20 kB

URL GET HTTP/3
discord.flawing.workers.dev/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.145.254:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectflawing.workers.dev
Fingerprint60:AB:63:5F:CE:EF:59:33:B6:0A:C6:26:EB:7B:B2:BD:94:82:95:32
ValidityWed, 13 Mar 2024 06:50:40 GMT - Tue, 11 Jun 2024 06:50:39 GMT

File type
HTML document, ASCII text, with very long lines (13068)
Size
20 kB (19985 bytes)
Hash
9b16cb59710fd34b0f3c8865c942b56d
6a123d880ba89c787a3de8a598979fe59d7a4378
fdb257504c764d8e98827091b47e3735f5d01c1bfad23b940b043c50a228c50b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Discord

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: discord.flawing.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __dcfduid=42fc9450032411efa3c47d11f8843a47; __sdcfduid=42fc9451032411efa3c47d11f8843a47c82f0736cbd4f4df1bc17470ce035f11cdb87a0e7230fd15bf47058ce8be7c18; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 16:52:56 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lPVt9OiMM3n9YPENY4gzUyj1EFyTo8cOdNYggtY6bp39bnBGk09aH4T6%2BGErVg1KbvYmY7u%2BijPqg2vR8IheDXSujwidsQpkrzT%2F1zwl%2BFFWG9W0n1QsgK8dOMsMUVGPnJx6L%2FtYKErcCetT9V0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879fd8abdf845699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

assets-global.website-files.com/6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png

143.204.55.47

200 OK

288 B

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced
Size
288 B (288 bytes)
Hash
e6d6b255259ac878d00819a9555072ad
6beb12d36acbad79743495aef581891a1ff4f5f5
21d34772ed80c8be7ab9e7338498bdfe2f66c77b61542cc48e103fd77ecd7f60

HTTP Headers

GET /6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 288
date: Fri, 19 Jan 2024 14:55:25 GMT
last-modified: Thu, 14 Apr 2022 06:30:37 GMT
etag: "e6d6b255259ac878d00819a9555072ad"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: PZH8cHkflELFvoWAWDsIAZ.EvOoTJUd0
accept-ranges: bytes
server: AmazonS3
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 8387852
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mPw26QtEgVs6kfwwX5fSNRKQoEfQ9MAfprWDRAfBtfeZq4uOXgvdyQ==
X-Firefox-Spdy: h2

d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2

143.204.42.99

200 OK

90 kB

URL GET HTTP/2
d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2
IP
143.204.42.99:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
90 kB (89476 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /js/jquery-3.5.1.min.dc5e7f18c8.js?site=6257adef93867e50d84d30e2 HTTP/1.1
Host: d3e54v103j8qbb.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://discord.flawing.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 20 Jul 2020 17:53:02 GMT
server: AmazonS3
content-encoding: br
date: Thu, 25 Apr 2024 07:49:32 GMT
cache-control: max-age=84600, must-revalidate
etag: W/"dc5e7f18c8d36ac1d3d4753a87c98d0a"
vary: Accept-Encoding
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
age: 68100
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h4WosMAit7NiKyTZWQGMYo4M_jGOqCx4i8m7ENh9D0xG0FN_l7olqg==
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg

143.204.55.47

200 OK

13 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
13 kB (12871 bytes)
Hash
e6d57714479874c665b36c7adee76b1d
7d548455122292f8272c5672303fc786d2d3000f
8a22b3884eb5d0750875b97c8192cba5465ec2c8a438c92378a9650804607c76

HTTP Headers

GET /6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
date: Tue, 13 Feb 2024 07:55:07 GMT
last-modified: Mon, 01 May 2023 12:06:39 GMT
etag: W/"e6d57714479874c665b36c7adee76b1d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 4azmGLkHqXDQcQhsKUX3YgfaRjryrV9s
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 6253069
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hrKk6bIgYdLe3LTYgUnJvxJnVVJXmp7goVHa3FmeZF-L9sKjR4o3tw==
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-N7BVC2W&gtm_auth=GI0g9O-54_SitcgmxQKxlA&gtm_preview=env-2&gtm_cookies_win=x

142.250.74.168

200 OK

245 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-N7BVC2W&gtm_auth=GI0g9O-54_SitcgmxQKxlA&gtm_preview=env-2&gtm_cookies_win=x
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2355)
Size
245 kB (245079 bytes)
Hash
e9081282a00d4d2068becd418c033789
e01c80aaaedbff035e68b82e45038af7f379e0e9
2606f2100c2f5cef50b2acbb7c316d32ab91cbc30307a4063df59d34e5c704ec

