Report Overview

  1. Submitted URL

    raffleroyale.buzz/saudiaair/DSckRFfaHsExyK2D9BoXvz

  2. IP

    172.67.220.49

    ASN

    #13335 CLOUDFLARENET

  3. Submitted

    2023-03-29 18:45:29

    Access

    public

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    3

  3. Threat Detection Systems

    8

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
content-signature-2.cdn.mozilla.net11522020-11-03T13:26:46Z2023-03-29T18:24:36Z
cdnjs.cloudflare.com2352015-04-17T22:46:33Z2023-03-29T22:30:57Z
push.services.mozilla.com21402014-10-24T10:27:06Z2023-03-29T18:37:20Z
luckyway.buzzunknown2023-03-09T06:38:34Z2023-03-29T15:45:35Z
qoaaa.com2395672018-11-26T22:58:30Z2023-03-29T13:07:57Z
img-getpocket.cdn.mozilla.net16312018-06-22T01:36:00Z2023-03-29T22:30:19Z
a.trafficwithroi.comunknown2023-01-19T15:52:15Z2023-03-29T18:52:25Z
raffleroyale.buzzunknown2023-03-07T19:23:58Z2023-03-29T18:39:47Z
r3.o.lencr.org3442020-12-02T09:52:13Z2023-03-29T18:12:03Z
softronline.clickunknown2022-06-22T13:51:12Z2023-03-28T15:51:00Z
code.jquery.com6342012-05-21T19:28:02Z2023-03-29T18:12:45Z
u.img.socialunknown2023-03-29T12:54:25Z2023-03-29T19:38:14Z
cdn.puuush.meunknown2022-02-21T20:22:17Z2023-03-28T10:21:19Z
prs.pinkyads.questunknown2022-01-14T09:14:36Z2023-03-29T04:55:10Z
mo.atosen.infounknown2022-07-08T17:54:47Z2023-03-29T17:33:19Z
my-pu.shunknown2022-05-09T10:41:39Z2023-03-27T09:49:29Z
ocaba.liveunknown2022-03-18T16:18:10Z2023-03-29T19:38:15Z
firefox.settings.services.mozilla.com8672020-06-04T22:08:41Z2023-03-29T18:14:38Z
contile.services.mozilla.com11142021-05-27T20:32:35Z2023-03-29T18:13:46Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
mediumClient IP 172.67.220.49
mediumClient IP 172.67.220.49
mediumClient IPInternal IP

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumraffleroyale.buzz/saudiaair/DSckRFfaHsExyK2D9BoXvzPhishing
mediumraffleroyale.buzz/saudiaair/api/j.phpPhishing
mediumluckyway.buzz/l2vLtnyU28VAAauncaHh/cl5uY2ZaYGZrMDMxLy4qNDIqNw==Malware
mediummo.atosen.info/24424fa7-94ad-4965-bbcf-77da4e8ef080?var1=2084Phishing

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (19)

HTTP Transactions (60)

URLIPResponseSize
raffleroyale.buzz/saudiaair/DSckRFfaHsExyK2D9BoXvz
172.67.220.49200 OK365 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK5.3 kB
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
raffleroyale.buzz/saudiaair/api/j.php
172.67.220.49200 OK112 B
cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.1/css/bootstrap.min.css
104.17.25.14200 OK18 kB
r3.o.lencr.org/
95.101.11.115200 OK503 B
cdnjs.cloudflare.com/ajax/libs/select2/4.0.0/css/select2.min.css
104.17.25.14200 OK1.5 kB
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css
104.17.25.14200 OK17 kB
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
push.services.mozilla.com/
34.117.65.55101 Switching Protocols0 B
u.img.social/res/69198285/img/sasasa-show.jpg
172.66.40.168200 OK28 kB
u.img.social/res/69198285/img/shaeyou.jpg
172.66.40.168200 OK1.7 kB
u.img.social/res/69198285/img/shahuzuo.jpg
172.66.40.168200 OK1.4 kB
u.img.social/res/69198285/img/shatzho.jpg
172.66.40.168200 OK7.3 kB
u.img.social/res/69198285/img/sasasa-box1.png
172.66.40.168200 OK18 kB
u.img.social/res/69198285/img/shaskoodllss.jpg
172.66.40.168200 OK6.3 kB
u.img.social/res/69198285/img/sasasa-box2.png
172.66.40.168200 OK5.3 kB
luckyway.buzz/l2vLtnyU28VAAauncaHh/cl5uY2ZaYGZrMDMxLy4qNDIqNw==
104.21.76.102200 OK26 kB
u.img.social/res/69198285/css/style.css
172.66.40.168200 OK12 kB
u.img.social/res/69198285/img/yhph13.jpg
172.66.40.168200 OK7.2 kB
u.img.social/res/69198285/img/yhph14.jpg
172.66.40.168200 OK18 kB
r3.o.lencr.org/
95.101.11.115200 OK503 B
qoaaa.com/7987c9ea3c6d567301b1/ca312ef06e/?placementName=default
185.66.201.42200 OK15 kB
r3.o.lencr.org/
95.101.11.115200 OK10 kB
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
34.120.237.76200 OK7.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
34.120.237.76200 OK6.0 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png
34.120.237.76200 OK8.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK8.7 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb4ab271-45be-41d0-93c0-528d0d9367e3.jpeg
34.120.237.76200 OK5.4 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
34.120.237.76200 OK6.7 kB
cdn.puuush.me/js/pub.min.js
173.236.118.99200 OK1.5 kB
cdn.puuush.me/sw.js
173.236.118.99200 OK776 B
a.trafficwithroi.com/click?pid=2084&offer_id=5813&sub1=30affC1680115519aff1239ec5f30098a956a43&sub2=29285321
172.67.148.80302 Found0 B
prs.pinkyads.quest/5c0876c3-e241-4dd2-b3d2-95abb6abc477?var1=2084&clickid=642487418002f10001dcd6aa
18.158.88.249302 Found0 B
mo.atosen.info/24424fa7-94ad-4965-bbcf-77da4e8ef080?var1=2084
18.158.88.249302 Found0 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
softronline.click/prelandings/5d0d2e41-e32d-4c47-ac97-1b6103c51f52/age_verification.css
109.206.162.133200 OK1.4 kB
softronline.click/prelanding?id=5d0d2e41-e32d-4c47-ac97-1b6103c51f52&click_url=aHR0cHM6Ly91cmwudG90YWxhZGJsb2NrLmNvbS82Mjg3YjhjZjIwZjZmL2Rvd25sb2FkLzQ2NTkvNWJlNDgzZDQtMDk3Mi00ZGUyLWEyMTQtYzY2YzZjYTkzYzJi
109.206.162.133200 OK14 kB
my-pu.sh/9668f6a5b437ef48b15e/af7248ffce/?placementName=default&user_param=274662&user_check=1128105005
185.66.201.58200 OK856 B
softronline.click/prelandings/5d0d2e41-e32d-4c47-ac97-1b6103c51f52/static/translate.js
109.206.162.133200 OK3.5 kB
softronline.click/prelandings/5d0d2e41-e32d-4c47-ac97-1b6103c51f52/shield.png
109.206.162.133200 OK2.8 kB
code.jquery.com/jquery-3.6.3.slim.min.js
69.16.175.42200 OK25 kB
softronline.click/prelandings/5d0d2e41-e32d-4c47-ac97-1b6103c51f52/jizfRExUiTo99u79B_mh0O6tLQ.woff2
109.206.162.133200 OK47 kB
softronline.click/prelandings/5d0d2e41-e32d-4c47-ac97-1b6103c51f52/jizaRExUiTo99u79D0KExQ.woff2
109.206.162.133200 OK45 kB
softronline.click/prelandings/5d0d2e41-e32d-4c47-ac97-1b6103c51f52/static/favicon-32x32.png.webp
109.206.162.133200 OK752 B
ocaba.live/go.php?go=http%3A%2F%2Fa.trafficwithroi.com%2Fclick%3Fpid%3D2084%26offer_id%3D5813%26sub1%3D30affC1680115519aff1239ec5f30098a956a43%26sub2%3D29285321&do=ad0d18477a40084e1a7dc48df83dbbad&push=86|79274662
185.66.201.8200 OK0 B
ocaba.live/favicon.ico
185.66.201.8404 Not Found0 B
ocaba.live/sw.js?v=1680115545020
185.66.201.8200 OK0 B
ocaba.live/go.php?accepted=0&id=86
185.66.201.8200 OK0 B
softronline.click/offer?payload=eyJhY2Nlc3NfaWQiOjY0MTgsInByZWxhbmRpbmdfaWQiOjIwfQ==&click_id=wooaijskjhh17qkn2ni13qpu&subid=2084
109.206.162.133302 Found0 B
u.img.social/res/base64.min.js
172.66.40.168200 OK0 B