Report - ufvskbzrquea.pages.dev/smart89/

Report Overview

Submitted URL
ufvskbzrquea.pages.dev/smart89/
IP
172.66.44.169
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-10 17:51:11
Access
public
Website Title
コンピューターエラー02V7HGTVB
Final URL
ufvskbzrquea.pages.dev/smart89/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
58

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ufvskbzrquea.pages.dev	unknown	2020-09-02	2024-02-24	2024-02-26	14 kB	1.0 MB	172.66.44.169
ipwho.is	unknown	2022-01-29	2020-06-08	2024-05-07	434 B	927 B	195.201.57.90
userstatics.com	unknown	2020-11-05	2020-11-06	2024-05-08	459 B	7.0 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-03-30	medium	ufvskbzrquea.pages.dev/smart89/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365
2024-05-09	medium	ufvskbzrquea.pages.dev/	Office365

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (35)

	URL	Size	First Seen	Last Seen
	ufvskbzrquea.pages.dev/smart89/js/nvidia.js	2.1 kB	2023-09-18	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/nvidia.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-18 07:32:11 Last Seen2024-05-20 20:04:18 Times Seen566 Hash 2dcb8bbd4be0845b6eba41578137ef61 5c71a26c9c3cc73b15a888dbddbbe6ceb2189984 f84bea5397057e0ab07efc0dd7f7b674783df7234276dc010bb88fb84ddfd4a1 Loading...

	ufvskbzrquea.pages.dev/smart89/js/jupiter.js	503 B	2023-03-07	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/jupiter.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:37 Last Seen2024-05-20 20:04:18 Times Seen2750 Hash cd6c33fbc221d0271c910af910e6ebed 9b52f24d6f10b885bb19db1c4b531469f96d2914 318698ae5e67c32550d6b40ac09848d598f6317f51a8f09638ba925f6e7cc479 Loading...

	ufvskbzrquea.pages.dev/smart89/	126 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:35 Times Seen51 Hash 66a524c6296a3beb7a9e013a8fc41521 8d5f529040e43e48e16580923e593cbdb14a0d87 bdac4d461817b4bac037302caa8ee396070b330a15c367379c072ce6263b40a2 Loading...

	ufvskbzrquea.pages.dev/smart89/	59 B	2024-02-26	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-26 11:35:50 Last Seen2024-05-17 20:13:35 Times Seen15 Hash ca2593ee2ffeca1cb48305ab07b9e707 9825e46811e850509f309266bc02828d1db4a332 b2caf315317c7737bb89470123ba430c342a79527ac8d41d79dcc04076d2406a Loading...

	ufvskbzrquea.pages.dev/smart89/js/fulls.js	244 B	2024-01-07	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/fulls.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-07 16:06:04 Last Seen2024-05-20 20:04:18 Times Seen342 Hash 5064825b173b8a8e296c9ef3ca13908a 2557f481c67ed7fe9f838c7a14f3242dcbb13d85 88e460ada551f268bcce9fc4ef0c8c23cbd4864d5b70324db4f7c89e55d262e9 Loading...

	ufvskbzrquea.pages.dev/smart89/	667 B	2024-02-26	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-26 11:35:50 Last Seen2024-05-17 20:13:35 Times Seen12 Hash ca37b1caac2090e88a6d3d99cb7ba4b2 8da9a755f66b23a3107b42ee26cf259cb6efe23d c868a711abd0cb8cca46722a5c3ff26bd909a730928ad88d824b82eead3f7c99 Loading...

	ufvskbzrquea.pages.dev/smart89/	180 B	2024-02-26	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-26 11:35:50 Last Seen2024-05-17 20:13:35 Times Seen12 Hash 17501434586cfe359b2a30e681bfaddc bc85e39fe1014d191d87840893e94c4bbcd36fc8 97bae7ce3e8ec13906e3b2a7238e13f116750b33ca8e7145eb9e2a8cca74bcb7 Loading...

	ufvskbzrquea.pages.dev/smart89/js/btn.js	349 B	2024-01-07	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/btn.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-07 16:06:03 Last Seen2024-05-20 20:04:18 Times Seen339 Hash 7d3a1275f2e32ba593f7b3fd8632d97c 330a7a455635e494be7111f1ef0836ab7274bdc0 53bf10ee7f7e2fbc50a92980a64c87c95107e4192c719b63b561a641b6209fcf Loading...

	ufvskbzrquea.pages.dev/smart89/	340 B	2024-02-26	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-26 11:35:50 Last Seen2024-05-17 20:13:35 Times Seen12 Hash 46be39cb470922967bd0de7ae1e38e3b 30ccb7c2501ff4b90a598486f559f2123b7bb795 2495ccc6b06665571f43a4b96cbf759a42311a0e8e61b99f5e8de8c0530c5e76 Loading...

	ufvskbzrquea.pages.dev/smart89/	41 B	2023-12-09	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-09 16:50:25 Last Seen2024-05-17 20:13:35 Times Seen20 Hash ffe9bfe9d1782b0d8c83d33de3b77e8e 98d1937ff44a406fdac7df5bdef323e2703b51a8 3dfad10202a75f87951a44d22c49ad7d3ad129141655c77841c89d0fbb1babed Loading...

	ufvskbzrquea.pages.dev/smart89/js/noir.js	85 kB	2024-01-27	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/noir.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-27 15:25:22 Last Seen2024-05-20 20:04:18 Times Seen828 Hash 433b079c773ae63f4e1af2f9b92d09f1 54f6987c955ace72deb8864572be36e526029614 e6aa5558980389b32f515fbccd1c46dd127ceb9705908f2df2405c96713a5e7c Loading...

	ufvskbzrquea.pages.dev/smart89/	37 B	2023-12-09	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-09 16:50:25 Last Seen2024-05-17 20:13:35 Times Seen14 Hash 432314e3538c5d5bae7e468ce70ea2bd 7eec72d2f8a817a1f6a56fde2049e4ed74be6036 c8b9b40b969a9ebbf620317bb31f2679db264609416a8944aaf6f03c35d1c85e Loading...

	ufvskbzrquea.pages.dev/smart89/js/esc.js	87 B	2023-11-30	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/esc.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 17:10:01 Last Seen2024-05-20 20:04:18 Times Seen416 Hash 3335a14050d4f6057bb019cf705843b4 1ecf59ecd458a27998fc365cbfa6ad8d5e7c1226 46ebb2640aac2186a7cf13f528c03648fa9a498910289cdad41ba87b9770eb14 Loading...

	userstatics.com/get/script.js?referrer=https://ufvskbzrquea.pages.dev/smart89/	133 B	2023-11-04	2024-05-20
Pretty URL userstatics.com/get/script.js?referrer=https://ufvskbzrquea.pages.dev/smart89/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-04 00:48:23 Last Seen2024-05-20 20:04:18 Times Seen1040 Hash fea7fbf2c619fd4b7716fcaa64070c6c f192732937981a26f526b7c1293a2ae13bc59a22 df9690fea031319de38a437cb6d393026c4aae70642ed394c4254ed64f035b26 Loading...

	ufvskbzrquea.pages.dev/smart89/js/jquery-1.4.4.min.js	79 kB	2024-02-01	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/jquery-1.4.4.min.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-01 13:57:16 Last Seen2024-05-20 20:04:19 Times Seen881 Hash 2130b7ed48a1006f774734218d916dee 86d0aaf4ecb3ead31c3c2739853c089d8d1dc619 d8af41d20b1af69b8c2a8e0776d181a8224f17d314fc2479c8a389a9e79d0542 Loading...

	unknown	29 B	2024-05-10	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 19:51:12 Last Seen2024-05-10 19:51:12 Times Seen1 Hash 2dda16e51e0df828d9deedf63c7cdac1 fbfcbaaf90afcecf77ac772698a4a8c5dc46aa41 2d6935a8ec013faec4a47e97347b6ba0f22cc6cf3b362338f76d082c30d46678 Loading...

	ufvskbzrquea.pages.dev/smart89/	33 B	2024-02-26	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-26 11:35:50 Last Seen2024-05-17 20:13:35 Times Seen16 Hash 751e42cb99873be1f0ecda196659478c 75c246b1ea5e8da08d932e2eb9f7ffef8e45e24e 84afd72fc9090c38b938274750e01bca10c305f6600c1f7b1875d4907a345161 Loading...

	ufvskbzrquea.pages.dev/smart89/	89 B	2024-02-26	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-26 11:35:50 Last Seen2024-05-17 20:13:35 Times Seen12 Hash 30d978cb16f8c85e60098c313ed4a007 08e73cde3513387862bbd1b9caf4e162db4c5b77 a32862e85946a9c9a90f3ce64fe510f5e2b037c0f5d7b29185e81ea324117bd6 Loading...

	unknown	19 B	2023-04-10	2024-05-20
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:23:44 Last Seen2024-05-20 21:26:04 Times Seen2675 Hash 57381d43f260aa3b8c47820ca38655a3 8d087b53d91f8e3ff0def7d1d94a6dada72fac79 35b90e4b54b87ed6cd2b439eac195f9eb59e731e17248c95fb1e26e15d61f943 Loading...

	ufvskbzrquea.pages.dev/smart89/	212 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:35 Times Seen51 Hash 6c4633272b99c67bcb00bd9a47cf0b22 55b4aec0a16567ca67cc7ed9a01d33ee75c69160 fdf79f64f1198fb200225f9d7d3f451e6d04fbdfd79a3895cc93434e014fc6d0 Loading...

	ufvskbzrquea.pages.dev/smart89/	122 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen111 Hash 54af8b5b3624689881c137a8b6a80355 269abaf0b70705bf606c83d2edd19ecdeb0deaa2 fe068354c2731f54ca63c27bd8c2f8d6f9a0b933e800daac9e76cc078b1cd0dc Loading...

	ufvskbzrquea.pages.dev/smart89/js/main.js	2.1 kB	2024-01-07	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/main.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-07 16:06:03 Last Seen2024-05-20 20:04:18 Times Seen333 Hash a8083679971ecd63a124db5693b9209c 968b872b5ec517f01fde36917e9a1e571d5c68d9 16f624b7ce0ec6c382437722455158ffe67735c0afd8a2326ce4a1415cb1327a Loading...

	ufvskbzrquea.pages.dev/smart89/	301 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen43 Hash cf1d937bfc144bc3af5c5594bb291a06 7e1ac2b26539d8cb2e83027c9f8505c4b2354cc3 bf8900b417c40f86aa1442a8b44e21276c8c8f197d8e1fea4a5a6ee47c2ec13b Loading...

	ufvskbzrquea.pages.dev/smart89/	230 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen52 Hash a5b17bb26bf13e07071cf1eeb8c92765 0058b504591a9c66789f89d769b2dd29c5b81beb 0a30e6954d55302478f07a44eaf69c41fe16fe4bd95fd0c626ed78d55141a3fa Loading...

	ufvskbzrquea.pages.dev/smart89/	118 B	2024-02-26	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-26 11:35:50 Last Seen2024-05-17 20:13:36 Times Seen12 Hash b64a3876696c8a632a87cd71e78c3d45 cffd2e934aefff1497a9f0ca28fa73c02cdd4569 ddb84df56792de2736aa3a2ad665b713adf0a3ce74ceecee54434c4a5d035cea Loading...

	ufvskbzrquea.pages.dev/smart89/	117 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen52 Hash a783d4cf1304e58c14841e8c21ffd7d6 674d3e7869066d23bcb8761ed8ba209e107a99b2 470520b0448790183f16fff191d0d4fdfc92ba5b7b154ffa64488ba39976ddb4 Loading...

	ufvskbzrquea.pages.dev/smart89/	456 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen51 Hash 83aa37b65ed963afcb29a95d361189d1 4474c28806388a019fd75eb5434c8d48b709e214 571f1f221aa150288a9abe2e42700bafb404d7b158fb632dfae9b29316e8bcf8 Loading...

	ufvskbzrquea.pages.dev/smart89/	63 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen66 Hash 0c896348899bdb0c386f090ef15a7224 ad6b1f8228a83002b40d20955d9f9696b317c7b9 d9bed76bd71e2404668cc3b80d5f2b171f84bb2412ccdd62a8cc852150edc96f Loading...

	ufvskbzrquea.pages.dev/smart89/js/progress.js	264 B	2024-01-07	2024-05-20
Pretty URL ufvskbzrquea.pages.dev/smart89/js/progress.js IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-07 16:06:03 Last Seen2024-05-20 20:04:18 Times Seen337 Hash c169d3a792ac5e863d595454ced3d9e9 82a940a1f99100d746617354d628b75cf3617438 ec26e7b3ffc4e5ac78cb13db7c37f7a799f05a58aebf82454a261ee40298b20c Loading...

	ufvskbzrquea.pages.dev/smart89/	293 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen50 Hash 8de765141123b871073eeeb7c228a8e4 b3466ba421fdca89639158a8d4a4f678832fcee7 afb1ee152eb0982ce2044b9a2b63402f72c6a756ddf0095809bb23461bc8169b Loading...

	ufvskbzrquea.pages.dev/smart89/	127 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen51 Hash 0786e61c0bf74fd9d8d32546f9c6885a 5379f829caac88a5afaef91e0bf043a526a90b0d 40cfc2becce64cdf71954cc69ff5be3fb90243f1931592825c57283ff0fa2208 Loading...

	ufvskbzrquea.pages.dev/smart89/	84 B	2023-09-17	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 04:40:25 Last Seen2024-05-17 20:13:36 Times Seen52 Hash 8addbd278e93f98b376d10eec4f84583 b52bc13c77e325541faeb05204fbeea17bbb1d40 9a308b5f30c993e91f44bd055086989c658faba273fd0bcb712190c9e90b0e1f Loading...

	ufvskbzrquea.pages.dev/smart89/	542 B	2023-11-30	2024-05-17
Pretty URL ufvskbzrquea.pages.dev/smart89/ IP 172.66.44.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-30 17:10:01 Last Seen2024-05-17 20:13:36 Times Seen20 Hash 60c5cd321f1d7056be67d123783380c7 12588a78b2c7f7653daef7594386feed69063808 4f2a0af5fa8edc1b17faae9979513510b5758991e2cefd57ded39597a794b9e1 Loading...

		Size	First Seen	Last Seen
	#1 Write - 37a6259cc0c1dae299a7866489dff0bd	4 B	2023-03-07	2024-05-20
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-20 22:10:01 Times Seen52302 Hash 37a6259cc0c1dae299a7866489dff0bd 2be88ca4242c76e8253ac62474851065032d6833 74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b Loading...

	#2 Write - 809893e835ad4619125397974051c8b1	163 B	2024-02-25	2024-05-20
Pretty Observations First Seen2024-02-25 10:56:34 Last Seen2024-05-20 20:04:18 Times Seen307 Hash 809893e835ad4619125397974051c8b1 c55cdff52db41500149ae4bf0690172cba963783 27535e6be439328a61a837e73991b19f997e18f5134b47cdcd556abedb6e072d Loading...

HTTP Transactions (31)

URL IP Response Size

ufvskbzrquea.pages.dev/smart89/images/mnc.png

172.66.44.169

200 OK

187 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/mnc.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 140 x 30, 1-bit colormap, non-interlaced
Size
187 B (187 bytes)
Hash
271021cfa45940978184be0489841fd3
201030af9b1bc5d3c8d453efbfdf89b68d6c1be5
c5a324f181af16879b6c4c52b731b23392f2816def159b157c4de620cff1cd41

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/mnc.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 187
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "653967a2ac91034b61d1ad76540b8eb4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mSjeVWy4s6py%2BjcVaxKOuFdBb209VIXtadjaMNzSm3Hknjb%2BT1PNefLPBkRCvNNJg5XRixeLfURiWSM4iGAyMfwWvwgQekuiOjj8ViccifKGwuIRVQPPbGPjrLUrvuTbrYVI1jAhuQ%2BA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe6c7856aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/bel.png

172.66.44.169

200 OK

276 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/bel.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 13 x 13, 8-bit colormap, non-interlaced
Size
276 B (276 bytes)
Hash
7616d96c388301e391653647e1f5f057
b1868c8f0f46309a8e26f584ac82000d54c06ecd
4c1606563842cce5f1788329d4417ae3618b33c6365c56a7122439b6ab45c977

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/bel.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 276
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "f4e0dc23fa0c9a87dc8527d52bd80a1e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1DkxmS%2FgjSMuowx1bcN7lNpItpgYIL3frwg7cVHtoK%2Fxc5ui84qQreCdUGjmnCUb%2BEZR9nS8NZ2w4qZcDcc%2BZ7b%2FdmZ%2BpkVMMQ0FfIv%2BW%2FWinEBdobldS7I1CU1TI1QA8NeNoPBE%2F2gt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe7c8856aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/bx1.png

172.66.44.169

200 OK

119 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/bx1.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 1056 x 908, 8-bit/color RGBA, non-interlaced
Size
119 kB (119006 bytes)
Hash
ef22913e13a0b39c209a671202ec3ff3
a38104877c60e7c9f2aed41b3f92418f8981973e
8e4039a48ffb24b4cdc57ddd4384a16af9eb7efa678577e280308bc9750a0bbc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/bx1.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 119006
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b439c2f816d481fcd7e2eb2937f1fdbf"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DeC9EXzfSGX10CyQtZ8YR%2BkitcIiN7FF%2FJt0YTnzrEf%2FRyKKh5KNd9PuV2MpIiJOYpRoGU%2FUx0YWVbfWnW46hvamXd%2BLOy61wS%2BLtsGSxkTYBm2sUMG6%2BVkztN51IPK9RFLF4a1gPqtx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe7c8656aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/dm.png

172.66.44.169

200 OK

332 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/dm.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 100 x 100, 1-bit colormap, non-interlaced
Size
332 B (332 bytes)
Hash
9d8a90a63d20f05d27e5d6abb35e0cd0
5873b4007e9d55b4d891a4c427b3735ed23dbfe8
7df9f467d23ee1887edb2123cca10a1a9c4624cdcf7199c64e78a8430031f9f5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/dm.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 332
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b5c69f4e5e8f959bb3eb0ad49250137b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YjGAL7AoVG%2FfP2Dc7XDsetfaQm5VcJrujlCILTvN5%2Bl2ll%2BMzf%2FPg%2FoSO3SYn%2BYXeeI6tVMo274CzOBvwZsV43vCt60LjhK6cd0jnViXATihXeBfExhnWjVx6OLbC738kMsUJH71wMQh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe7c9856aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/msmm.png

172.66.44.169

200 OK

168 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/msmm.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 31 x 30, 4-bit colormap, non-interlaced
Size
168 B (168 bytes)
Hash
acb05ebcd5f488fc99169cff02b6dd04
dca893a7b514503e947a57aa072482a0e0cba912
1ab5ef4e7e196cb1ff39df44e1a0a39f6880b906ef6fd6da3cfdbb92ffd33115

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/msmm.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 168
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "8ca71578100459238fb030f8dd97e8bb"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eAgaeFd3tE127C4VTozqzts2VCihnLiA9ZhHEOKehOGONKUYeRscOSV%2BlWaw%2FbSB02tRXk8OpCtXzgY4aScTY15IOClN6FG8dNfkaW%2F3JJmKDDh%2BjS0ZkbeV%2BzsZAkYdFOanWcu81eaE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe6c7c56aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/set.png

172.66.44.169

200 OK

364 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/set.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced
Size
364 B (364 bytes)
Hash
e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/set.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 364
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ee63d8b934f54cf7e606ebae2b4bfcf6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zJypM%2Blm%2FwlpJ29iBmSwv8%2F1OLBeAAfb7HvxWYSB7y1hrc3sbXANpHWiM1OtUFvl0M4yOg8kzUQ0HLAz%2B%2BHM8lrY3HFm20RPz6hf%2FJcOmw%2BjS4AxwYzFIQxk%2Bbjkw6DMCS1ZZ2ErKPP0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe6c7e56aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/vsc.png

172.66.44.169

200 OK

722 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/vsc.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 128 x 128, 1-bit colormap, non-interlaced
Size
722 B (722 bytes)
Hash
42d8f2cc1ae5759c2369f255f36ebc03
8e592162eec14e72d0a751d714a641dbece91f6b
31c6dbe9d867436244f38566adad57e3870f4c8489c6804280eb564bfac5c1bd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/vsc.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 722
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "da27b6888c7cff8c20811d9d856d5f9d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wxn94TGoFW%2FS34Art4kDLEoDcBzVPfykxrK%2BskGgoaUs944MH4H%2FHxZ5LdjzOWalPrAxZmI00KQRIQ2prPdvQ8qPOUuD26fP4JpSDGYarJdk6cuTj8Rs08PAs9mdbxt2cdl7pCbpOFO6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe6c7f56aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/pcm.png

172.66.44.169

200 OK

1.3 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/pcm.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 166 x 92, 4-bit colormap, non-interlaced
Size
1.3 kB (1270 bytes)
Hash
05cdf1a2c2fc8f07bea0a8f4f9356637
b7bbd626d1d6c832509e820cae1d971b34f625e6
afe332157f4efe355f3181284e99f4331c4d19703ed1678b5316d2933f95e98e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/pcm.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 1270
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "f526107ac63134fd87055a8d49a6e1d6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SeDylrmTXUy22Y%2FSCpFm9NPxI19nhmlGHEMc86ERb5vcBs8zZtADBX8wjkG%2BR7pQpq8E2ATX3rTXZNDkLvS3nN4YduWlLWVpZYfDORopWNH9ciZvAc6DVUX%2FE5kU9b2BsesRcnZ0Host"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe7c9156aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/cs.png