HTTP Headers

GET /gtm.js?id=GTM-N7BVC2W&gtm_auth=GI0g9O-54_SitcgmxQKxlA&gtm_preview=env-2&gtm_cookies_win=x HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: *
date: Thu, 25 Apr 2024 16:52:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87355
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

discord.flawing.workers.dev/

172.67.145.254

200 OK

53 kB

URL User Request GET HTTP/2
discord.flawing.workers.dev/
IP
172.67.145.254:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectflawing.workers.dev
Fingerprint60:AB:63:5F:CE:EF:59:33:B6:0A:C6:26:EB:7B:B2:BD:94:82:95:32
ValidityWed, 13 Mar 2024 06:50:40 GMT - Tue, 11 Jun 2024 06:50:39 GMT

File type

Size
53 kB (53107 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Discord

HTTP Headers

GET / HTTP/1.1
Host: discord.flawing.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:52:54 GMT
content-type: text/html
cf-ray: 879fd8a2f82d5684-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: no-cache
last-modified: Thu, 25 Apr 2024 16:52:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'nonce-MTE4LDY0LDE5MSw1NSwyLDE3NywxMjQsMjE5' https://discord.com https://www.googletagmanager.com https://connect.facebook.net https://www.google-analytics.com https://ssl.google-analytics.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://s.ytimg.com/yts/jsbin/ https://www.youtube.com/iframe_api https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location https://script.crazyegg.com https://*.website-files.com https://global.localizecdn.com https://d3e54v103j8qbb.cloudfront.net https://gist.github.com https://unpkg.com/@splinetool/runtime/build/runtime.js https://*.twitter.com https://cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js https://boards-api.greenhouse.io https://ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js https://cdn.finsweet.com/files/fscalendar/calendar-invite-v1.0.min.js 'sha256-mjdgHR9aXy-6OwAGlNS_XgNcYG1Uhd2U4pl8vi7-XCY=' 'sha256-gqG2LEZaHDwOL3S_CXJTuk_f3LimTEyruhOc_U0_QUY=' 'sha256-y0oGiuXZdmX7xRABTnY5cbHkfghDqbfX6JoerXLgVJc=' 'sha256-gBzDBwsujjXjXk6GLgdSlLIrvt5h0s3F_qF7Qt8TYwY=' 'sha256-TrY3AqlyKfZdsI3LYsy6u8GAhckLEXeyLcFK2gOe18U=' 'sha256-lVOL-gH47X0Li5QriWNZ69Hcr-71DsXFvGmQxN9TpBw=' 'sha256-j11ZNhk91nmUjPCBAIRcvJeEgnkbdJ9qNqoEMekilec=' 'sha256-1sQ9sTbc6Lumd2Frwf7IBwGG02gPTreTI8QBBW5kibM=' 'sha256-uh1p-Vy3_Cn66Ugk4Hak-gGr2Udg7yiI_5u5E_BdCRM=' 'sha256-7JHgDILwD7i_kvnHwJFF5WsHHmIc98tkBqDqbv47iFE=' 'sha256-KvstP_RIj6GGaE25Mqo-kIO0_WVEls1n5tnNhm8zmPA=' 'sha256-6xIDOlx5P0LKHv8fkot5ULOnB8ySdhjJi5r_ZP5EDPY=' 'sha256-jY_7jWrddtNUb-Y4CFKWaH-R2lrqgm_LAX72E8SLqKw=' 'sha256-MdICB9cW7ILT3ZeSxhN2YlpFxEsn5WHr03Ix-WVpHsw=' 'sha256-fUfByJGhChEFu7PE5HJfFwiYKySnP1H0iXvAxkauLNU=' 'sha256-xjkCDxBOM2TlIn5DpGQM4aJldb4AiHMKlRjfW46l-x0=' 'sha256-VOPfGBY-XgTDMwhG41S5eZyMKlu3gN60suwCPDWZ8MY=' 'sha256-tVeTMYknRG_IAdCHRGlDd9S2bX2_rX0e4HpaP9lgKWY=' 'sha256-kprfDg8ElCpUCFQAX5shnAPf3i59vVTSy02AjZXV3k0=' 'sha256-llLws8TR-U3nNRCIvJNVc-SGscqwyeO1IPgpbnWuZdc=' 'sha256-h9lm4cvrD7egZu1GTAE1h2IDy1K4fXgD-q_O7aEosuw=' 'sha256-_cdQbTQzcfSt2_aCceUvkUmLh1WMdvlKbi1BBG7u8Jg=' 'sha256-U0jHWhsvIpjnwYKeJS_-2pe9ROsYnck5ZB2aXNyKWq8=' 'sha256-rB4G_-e_bAPU7rKI_9HC1lBZ0XEa_nHDH6hXFz4GIh4=' 'sha256-N02bP-slnHB-OYEN6imRqCHcHLN5DvBouRmyO2qcQYU=' 'sha256-QHiY6i8ql9SJTaFXzUhm08ZWuNz0QarKruf0Omd9-OQ=' 'sha256-s4OBHcHJnkGxjEyNJhU5BQt4qlt6MH07rG/j/hFOUnE=' 'sha256-s4OBHcHJnkGxjEyNJhU5BQt4qlt6MH07rG_j_hFOUnE=' 'sha256-mjdgHR9aXy+6OwAGlNS/XgNcYG1Uhd2U4pl8vi7+XCY=' 'sha256-jY/7jWrddtNUb+Y4CFKWaH+R2lrqgm/LAX72E8SLqKw=' 'sha256-lVOL+gH47X0Li5QriWNZ69Hcr+71DsXFvGmQxN9TpBw=' 'sha256-/cdQbTQzcfSt2/aCceUvkUmLh1WMdvlKbi1BBG7u8Jg=' 'sha256-N02bP+slnHB+OYEN6imRqCHcHLN5DvBouRmyO2qcQYU=' 'sha256-gqG2LEZaHDwOL3S/CXJTuk/f3LimTEyruhOc/U0/QUY=' 'sha256-llLws8TR+U3nNRCIvJNVc+SGscqwyeO1IPgpbnWuZdc=' 'sha256-gBzDBwsujjXjXk6GLgdSlLIrvt5h0s3F/qF7Qt8TYwY=' 'sha256-6xIDOlx5P0LKHv8fkot5ULOnB8ySdhjJi5r/ZP5EDPY=' 'sha256-7JHgDILwD7i/kvnHwJFF5WsHHmIc98tkBqDqbv47iFE=' 'sha256-VOPfGBY+XgTDMwhG41S5eZyMKlu3gN60suwCPDWZ8MY='; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://*.hcaptcha.com https://hcaptcha.com https://*.website-files.com https://*.githubassets.com; img-src 'self' https://www.google-analytics.com https://www.googletagmanager.com https://www.facebook.com https://cdn.discordapp.com https://hackerone-api.discord.workers.dev/user-avatars/ https://safety.discord.com https://discordmoderatoracademy.zendesk.com https://assets-global.website-files.com data: https://*.website-files.com https://global.localizecdn.com https://*.ytimg.com https://uploads-ssl.webflow.com; font-src 'self' https://fonts.gstatic.com https://fonts.gstatic.com https://*.website-files.com; connect-src 'self' https://discordapp.com https://discord.com https://connect.facebook.net https://api.greenhouse.io https://api.github.com https://sentry.io https://www.google-analytics.com https://hackerone-api.discord.workers.dev https://*.hcaptcha.com https://hcaptcha.com https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location ws://127.0.0.1:* http://127.0.0.1:* https://global.localizecdn.com https://*.website-files.com https://webflow.com/api/ https://script.crazyegg.com https://assets-tracking.crazyegg.com https://pagestates-tracking.crazyegg.com https://tracking.crazyegg.com; media-src 'self' https://cdn.discordapp.com/assets/; frame-src https://discordapp.com/domain-migration https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://*.hcaptcha.com https://hcaptcha.com https://www.youtube.com/embed/ https://hackerone.com/631fba12-9388-43c3-8b48-348f11a883c0/ https://10851314.fls.doubleclick.net/ https://*.twitter.com https://*.vimeo.com;
permissions-policy: interest-cohort=()
set-cookie: __dcfduid=42fc9450032411efa3c47d11f8843a47; Expires=Tue, 24 Apr 2029 16:52:54 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
__sdcfduid=42fc9451032411efa3c47d11f8843a47c82f0736cbd4f4df1bc17470ce035f11cdb87a0e7230fd15bf47058ce8be7c18; Expires=Tue, 24 Apr 2029 16:52:54 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
_cfuvid=p9z5s5y5YjFEBnfmU9vuh_2dK_6iPNLjP_bEmX.nP_w-1714063974939-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v5IfNISA4uyfouErvY0RV%2BsK5DGr57ESWLmR%2BUy84kxbPbARs7XxTSyPmTKkYwyBl9Uf9XDrjCA2vhPtFFAS%2BnNnJXasfjZiJP5eLZ822U4AvbX1lOP5JX1Yfe309kCVlKpKf%2FXJF9NmjsGK8oo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png

143.204.55.47

200 OK

557 B

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Size
557 B (557 bytes)
Hash
c309ae41848547064c2ddb7dc66b6215
6d9801822541e4be3ed25137c4e53a249c85ba2a
11848b5f1c8a7f294c6211c2f0d0dc83a8a28bfe1ef0829a8dacfdf475c5e5a2

HTTP Headers

GET /6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 557
date: Fri, 19 Jan 2024 14:49:50 GMT
last-modified: Thu, 18 Aug 2022 06:41:20 GMT
etag: "c309ae41848547064c2ddb7dc66b6215"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: n3jtG2p1G.rx09TUNkUzzkpqc1_KeQPx
accept-ranges: bytes
server: AmazonS3
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 8388187
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Kf5bhpzsV56zRzNnrHj7ZVvbOiHGezqYhDYWLmS3DHEOetVWMUwGGw==
X-Firefox-Spdy: h2

global.localizecdn.com/localize.js

104.18.4.175

200 OK

63 kB

URL GET HTTP/2
global.localizecdn.com/localize.js
IP
104.18.4.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerLet's Encrypt
Subjectglobal.localizecdn.com
Fingerprint0E:E8:07:11:41:11:37:A7:94:9C:B4:AF:9A:F4:50:87:FA:14:B8:CA
ValidityFri, 15 Mar 2024 17:06:03 GMT - Thu, 13 Jun 2024 17:06:02 GMT

File type
JavaScript source, ASCII text, with very long lines (63114), with no line terminators
Size
63 kB (63114 bytes)
Hash
3be6398804eeab2124f4b83c4f33c1aa
4f46201052f4a4c856d99e1a31d05a45082d5109
cbd7cc3a254b7639e03a2ccb89f9ec2b0287c74d41b684863167558973c740dd

HTTP Headers

GET /localize.js HTTP/1.1
Host: global.localizecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.flawing.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 16:52:55 GMT
content-type: application/javascript
cache-control: public, max-age=259200
cf-bgj: minify
etag: W/"3be6398804eeab2124f4b83c4f33c1aa"
last-modified: Thu, 04 Apr 2024 15:28:15 GMT
vary: Accept-Encoding
via: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)
x-amz-cf-id: pgAq_LSV91CleMM3_K6YveyNluFo_UMzwBtV3e-s7sJK9QYHy5iy4w==
x-amz-cf-pop: ARN56-P2
x-amz-meta-x-amz-meta-v: 483
x-amz-server-side-encryption: AES256
x-amz-version-id: ZMs98.l0d_4bnX1T9jXjHHaT0X8dgz40
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 168342
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 879fd8a5895c5696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4db9ca0a124b73d4b7_c40c84ca18d84633a9d86b4046a91437.svg

143.204.55.47

200 OK

61 kB

URL GET HTTP/2
assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4db9ca0a124b73d4b7_c40c84ca18d84633a9d86b4046a91437.svg
IP
143.204.55.47:443
ASN
#16509 AMAZON-02

Requested by
https://discord.flawing.workers.dev/
Certificate
IssuerAmazon
Subject*.website-files.com
Fingerprint67:3F:4A:7A:30:BF:BC:29:1A:5A:41:A8:54:BB:F4:4A:E7:ED:D9:CF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Tue, 08 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
61 kB (61392 bytes)
Hash
c40c84ca18d84633a9d86b4046a91437
5b82d7686f8ee989d13bbe54938ae94e64cc7db7
f19a3178d88ee8de6f4ef47c0e9992059457d91e24204e5beff9602c1179f99b

HTTP Headers

GET /6257adef93867e50d84d30e2/644fab4db9ca0a124b73d4b7_c40c84ca18d84633a9d86b4046a91437.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.4afedac70.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 25 Jan 2024 19:29:53 GMT
last-modified: Mon, 01 May 2023 12:06:39 GMT
etag: W/"c40c84ca18d84633a9d86b4046a91437"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: eVnh2jd6TOCLgbmA6vfynI_kV88A6GyZ
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
age: 7852983
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yyguqQQXsAeiccfYNIsNqvwMIM3zAIJJ0hgVBAHxF86i2RMkB6BB5g==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL