| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/click-scroll.js | 104.21.2.128 | 200 OK | 900 B |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/click-scroll.js IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeJavaScript source, ASCII text Hash0f5f66f752555b29fbd9fcc3e74f711e cdc353d761fa51c9e4e942e737a7b82781cac61a a32a92a701985bf4e97cc41c90935ffc0001a4813ea2b9c2b825437024ac112c
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/js/click-scroll.js HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/javascript
etag: W/"4e1-65701c96-1e800173;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NySlGCL9rguU1XIRPex6%2FIilOUrzrmGj77ZK4BVuJ6R5RJhYspJIvaBEy9hpeXdf6yPLZI17GvCJg9mm4%2BOwQHppzfpgKOE75A3Td0FFYgPs%2FULEKhudEjnpePqBScMU2dwZE4LVN6YPXrlCmMw%2B5cQG%2BG%2FTHQJt7dU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b788cd56be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/vegas.min.js | 104.21.2.128 | 200 OK | 3.8 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/vegas.min.js IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeJavaScript source, ASCII text, with very long lines (9918) Hasha841c6dc954c1b019892b36a419782b0 aa224dd84feab5d8b75c230e1771f912bf1a1758 c79f1cf2b86c7d774f53a90c9d414bc68519f6cce14899282e20bcd5e46a51f6
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/js/vegas.min.js HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:54 GMT
content-type: text/javascript
etag: W/"28a6-65701c96-1e800177;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G%2FgXvQOX0ZdBQNi0T18u%2F%2FWqlxGy7b532XTagkBa3mlrkIV7euFqiXBwAKfXA6g1et00FBbcIcnmjx0ovPsUXA8gt0GgBsnYv9t2Qm2PJf1w0nWMT8UoWw3w9P7r1B2MQRO4pMJg6f2GT7Tt8ahj158t7tljw3axuJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b788cf56be-OSL
content-encoding: br
|
|
| fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 | 216.58.207.227 | 200 OK | 27 kB |
URL GET HTTP/2fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 IP216.58.207.227:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27444, version 1.0 Hash13d1b429e99059f97e58fa10dd69f8b5 174c7f299158103127d50de82f1086c3b66e8258 1262bff0591c36094d058ab102b84ce34eb1e547e8ff00557bf8d55449e58e40
GET /s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mykasihfoundation2.malaysia-x2024.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:22:23 GMT
expires: Sat, 26 Apr 2025 06:22:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:33 GMT
content-type: font/woff2
age: 34052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/plusjakartasans/v8/LDIuaomQNQcsA88c7O9yZ4KMCoOg4Koz4y6qhA.woff2 | 216.58.207.227 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/plusjakartasans/v8/LDIuaomQNQcsA88c7O9yZ4KMCoOg4Koz4y6qhA.woff2 IP216.58.207.227:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 29660, version 1.0 Hash7924d87c0865cf225db1af549e5f47e9 30025670b8f0ffc4007befa89ebdac537c58ce38 7c32f5f53c1810a7f851855eec878127569663f62e996bfc3bec5d2465f40fc3
GET /s/plusjakartasans/v8/LDIuaomQNQcsA88c7O9yZ4KMCoOg4Koz4y6qhA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mykasihfoundation2.malaysia-x2024.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:57:39 GMT
expires: Sat, 26 Apr 2025 05:57:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:37 GMT
content-type: font/woff2
age: 35536
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/bootstrap.min.js | 104.21.2.128 | 200 OK | 44 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/bootstrap.min.js IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeJavaScript source, ASCII text, with very long lines (60201) Hashc5236e5d6a5d0ff97ff8c8e5102c6c03 6fbfdbddbe85c578de559adcc8d07cccbc16d514 87538c4b7e488f5a49d12f98d6a04afc61d00f26a790f319569799acd434eb65
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/js/bootstrap.min.js HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/javascript
etag: W/"ec40-65701c96-1e800172;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DPln%2Fpq0qkNJGVuFUBr6%2FM0ZM8EdqSaVtNy%2FJ99wuywDS6uWJRcmB%2FtsGz9%2Ff7QyPuZ%2FIbV126zsCro7riAsETEalAf73FrXTbS%2Fq%2FnmBmzKigT4d2Rb8pxm4vOHYeiXZ42%2BZT%2Bn44l7GiCijcI2rF7sLmRyjjZpErs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b778bb56be-OSL
content-encoding: br
|
|
| fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 | 216.58.207.227 | 200 OK | 27 kB |
URL GET HTTP/2fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 IP216.58.207.227:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27444, version 1.0 Hash13d1b429e99059f97e58fa10dd69f8b5 174c7f299158103127d50de82f1086c3b66e8258 1262bff0591c36094d058ab102b84ce34eb1e547e8ff00557bf8d55449e58e40
GET /s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mykasihfoundation2.malaysia-x2024.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:22:23 GMT
expires: Sat, 26 Apr 2025 06:22:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:33 GMT
content-type: font/woff2
age: 34052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/images/coffee-beans.png | 104.21.2.128 | 200 OK | 453 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/images/coffee-beans.png IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typePNG image data, 1080 x 1080, 8-bit/color RGBA, interlaced Size453 kB (453317 bytes) Hash5413c8ad06c960b5544ca247ed68ac9e 78a09f5d9b84aabd5960d2855d8a9c48cb19e964 249d648687a3f436ba495d69b6dc71fadc6e297a1f19c62c99b183dcfac8c6dd
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/images/coffee-beans.png HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: image/png
content-length: 453317
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 15:49:54 GMT
etag: "6eac5-65701c96-1e402467;;;"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2FRkTmZc94OfDWOsOrk%2FgAQqGFIv38Hr%2BLZypMap1fki2gKcITjhM2zq%2BbbMPAWsnL9aw6gyfxJIe%2FEPUP5ZmijliPO9Vu5TcAR8yEw%2BGI5RQNnuNgOLcft09516lssfH%2Fr6LezcNpGqnyEHyv%2FnMkVOww7eU940Ass%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7b9b778aa56be-OSL
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/jquery.sticky.js | 104.21.2.128 | 200 OK | 114 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/jquery.sticky.js IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeJavaScript source, ASCII text Size114 kB (114490 bytes) Hashb8746b98470305fb641e8a0b30d38c4d 495ab774710f8f9a1476f72c77aaf713c19da491 40223bede5475b91b43535458932df276f2750c236732faa669ba9faefd1d1f5
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/js/jquery.sticky.js HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/javascript
etag: W/"1c85-65701c96-1e800176;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tOa6YSJi7Ok3GQbbcJuOqOt9sHs8h%2BR18UPX4De9TPYBH4oHLxNfCClqy9JwVuX5u4hRtnNXsBV4xjcbeVOKotP7Wlcd45613wkbqy6IxrQIZxA%2Fgzt1gNOMG87CmAb3kvBS%2BPBd3gN0YHU7SUzrVtXTtqxshsv7cAY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b778be56be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/bootstrap.min.css | 104.21.2.128 | 200 OK | 195 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/bootstrap.min.css IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
Size195 kB (194901 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/css/bootstrap.min.css HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 15:49:54 GMT
etag: W/"2f955-65701c96-1dc0e8f2;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IlRjPzyukmtAPoG2e9XLY5kmzZ6CCYo%2FSoSWBu3XHGBL%2F1189OeFhZzoRvpjT4T7XvA%2FYq1XFRybNkn9zoxdB3o7oJJRn71iy4O7JOC5pW%2BI6A23lonJ6qiGpLu11ecjILmiRMCd2D53g47wwM3eQtog%2BYNf9bvmf%2FA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b7689956be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/vegas.min.css | 104.21.2.128 | 200 OK | 6.9 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/vegas.min.css IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeASCII text, with very long lines (6864), with no line terminators Hash2e45fd73175a6103054839fd6ad594b4 aee9200292368cb614408d85363a1400a52e2573 ed3b58f2518a61af6f4d89807236d0b07ec4480e4ac2bf7003185dc51eb4deba
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/css/vegas.min.css HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 15:49:54 GMT
etag: W/"1ace-65701c96-1dc0e8f4;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O%2FBVV4ScEQh%2FSjpPZNnJ2yeEb28p6MhQPTY5LOcX0CgrnIX6v7BAxQMtdsz3REx1LcEvwju58W4TBpjGDhVLMK%2FV8On7r%2BaUdva62GRwJH3azeChg6IY%2FQPw9NvCMfGrVu7dbf2YPjDWKfKdTYbvNeXY14WGgZAGNsk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b768a556be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/custom.js | 104.21.2.128 | 200 OK | 1.2 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/custom.js IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeJavaScript source, ASCII text, with very long lines (1286), with no line terminators Hash8beeadfa9c829e9ec3126507c0e4d73a d8173686b570d8862c6ce0a5e0fe42132b00150c d293cc3053d0c86be6a0c31f772c049c03eebc08254829f4eb3a7f3a57f4094b
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/js/custom.js HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/javascript
etag: W/"4d5-65701c96-1e800174;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3yvdkwVLFQSztwcy0r8LqQQGlv0slZGR3zsJCw7GcR4U9%2Bzd52y0y4jLDXbTZb0ENKslK%2FmpgcIY%2BmCpBQU1%2BQt4VjgdX2jrlO0qY5vlA2Rk4qSiheEQlzg00QDDI8TbngyKO%2F80gJJxkcATxXkNPKwal3UU39d%2FMyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b788db56be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/jquery.min.js | 104.21.2.128 | 200 OK | 86 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/js/jquery.min.js IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash48abd2372de119dfd7ffb96c8f307bfe da49460a365d995ef121403cece389dafe496505 04685bdefed2099cae5f544505b8319ee7ae4d0a7f90a93b2e764bde5cad1de6
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/js/jquery.min.js HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/javascript
etag: W/"14e9a-65701c96-1e800175;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cmBFbsLAJjtNEkp0tAiIeZ%2FKBmB%2FfNvErLkKS5vSkTqHCdrTgXMnKzzCYmb1Y4G8sddpNhtNgufdUnXrVNM74yN7s0dWPnpD3FDsGvvhSJxRXgHYooI2rq6k%2Bfeyib%2FDWe0%2FKTRXlGi4xhsLAYzlLoXQLHAqfL%2F09aw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b778af56be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/videos/pexels-mike-jones-9046237.mp4 | 104.21.2.128 | 206 Partial Content | 162 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/videos/pexels-mike-jones-9046237.mp4 IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size162 kB (161606 bytes) Hashf269b5334fc6f9506357fd3aa18a8636 8e6f5e0d84606da62b804194086fed509c5348e4 03b94a9036a70bb3fbee0e8021263bab16a6dc93654bbcc7a6d35338d608b48f
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/videos/pexels-mike-jones-9046237.mp4 HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: video/mp4
content-length: 3045456
etag: "2e7850-65701c96-739f6;;;"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
alt-svc: h3=":443"; ma=86400
cache-control: max-age=14400
cf-cache-status: MISS
content-range: bytes 0-3045455/3045456
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tAxhvumNJtkFn8cd%2B6vgfMLXeMgNS7xcdFVzGxiTxorFiqXwpr5P1ePZ%2F360v3zvJTcw2oLxR3WqxjUZj4mNnv6SQblaGovSTjRp2S%2FeWNlwo8k2xb1JgdKs9RACNZAoX6gesNakKFkqTIQrO6idnKHoz%2BkJhtq1XRE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7b9b7e95456be-OSL
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf | 104.21.2.128 | 200 OK | 112 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 112440, version 1.0 Size112 kB (112440 bytes) Hash31e1300d419245fd27614630601dc74d 3a284b0618771f29da8eb6be900e99439253dce0 c69bf1ccae5f13b5aa4345dcfeb209a8148ad0bfa1e0678b93792aae0429c764
GET /Sumbangan/fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/bootstrap-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:56 GMT
content-type: font/woff2
content-length: 112440
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 15:49:55 GMT
etag: "1b738-65701c96-1e00edf4;;;"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q5Io5jPsQ8aEXK7X4NJIf%2FK53YOHO9y8Bnu1TbMP6g2ZfgsYTER1%2BrPbYjNR6NzwFJF%2BeMtkKhlaxuBFpLEY3lOGg1dLbu8x6t8XF%2BWXi335g9D7z7nqr3lq1qwAb7zYrDSLtukGFqPKTEtfrPxw1%2FGLA19eDJF4ps0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7b9bc483656be-OSL
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan | 104.21.2.128 | 301 Moved Permanently | 7.3 kB |
URL User Request GET HTTP/2mykasihfoundation2.malaysia-x2024.my.id/Sumbangan IP104.21.2.128:443
CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Fri, 26 Apr 2024 15:49:54 GMT
content-type: text/html
location: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Na282zUjr2ojEB803zVwWGGvpq4DBl6hY6wxxjVfgkEd05c7anEWigke4%2B94vyAZuzv54gJlKnAYwyVtLZbRM%2BS9My8EnwOcUrsaXqnxs7OnPpUhOzlk31u2WzCT2yVLk0AduV2LHU0s%2Bikryg%2BkCXJiDgP6PWz47E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b1bfda56b7-OSL
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:ital,wght@0,200;0,400;0,600;0,700;1,200;1,700&display=swap | 142.250.74.106 | 200 OK | 9.7 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:ital,wght@0,200;0,400;0,600;0,700;1,200;1,700&display=swap IP142.250.74.106:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (9900), with no line terminators Hashdf4a30895ca5feeec1286d966dbca589 8b9a0329189f4db261fa4da5ea43c540d37795c1 6d4d82ea4ce9f210db378a4482dcad7fdbd0236756b0b6b4ceb438ae9736c030
GET /css2?family=Plus+Jakarta+Sans:ital,wght@0,200;0,400;0,600;0,700;1,200;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 15:49:54 GMT
date: Fri, 26 Apr 2024 15:49:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/tooplate-barista.css | 104.21.2.128 | 200 OK | 24 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/tooplate-barista.css IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeASCII text, with CRLF line terminators Hashe45173cb520c5ffc3871771cdf98888a 5dac703d86ff19abfda525fa5abf0db2ed88cfeb 728a7e4c71f343e996964838a1858afaf8e8f758cc2bc582a69ef9013e095eb7
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/css/tooplate-barista.css HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 15:49:54 GMT
etag: W/"5e4a-65701c96-1dc0e8f3;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NUjXsRMcpyOfXCcQymv2j7GBPzFT5VZoIiFCfvTZP1H191z3MWEnAIvPrhky2eSVl5EsdDyWNdZHdS8LQcJu8mX0tNy53SiZELYvgC0G3LPMILgz%2BfYor9sAoXrrJJjJzUqM1Oti80hC8XxpdrQlvXdGURB8NeU1nPA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b768a856be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/favicon.ico | 104.21.2.128 | 404 Not Found | 1.2 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/favicon.ico IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeHTML document, ASCII text, with very long lines (1283), with no line terminators Hashdcddf426f9d09f77c12c34b869c42d73 b0caa71704baa29fc984413c481fa5432ee4915d 58c86cced35917d6496e6f0fdf1e35e1690dd7a13cfcfacd5f1240c5f9ca818a
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /favicon.ico HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 15:49:56 GMT
content-type: text/html
cache-control: private, no-cache, max-age=0
pragma: no-cache
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BBxy8Nl723KG9i6gNJexwGBMzEFv9Mm536BtjX7vswlUcQaoduLco5aS22wV2d1JrIoc7z2vK4UVToqLUb%2BdGvLPLWKyvcn727ZDTfYlkejkd567C37HPad5l6vrfrn8h3zskV%2FTzOlB959RUwiixi77jwJK9D9PBt4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9c18ff356be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/images/slides/sincere-laugh-showing-picture-smartphone-casual-meeting-with-best-friends-restaurant-terrace.jpg | 104.21.2.128 | 404 Not Found | 1.2 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/images/slides/sincere-laugh-showing-picture-smartphone-casual-meeting-with-best-friends-restaurant-terrace.jpg IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeHTML document, ASCII text, with very long lines (1283), with no line terminators Hashdcddf426f9d09f77c12c34b869c42d73 b0caa71704baa29fc984413c481fa5432ee4915d 58c86cced35917d6496e6f0fdf1e35e1690dd7a13cfcfacd5f1240c5f9ca818a
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/images/slides/sincere-laugh-showing-picture-smartphone-casual-meeting-with-best-friends-restaurant-terrace.jpg HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/html
cache-control: private, no-cache, max-age=0
pragma: no-cache
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PpsmEXMcn4WdJzh6PRHDBASsU5Igmf0xHxPS%2FvV%2BEjJgVKtLGlzrvBmEBgyE%2FwDsQGfhOu8M2bOmts05ycN6gvN9%2F2yqqk2yJCJhVUq%2B560pJ%2BmxVOccPDCl%2BgE5YjBu9QG86WSZhgmuNhH4HvOh10v52Q1vKymNg9o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9bd69bf56be-OSL
content-encoding: br
|
|
| mykasihfoundation2.malaysia-x2024.my.id/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 104.21.2.128 | 200 OK | 1.2 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:54 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dao9a8q0SVvytY%2BXn5NddEDUnoebOLWWyzMHjgqCCtxofSF%2FDICAuXrj2yXdcYSn%2BM56WBpJxf1bIiXfHq4K1XN2j%2B5QGIRnuoYLT1UgxIxVUq0KGg52%2F4xJgW10Rk126wt%2BnTGv8sA7k48gLFtfQzpgZO%2B1wUiKDw4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a7b9b778ad56be-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 28 Apr 2024 15:49:54 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ | 104.21.2.128 | 200 OK | 7.3 kB |
URL User Request GET HTTP/2mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ IP104.21.2.128:443
CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
File typeHTML document, ASCII text, with very long lines (7670), with no line terminators Hash8e13973c4b0c291e272d004ef11a5147 c669dfc0e208193381edd36ce655b189d2e964ab 9edb9da4fc637d406e3e3500f288d4b06219f167314e302fdc5b0a20e3b9bb12
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/ HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 15:49:54 GMT
content-type: text/html
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HG9rtY%2BOTFk6NJAvSxVXAh2YZRrHvAHKe7I50k0NAKA%2B0SRK0P%2BnuRpigY9OR%2BLMmo%2FZ6rgto2W3li%2BsihmjwQKCSzhWJiykkbowj2v%2BAT4fxj9TRPPVVUlGEHSVuq5sZWo0k6flRf7s3g12U0A3iEvJdDXZp7QyWzI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b52c9956b7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/bootstrap-icons.css | 104.21.2.128 | 200 OK | 89 kB |
URL GET HTTP/3mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/css/bootstrap-icons.css IP104.21.2.128:443
Requested byhttps://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/ CertificateIssuerLet's Encrypt Subjectmalaysia-x2024.my.id FingerprintC5:A4:85:8B:B9:9A:AA:20:84:D1:F5:F5:D3:80:82:92:22:BA:71:12 ValidityTue, 12 Mar 2024 15:46:42 GMT - Mon, 10 Jun 2024 15:46:41 GMT
Hash00220fe2fa340d5502e177032cf423c2 1ce683e78b48dfd6a85e2b4314d85c9a52388f25 4fa72a297d7c91658cf15d00ef0a9e4e83d9a62bf29d34e5f6092e531256567c
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /Sumbangan/css/bootstrap-icons.css HTTP/1.1
Host: mykasihfoundation2.malaysia-x2024.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mykasihfoundation2.malaysia-x2024.my.id/Sumbangan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 15:49:55 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 03 May 2024 15:49:54 GMT
etag: W/"15a0b-65701c96-1dc0e8f1;br"
last-modified: Wed, 06 Dec 2023 07:02:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5HUqFslOSXEcMlbq9o3xppax%2Bu%2BVSXDWn2cgJ5xWSsEPVBmaThgUaQlJi0aALMqZIMl1zZXqh4RjzUpt4cdmAVCm5kzF0kDNeSjSv6UCmCx0AhRCk9OT67df3OSKeV8Sr9QXTYpnaWtvU8VU2kBv02In2zJXELGgF54%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7b9b7689a56be-OSL
content-encoding: br
|
|