172.66.44.169

200 OK

2.7 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/cs.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 520 x 520, 8-bit colormap, non-interlaced
Size
2.7 kB (2681 bytes)
Hash
b01a30d354bfcf51edf33e0b0ea07402
c421359518d1ae258237bf501c563b7f059f8b9b
b67a7c07a045d7cb0f2e216a557aec0d99405e17c36d1a6b1ff3e2733aa35348

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/cs.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 2681
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b1ddc8bc7bef23126af012bc26318301"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x61iUG0zo8zGEd7YiompXpIzP4OXKeZm0i2ZLB%2B8wn92PQQn%2Fg9F2uf8%2F5PquIHNIJ2wEc3Cxaf8JCZQv4ZN%2BRAgQn0xM5lPUYdSa3trRA9ZrqNytjXaX%2BHeix6%2BaZAljTONjZS5YVce"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe7ca056aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/f24.png

172.66.44.169

200 OK

483 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/f24.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 1920 x 4236, 8-bit colormap, non-interlaced
Size
483 kB (483167 bytes)
Hash
c3aa26411736b8f01982741dbd37b043
bad171a74fb4b5d1f433197b66bcd24db953fd90
11d4d0aa8bf0ab597bee785cd9d03301787faee4aae43d66ab53b15f0fe7d849

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/f24.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/png
content-length: 483167
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "43870a7a4f9f16f9812e7ea40932c185"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gs%2FgNgn4x0RcrZCPROEMoLwO%2FASrTwm5%2BgkwbCJ1buFtq%2BaUA3FCTO0%2B9ZtuAMoPf5L%2Fh9Wt6cX0lPAXfp%2BbtshXYn8gwhOKeNWRJtaAT9gNQXBGA312vSxijFqtuNghmUZgo5fYqpTA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe6c7056aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/re.gif

172.66.44.169

200 OK

15 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/re.gif
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
GIF image data, version 89a, 193 x 71
Size
15 kB (14751 bytes)
Hash
6fcb78e0cd7933a70eea2cf071f82118
70364bffd62fe33360abe70ecc7f7c0541b3b54c
4b436b0b6a47db85c88f83dc3fe3fd9a96c0a4018b28832165df929dffe0bc86

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/re.gif HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: image/gif
content-length: 14751
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "100a9924b8b50ce024e2fa5b31934d7f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2YUG1159GOOt2LeSwZ%2BU404FJlFn%2BsF75hplVEQV804qRkNAqxd8E1KqXCnVca06CMY4EVkn07Lh%2FvFLjG5PEEwHiVo%2FNi1FU9VxCLphclknME6JpA8sbLuk3NCcApdZE6CAHgbIlN1G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe8ca256aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/js/btn.js

172.66.44.169

200 OK

436 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/btn.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
ASCII text, with CRLF line terminators
Size
436 B (436 bytes)
Hash
7d3a1275f2e32ba593f7b3fd8632d97c
330a7a455635e494be7111f1ef0836ab7274bdc0
53bf10ee7f7e2fbc50a92980a64c87c95107e4192c719b63b561a641b6209fcf

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/btn.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7fe5dacbe160ece33e52c27802b25b6a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GnNnvobxqhcyyz76Hzz9tVlqSMha%2FJhKD%2BJNcrO1FiiOa7kY9CSFBx0V6CSGfWkWRVMIe3ji8vA5bBQk5L9rMKhPfmejbpGDY9l7f8g1zfRMaPcRoPDJSEhWMuDJ7xbENy0MErS6oRB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5feace356aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ipwho.is/?lang=en

195.201.57.90

200 OK

669 B

URL GET HTTP/1.1
ipwho.is/?lang=en
IP
195.201.57.90:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoGetSSL
Subjectipwho.is
Fingerprint29:9B:81:4F:C5:60:01:21:10:80:F1:58:15:89:9B:7B:05:92:49:23
ValidityWed, 13 Mar 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT

File type
JSON text data
Size
669 B (669 bytes)
Hash
00c51497a1b2016507431efe1a638b26
ee8e864dabb6da2ede54df083951f80c54560f4b
bf6ed05f3fe2a0382c4d13ee8fa045200076f82d0bd11556d2bcc9fcb1a12d85

HTTP Headers

GET /?lang=en HTTP/1.1
Host: ipwho.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/
Origin: https://ufvskbzrquea.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 17:50:45 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: ipwhois
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
X-Robots-Tag: noindex

ufvskbzrquea.pages.dev/smart89/media/yaketsuku.mp3

172.66.44.169

200 OK

8.4 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/media/yaketsuku.mp3
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural
Size
8.4 kB (8405 bytes)
Hash
8618fbb0911e3b8fc96725dee8bfd81f
1bbcb78922946d0cf18fbf3a9e092e36453eb767
0589be7715d2320e559eae6bd26f3528e97450c70293da2e1e8ce45f77f99ab1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/media/yaketsuku.mp3 HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://ufvskbzrquea.pages.dev/smart89/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Cookie: PHPREFS=full
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:46 GMT
content-type: audio/mpeg
content-length: 8405
access-control-allow-origin: *
etag: "0825ebad9a641a19e1944426ffe4916e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xjgD5OEbaFl1ByMkCy4dP32SpAoPWLZ1tZjgNNZl5i4%2BVMuQ4CB1IDIT8aUl7Ea8rh0atnr0KfsYOw2DEgYpUc5jmkL%2FEDvypSIhNP7GW0ihfTAyp0fplliCl1jKewAJBHPTyqBli61c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc601b8ca56aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/css/tapa.css

172.66.44.169

200 OK

5.3 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/css/tapa.css
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
assembler source, ASCII text, with very long lines (324), with CRLF line terminators
Size
5.3 kB (5348 bytes)
Hash
79b667a63f2b3d5ed3bb9686f17ed9be
19c288e08bbc7540332e9fd9682c2c114119b280
503ac25c7c767d529df031eaf6570bce665c021b332493226f658b4274466e0d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/css/tapa.css HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"ecd6c6a736a1718532445835afd38fc8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XK12UScUYZh9hJlO%2BwFGyoo0UixgtSuI%2Fl7Aps9g6Jv%2FFlVf%2ByVXfaBHJbHjgFadYlBN%2Fcb8di9XHy1%2BGvjQhYHWRIBZUgGvSMd5ml5BxUtGxtkHXwckoBt4y0aOqtUSQKxZ4F5yRFEO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe5c6856aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/media/kkeie3.mp3

172.66.44.169

200 OK

194 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/media/kkeie3.mp3
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
Audio file with ID3 version 2.4.0, contains: - MPEG ADTS, layer III, v2, 48 kbps, 22.05 kHz, Monaural
Size
194 kB (193612 bytes)
Hash
40ce7ccb1aa8b0da1f51995ebb59f4e8
ed8a51e3bae2d58202c02471e6a798bbff84dee9
8f24cf514509b9830bcb4a7204463b87fa3e6d9ce47187192130f8230b1990e3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/media/kkeie3.mp3 HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://ufvskbzrquea.pages.dev/smart89/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Cookie: PHPREFS=full
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:46 GMT
content-type: audio/mpeg
content-length: 193612
access-control-allow-origin: *
etag: "e50621b174fd568a8eb61c2382666a7a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HW53%2B1JzCP1o%2BSRFlSlWs55lE%2F6n4P1Y%2BzHoXJuEa0UYWTMjjpz8JIAwVI5laRtro2yrYyy0zULEWErniauPJLF6aN5Y5wK%2BKOribRI9MBzLNt1BL9L%2FHU2qMEWiSjL9D6ex1spxixQG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc601b8c556aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/images/msmm.png

172.66.44.169

200 OK

168 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/images/msmm.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
PNG image data, 31 x 30, 4-bit colormap, non-interlaced
Size
168 B (168 bytes)
Hash
acb05ebcd5f488fc99169cff02b6dd04
dca893a7b514503e947a57aa072482a0e0cba912
1ab5ef4e7e196cb1ff39df44e1a0a39f6880b906ef6fd6da3cfdbb92ffd33115

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/images/msmm.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Cookie: PHPREFS=full
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:46 GMT
content-type: image/png
content-length: 168
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "8ca71578100459238fb030f8dd97e8bb"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xLy9h1jmfyaRoXYLmzJX4Owviymp7eOKQsohc87aOJ%2FsmRtYv%2FMCnUpknVZN5eNTj7wZ3aBHH5T%2FV%2BQUbsOBVxb81Op9tWOkpTLl%2BzCacysvwWd%2BFL%2BHMNHVdnoBh1XcooEAvu4RTP7E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc60289cf56aa-OSL
alt-svc: h3=":443"; ma=86400

userstatics.com/get/script.js?referrer=https://ufvskbzrquea.pages.dev/smart89/

188.114.96.1

6.2 kB

URL GET
userstatics.com/get/script.js?referrer=https://ufvskbzrquea.pages.dev/smart89/
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerLet's Encrypt
Subjectuserstatics.com
FingerprintAB:62:24:6D:5D:BB:D9:D8:00:B7:CB:47:DD:7C:74:69:C8:48:16:49
ValidityThu, 28 Mar 2024 13:34:23 GMT - Wed, 26 Jun 2024 13:34:22 GMT

File type
ASCII text, with no line terminators
Size
6.2 kB (6206 bytes)
Hash
fea7fbf2c619fd4b7716fcaa64070c6c
f192732937981a26f526b7c1293a2ae13bc59a22
df9690fea031319de38a437cb6d393026c4aae70642ed394c4254ed64f035b26

HTTP Headers

GET /get/script.js?referrer=https://ufvskbzrquea.pages.dev/smart89/ HTTP/1.1
Host: userstatics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 17:50:46 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/8.2.1
access-control-allow-origin: https://ufvskbzrquea.pages.dev
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,content-type
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6sz2VsFeUFEFnPlYmRxjCdUhpfhXdJrcK7GXaZYX5Dbkd7n9BXsZe%2FYNIKAZwU1wl2WAaBDH7WEAw6GWRnvR4zbD2GmBbVyNhqdbEaNAOB2y0iHX7jBtgvgj%2BfpFHW%2B5cFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc605e972b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ufvskbzrquea.pages.dev/smart89/js/jquery-1.4.4.min.js

172.66.44.169

200 OK

33 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/jquery-1.4.4.min.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
JavaScript source, ASCII text, with very long lines (820)
Size
33 kB (32819 bytes)
Hash
2130b7ed48a1006f774734218d916dee
86d0aaf4ecb3ead31c3c2739853c089d8d1dc619
d8af41d20b1af69b8c2a8e0776d181a8224f17d314fc2479c8a389a9e79d0542

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/jquery-1.4.4.min.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0e620b1668791704ec2fed2350e0857f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iGdQ6034Py7elMv9vYJrbG29naDxOITTLzacEAt3PpMB355iCMZdXJtvexTejIQ5FeBoNdTIpQYlMaX5kSQOUAMFsb5yuoKTK2xRctdZHrQ9USKu02NCoIVAVEUtaHgF5KPCwRv2HPG7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe6c6b56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/w1.png

172.66.44.169

200 OK

11 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/w1.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
11 kB (10874 bytes)
Hash
29cc843758125eb38c1988def6787ac2
46488fbb6de9406bff41785cc6ab8449b58137f9
298f028ea90f7af0e76c0aa267420be9bfd762cbf07c3d01988131a43447f079

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/w1.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Cookie: PHPREFS=full
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1b76ebcfeea5e66f12607deac4bd6052"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uHIbaNTQBMCb8JloIfWIO9cijVbqYawnerXUcdkRWl2kDdG4cEF53euz4NA18rMfdIrAlOPReeJ%2BtULh3wvtusI2erRuiziqZHLUdN%2BWea2qlY8FNkfcRjOKO9kCCTxfqYq8r5FR0nK4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc61aefa456aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/w3.png

172.66.44.169

200 OK

6.0 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/w3.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
6.0 kB (5969 bytes)
Hash
29cc843758125eb38c1988def6787ac2
46488fbb6de9406bff41785cc6ab8449b58137f9
298f028ea90f7af0e76c0aa267420be9bfd762cbf07c3d01988131a43447f079

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/w3.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Cookie: PHPREFS=full
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:49 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1b76ebcfeea5e66f12607deac4bd6052"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zsr9Qqt3dlcdd0puj1Rg2AmU9en3U9ArnlCl7L31QKKCgKY5xO0KwmrbbTPddqwubZc7dnX74tXzlyRghNpuyU27tDYkc3XJJdtRm15FIUApWzd%2BmWvKnNvZE%2Fj2%2F0UVJ7lLfLWi51iI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc614bf9056aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/w3.png

172.66.44.169

200 OK

6.9 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/w3.png
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
6.9 kB (6893 bytes)
Hash
29cc843758125eb38c1988def6787ac2
46488fbb6de9406bff41785cc6ab8449b58137f9
298f028ea90f7af0e76c0aa267420be9bfd762cbf07c3d01988131a43447f079

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/w3.png HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Cookie: PHPREFS=full
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:51 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1b76ebcfeea5e66f12607deac4bd6052"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tlDspOCJgHgVrQQrUyittRnJWUomb3D9yhfFS6War4dK1d%2Bhe%2Fe9yWkGLKwO8xXn%2B4DKeyrQEYO%2FRyh0xckbtAOrCoXFarWY0rWvcfK84NDIaVgQ5SauBsCN1hJf%2FnFgZjvimW0gXmBf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc621287656aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/js/jupiter.js

172.66.44.169

200 OK

503 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/jupiter.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
JavaScript source, ASCII text, with very long lines (545), with no line terminators
Size
503 B (503 bytes)
Hash
d64718a85daf432be5f8d3c9fe3a45bd
d1b2721f29e5a1a6e6344a53162f32c53eb98e1e
de0997f0917e44e1840ce9d82cc86fd7f6cae542f906c62d78ae71c6af0ee303

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/jupiter.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"57ba525bb338c70835d5893885a8a80a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MQwwqPsGTGLWiPCjpObj6Xt6Td0KiPFm3ITvMEN76Ghy1lojSToUBXB%2BcJQDcZHa7pEwXViOSOB7lBGMxaY0YpmI8DhBVjPxKBOeJTL9FvbZg1UzIASadSJHasNpX3OU1InWSkagzHrS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe8caf56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/js/noir.js

172.66.44.169

200 OK

85 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/noir.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
JavaScript source, ASCII text, with very long lines (32478)
Size
85 kB (84734 bytes)
Hash
433b079c773ae63f4e1af2f9b92d09f1
54f6987c955ace72deb8864572be36e526029614
e6aa5558980389b32f515fbccd1c46dd127ceb9705908f2df2405c96713a5e7c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/noir.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0194b4a6ea0f5c52fb89ceca7a265a8b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1UNsfOxifSceoC1BLPBu2KlYDwPZhF4d54PPVEPM7qmBBREUiy13uU1Yn0k4XKipyUxp05XMU42vBGRFfffW5v6XBgOjOnRod5FF%2Favv1%2Fjzhprq2qEAw0o0QpH%2FXsvOuDzcLKvNvI93"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe6c6d56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/js/progress.js

172.66.44.169

200 OK

264 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/progress.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with no line terminators
Size
264 B (264 bytes)
Hash
b8ba93664fa3465ab466b0da92bf9009
420012173ce2178d3308d861ad6dc06e63a4694c
eb743527b2ae8565a0d47226a72b9a2510d3f07c60328c21db623af07a9d9714

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/progress.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"2940b823dee8ccc2f31d8ba73c1e08ac"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RoNVPY5fLhSvKKDlq9GaTfzUpZG%2BvLWwckNr9e7oDEloD8Y6lzj71U%2FsqdOOlFE1Jzs508jiaKwV7tbIadxTV73rSpEcqNRFfaJPnbA8M5q7yQgZ5oC2kXmYyS5iBgKYdtEMq9Ok1Zn5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe8cb956aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/js/nvidia.js

172.66.44.169

200 OK

2.1 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/nvidia.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
JavaScript source, ASCII text, with very long lines (2121), with no line terminators
Size
2.1 kB (2051 bytes)
Hash
96023f18be84f9e6c243c3d79ff9d8a3
72541f369090d160c13b24fe0a3a5cc22ca135bd
5c4ac3fbd2f81a4db1ef2cf77e1c9bad67fce05f8c24832615edb65b11612efe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/nvidia.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f423f9c7d2b9809bb9730e80eb5dcd74"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=COb9ZgAUFP%2Fnh8bA2nRD%2B2%2FH3hSpDZIVlfTrEmVXeCuOX4oCtfJAUP6T7rPkPhwQWyJenPdyV17Tayo1zewH2kVK5QlcsdlF4hGXQJtVIVwTjdSVYa4CGduLA60entqyn41b8JOWPjAL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe8ca556aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/

172.66.44.169

200 OK

21 kB

URL User Request GET HTTP/2
ufvskbzrquea.pages.dev/smart89/
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type

Size
21 kB (21188 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/ HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 17:50:44 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f17222cd5fd2b00fc8e17d01005b0118"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sNA4n4Ppr7wG%2BylkuJdGpZXsdhNBr8rDwnEjJ19aXvQ4y%2BP3W468K0j8sX0r6nv3URySSGGZy4erhb2%2BpnPktB1QedqEY9FNMbNn6CBWJFDNRn1hFIPOrftmjcLhe%2FV3O9Eef8W5w4mx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5f9f94e56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ufvskbzrquea.pages.dev/smart89/js/esc.js

172.66.44.169

200 OK

87 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/esc.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
ASCII text, with no line terminators
Size
87 B (87 bytes)
Hash
0eb04907b792b275d8241a9cfd5a5509
25679e2e583f165e61199c1fb6490be9add57821
27297273051ab9301c4fcdfc5c6afce8167c53fd7524fdf9c4ffbac2ccf2750c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/esc.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"ed85c5ad951e39b1c57fcbc102847c0d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BVHplFqF%2FSs4D1o57qrrS5uh2OrwB9gyi1AmR24EKxusH5YfcktJQ6ZeGevtChFmQ6jhBzymlUHYT2CsJRKXt1Ro06IEHW38FugQQiPFtyuHicDzWhNtSbC781gatkOkhEyr7a3B0X8Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5feacf356aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/js/fulls.js

172.66.44.169

200 OK

244 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/fulls.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
ASCII text, with no line terminators
Size
244 B (244 bytes)
Hash
58b2d8938aff9de302bae2767717d48c
24e212a6fc879ce2963d34bc7183420ce3841df9
b3183eea7b3e593ca0d2d769ce4399de4038586553efaf514d144d18f0ea044a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/fulls.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6279184c2016e6c0ef277614308a80cb"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f2tQ0xDXxv%2Bu6DeuWWubSa%2FzvhnpBOR89909pIFEFjZ1svGSDJ61Y3yCg1oc2igaozvOAiJ5K187QJVlkVtrvrWooXj28CBixE7YHBSbJ51BsAzK8WDdrPF1X4gdnb0R%2Brq31j8jQqhf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe9cd456aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/ai2.mp3

172.66.44.169

200 OK

688 B

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/ai2.mp3
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
HTML document, ASCII text, with very long lines (821), with no line terminators
Size
688 B (688 bytes)
Hash
969d270984772882a26dee6cd8b78b3b
a92ae12a4435836b409159371fef96dfe925a715
eee999668eaa1bf963ae02c858d2635ff701c6e12387c9cf9dd927267c9a6dd9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/ai2.mp3 HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://ufvskbzrquea.pages.dev/smart89/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Cookie: PHPREFS=full
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:46 GMT
content-type: text/html; charset=utf-8
content-length: 688
access-control-allow-origin: *
etag: "1b76ebcfeea5e66f12607deac4bd6052"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tM77TR0Gl3ptPJtwHarkgby2VlhEqYVcrBt2UgBTfVLMGY62crG5e02bpqP49kkifQ97Xz7ul%2FblIk99op3JDxFK%2F94jeWSyhuv9G9Ugc3YefN5E1cFLtZ7A2xHJpN2vwf0p2gXU%2BLON"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc601b8e656aa-OSL
alt-svc: h3=":443"; ma=86400

ufvskbzrquea.pages.dev/smart89/js/main.js

172.66.44.169

200 OK

2.1 kB

URL GET HTTP/3
ufvskbzrquea.pages.dev/smart89/js/main.js
IP
172.66.44.169:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ufvskbzrquea.pages.dev/smart89/
Certificate
IssuerGoogle Trust Services LLC
Subjectufvskbzrquea.pages.dev
Fingerprint4E:11:68:E3:15:3C:62:F9:B6:49:D4:1A:DE:10:95:DE:EB:91:F7:EC
ValidityTue, 23 Apr 2024 19:05:34 GMT - Mon, 22 Jul 2024 19:05:33 GMT

File type
JavaScript source, ASCII text, with very long lines (2216), with no line terminators
Size
2.1 kB (2067 bytes)
Hash
15939e41b788e32a5ea73da4d2798e08
4d2b64236721c363a5276b0bba60ed6671ce4fe0
62b669590ca0335bf7b6074ac159a855d268e534943d367f97e4ffa9988124ed

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /smart89/js/main.js HTTP/1.1
Host: ufvskbzrquea.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ufvskbzrquea.pages.dev/smart89/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 17:50:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"72906a057a813f68182faf14937568f0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=631ThLs687oOWswk1ult2U01elobHSef%2Bd%2FPXs%2B7huIBCLqdoVSrJumW8o0PB%2FeIZZe%2Fj1SFzvZ0iaQO6DrJIvE6mhrFOmg2OA%2BjKsD85Y3fNSuYdAYIuVPxJuciXIV3Rh%2FM1KaAK7lW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc5fe9cc756aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML