Report - ronacanx.bitbucket.io/

Report Overview

Visited public
2023-11-28 13:13:18
Tags
URL
ronacanx.bitbucket.io/
Finishing URL
ronacanx.bitbucket.io/
IP / ASN
185.166.143.50
#16509 AMAZON-02
Title
ronacanx.bitbucket.io/

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ronacanx.bitbucket.io	unknown	2013-03-07	2022-08-22 05:07:35	2023-11-28 10:03:54	5.5 kB	339 kB	185.166.143.49
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-11-28 05:09:10	1.8 kB	223 kB	151.101.65.229

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive
2023-11-28	medium	ronacanx.bitbucket.io/	Microsoft OneDrive

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js	ScriptElement	72 kB	2023-03-07	2025-05-11
Pretty URL cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02 Last Seen2025-05-11 06:23 Times Seen6100 Hash 1276065911521c5c22037a31365d179d d1c6704e94efe2d465fc161b6381e127d35acd81 bbb7b9921ca2b61948753a6edb63c78443663dc45d1621d18e102e1dcb34e512 Loading...

	cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js	ScriptElement	21 kB	2023-03-07	2025-05-10
Pretty URL cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 21:14 Times Seen6219 Hash 1022eaf388cc780bcfeb6456157adb7d 313789ca0e31b654784dbba8b0f83f364f8683b4 fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js	ScriptElement	83 kB	2023-03-07	2025-05-11
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-11 09:50 Times Seen1910 Hash 90146f01d8a2028ed6f2c3d2fba4ac9b 0363cb58b7a7b60ef7fbf82b8bceb6305232501a 7e02c082fedfc821a8a51fe004dab6896dd928876a21ccac8675142c2e2f7b1f Loading...

	ronacanx.bitbucket.io/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL ronacanx.bitbucket.io/jquery.min.js IP 185.166.143.49 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 12:01 Times Seen108941 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	ronacanx.bitbucket.io/app.js	ScriptElement	2.9 kB	2023-09-22	2023-11-28
Pretty URL ronacanx.bitbucket.io/app.js IP 185.166.143.49 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-22 14:34 Last Seen2023-11-28 14:13 Times Seen4 Hash 620cb6437ac24f5d1202ab6aedc35335 0f9021ff865089b76de36feb63dbe143054d2d0a 9fc794155f074dc9898786979779a51335ec44e9ab8cde89cfd921cb651bfd8e Loading...

HTTP Transactions (16)

URL IP Response Size

ronacanx.bitbucket.io/

185.166.143.49

200 OK

27 kB

URL User Request GET HTTP/2
ronacanx.bitbucket.io/
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
27 kB (27165 bytes)
Hash
95e0c7d01f2c0ebde5c6b628dac10bd9
c4878df78cd6fbe25d99e6c9ec5a2019bcf60434
11c73585d91fa33028a9eca5e0402348a817b071f4aeeb54c8672bca024f57ac

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET / HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:00 GMT
content-type: text/html
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: W/"49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: cf147416b470
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2792
x-render-time: 0.04456067085266113
x-b3-traceid: 2e91ed25f5e84a1abad0b7cae3e64f3b
x-b3-spanid: b3f46e3eac7b0dab
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 999170.750
x-usage-request-cost: 842.03
x-usage-user-time: 0.018000
x-usage-system-time: 0.007261
x-usage-input-ops: 0
x-usage-output-ops: 0
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 2e91ed25f5e84a1abad0b7cae3e64f3b
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js

151.101.65.229

200 OK

7.8 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (21060)
Size
7.8 kB (7831 bytes)
Hash
1022eaf388cc780bcfeb6456157adb7d
313789ca0e31b654784dbba8b0f83f364f8683b4
fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f

HTTP Headers

GET /npm/popper.js@1.16.1/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.16.1
x-jsd-version-type: version
etag: W/"52f1-MTeJyg4xtlR4TbuosPg/Nk+Gg7Q"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 13:13:00 GMT
age: 7007387
x-served-by: cache-fra-eddf8230124-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7831
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js

151.101.65.229

200 OK

26 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.slim.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65241)
Size
26 kB (26095 bytes)
Hash
1276065911521c5c22037a31365d179d
d1c6704e94efe2d465fc161b6381e127d35acd81
bbb7b9921ca2b61948753a6edb63c78443663dc45d1621d18e102e1dcb34e512

HTTP Headers

GET /npm/jquery@3.6.0/dist/jquery.slim.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.6.0
x-jsd-version-type: version
etag: W/"11ab4-0cZwTpTv4tRl/BYbY4HhJ9NazYE"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 13:13:00 GMT
age: 6700212
x-served-by: cache-fra-eddf8230066-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26095
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js

151.101.65.229

200 OK

24 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65299)
Size
24 kB (23650 bytes)
Hash
90146f01d8a2028ed6f2c3d2fba4ac9b
0363cb58b7a7b60ef7fbf82b8bceb6305232501a
7e02c082fedfc821a8a51fe004dab6896dd928876a21ccac8675142c2e2f7b1f

HTTP Headers

GET /npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.1
x-jsd-version-type: version
etag: W/"14535-A2PLWLentg73+/gri862MFIyUBo"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 13:13:00 GMT
age: 19654990
x-served-by: cache-fra-eddf8230130-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23650
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/lg.png

185.166.143.49

200 OK

1.6 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/lg.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 142 x 49, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1606 bytes)
Hash
ec8a1b650cdec04fbf1e696def9c4540
7a708a7d245670fa0aea463f377d16c13862d899
de290893e2fd4365a4500e39e1a9115cd58af6d3aa3035958a1e44060ba911ea

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/lg.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:00 GMT
content-type: image/png
content-length: 1606
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2865
x-render-time: 0.049567461013793945
x-b3-traceid: 81b95b2b3ffc4a069aa9bfc312560ebc
x-b3-spanid: cbe065213cfb9aa9
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 998330.154
x-usage-request-cost: 972.03
x-usage-user-time: 0.029161
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 81b95b2b3ffc4a069aa9bfc312560ebc
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/app.js

185.166.143.49

200 OK

2.9 kB

URL GET HTTP/2
ronacanx.bitbucket.io/app.js
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
exported SGML document, ASCII text, with CRLF line terminators
Size
2.9 kB (2883 bytes)
Hash
620cb6437ac24f5d1202ab6aedc35335
0f9021ff865089b76de36feb63dbe143054d2d0a
9fc794155f074dc9898786979779a51335ec44e9ab8cde89cfd921cb651bfd8e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /app.js HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: text/javascript
content-length: 2883
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 280103fdb0bb
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 3226
x-render-time: 0.07496905326843262
x-b3-traceid: 061f0740599d4dc79ba78d02add92af9
x-b3-spanid: 9fa29dda20d87ab9
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 998192.403
x-usage-request-cost: 1117.03
x-usage-user-time: 0.033511
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 061f0740599d4dc79ba78d02add92af9
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/lgs.png

185.166.143.49

200 OK

2.7 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/lgs.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 185 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
2.7 kB (2673 bytes)
Hash
837677b9bfdbfe36a7de7692f6f53467
7a0abcf1b4882638540f7913eb4e59bd789383b0
e70db5fca6d17c281bb853b80dd399d0f2abba037d4e7b9d851d527fc751bec7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/lgs.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: image/png
content-length: 2673
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: f770bb0d4336
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 3571
x-render-time: 0.05641341209411621
x-b3-traceid: 45b18e9984d14bd0a807645db22f0fe3
x-b3-spanid: 3ef0f22bd546708a
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 997296.411
x-usage-request-cost: 937.03
x-usage-user-time: 0.028111
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 45b18e9984d14bd0a807645db22f0fe3
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/sd.png

185.166.143.49

200 OK

11 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/sd.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 224 x 642, 8-bit/color RGB, non-interlaced\012- data
Size
11 kB (10589 bytes)
Hash
fbd1286e7afc3bce71bc53dbba9f05a5
a9062cd886efc5ce23040e477bd0c9198128c620
6efd73f720999eb847f24f7ed036b5c049012520bc78eb70037febc664b89dbb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/sd.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: image/png
content-length: 10589
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: cf147416b470
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 3326
x-render-time: 0.05019712448120117
x-b3-traceid: f865602320664421b7c1eb8606dbbdef
x-b3-spanid: fedbbd6068be1c7b
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 997329.722
x-usage-request-cost: 905.37
x-usage-user-time: 0.027044
x-usage-system-time: 0.000117
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: f865602320664421b7c1eb8606dbbdef
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/to.png

185.166.143.49

200 OK

30 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/to.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 374 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
30 kB (29469 bytes)
Hash
cb4706a0a85cfadc03c7eb2995bd8d1f
d114185c5702be346ab4068a7b3a76607d1f77ee
ace11d6484e85960c469994b99edbdd5ac1942a563fc23f03a3c560c306ae205

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/to.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: image/png
content-length: 29469
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 3437
x-render-time: 0.050992727279663086
x-b3-traceid: b253b6b165ae4d84985a97990f6bf0da
x-b3-spanid: ad0fb6f09979a589
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 996403.984
x-usage-request-cost: 966.67
x-usage-user-time: 0.029000
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: b253b6b165ae4d84985a97990f6bf0da
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/1.png

185.166.143.49

200 OK

26 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/1.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 225 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (26162 bytes)
Hash
165cce774e11ef47da6e392af5b432ab
3f50b915f3d5cdccd2108c6876b5460b01462880
317c97e8160e912d38fccd519808e1d82d65850daed75e2faf151c8dc3257c87

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/1.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: image/png
content-length: 26162
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2869
x-render-time: 0.0530400276184082
x-b3-traceid: db5c009b2a1d4afca99963ddb9200e28
x-b3-spanid: 82e0029bdd36999a
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 996428.521
x-usage-request-cost: 932.87
x-usage-user-time: 0.025635
x-usage-system-time: 0.002351
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: db5c009b2a1d4afca99963ddb9200e28
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/2.png

185.166.143.49

200 OK

29 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/2.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 224 x 212, 8-bit/color RGB, non-interlaced\012- data
Size
29 kB (29102 bytes)
Hash
bc1e79a14dc64a3919739a5e031df997
9f49dbbb3fd66181f2d3b87d9991612ae5e43ff6
9d0ca28edcbdf3f54552949f7e83a766561f6e4c31d5ead8a7084efbaf803089

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/2.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: image/png
content-length: 29102
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: f770bb0d4336
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 517
x-render-time: 0.06471133232116699
x-b3-traceid: 0a2338978eec483fb96c79c700d39445
x-b3-spanid: 54493d007c97c69b
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 996243.471
x-usage-request-cost: 1121.30
x-usage-user-time: 0.033033
x-usage-system-time: 0.000606
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 0a2338978eec483fb96c79c700d39445
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/3.png

185.166.143.49

200 OK

42 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/3.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 223 x 216, 8-bit/color RGB, non-interlaced\012- data
Size
42 kB (42176 bytes)
Hash
caa7ed6c22eece69ea04594a38b7ecf8
24b7763e27f37c235a2a7fd1b2ae31f51f920a02
673ad26bdafdd622a86b91670b4799babcce2059e048a431b1ec6d3e2fab402a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/3.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: image/png
content-length: 42176
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 3b8cf0a9e606
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2875
x-render-time: 0.07394003868103027
x-b3-traceid: 7ca14cbd88b14d52a4657f6075465a65
x-b3-spanid: 56a5645706f7564a
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 996199.159
x-usage-request-cost: 1171.27
x-usage-user-time: 0.035138
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 7ca14cbd88b14d52a4657f6075465a65
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/im/4.png

185.166.143.49

200 OK

63 kB

URL GET HTTP/2
ronacanx.bitbucket.io/im/4.png
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
PNG image data, 217 x 208, 8-bit/color RGB, non-interlaced\012- data
Size
63 kB (62643 bytes)
Hash
0db6c5b94c208f6937517dd5095d5e1e
45f035aded71fce56aed59ef7cfad25872e2de4d
2c415e01b58d1a42f13173a3be1fb8096e82e96196fcd0316621711b08356da2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /im/4.png HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: image/png
content-length: 62643
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 280103fdb0bb
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 2261
x-render-time: 0.07868194580078125
x-b3-traceid: 03184c240d0a4920a6117ed8041068f7
x-b3-spanid: 7f8601408de7116a
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 995313.042
x-usage-request-cost: 1165.87
x-usage-user-time: 0.034976
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 03184c240d0a4920a6117ed8041068f7
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/favicon.ico

185.166.143.49

404 Not Found

14 B

URL GET HTTP/2
ronacanx.bitbucket.io/favicon.ico
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
5251010ec9e364492c236bf8b9983928
a22e9c3b6a9f5c70de4f76a464810ecba1fb97c3
3521021a2e875fbc52ae82e2a3fea5024d507bbc919f504ca8521292c3fe14d3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: text/plain
content-length: 14
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
etag: "49b304d05d0185176310f308c6d172ae"
x-used-mesh: False
vary: Accept-Language, Origin
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: cf147416b470
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 3327
x-render-time: 0.04090404510498047
x-b3-traceid: ee77d792641545babddf014d696c5060
x-b3-spanid: 0605c696d410fddb
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 994307.096
x-usage-request-cost: 1034.60
x-usage-user-time: 0.031038
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: ee77d792641545babddf014d696c5060
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/css/bootstrap.min.css

151.101.65.229

200 OK

162 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/css/bootstrap.min.css
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65326)
Size
162 kB (162017 bytes)
Hash
d44328cee87c2b405213893ba35eaf78
1fb83fc595cf28bf9362d87610eadfa3b7bbbe59
0c5ed985fdbddc027124d4e6879ce1a1860832cda85e2b517c18d8fbd2fffc06

HTTP Headers

GET /npm/bootstrap@4.6.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.6.1
x-jsd-version-type: version
etag: W/"278e1-H7g/xZXPKL+TYth2EOrfo7e7vlk"
content-encoding: br
accept-ranges: bytes
date: Tue, 28 Nov 2023 13:13:00 GMT
age: 20608475
x-served-by: cache-fra-eddf8230108-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26391
X-Firefox-Spdy: h2

ronacanx.bitbucket.io/jquery.min.js

185.166.143.49

200 OK

90 kB

URL GET HTTP/2
ronacanx.bitbucket.io/jquery.min.js
IP
185.166.143.49:443
ASN
#16509 AMAZON-02

Requested by
https://ronacanx.bitbucket.io/
Certificate
IssuerDigiCert Inc
Subject*.bitbucket.io
FingerprintD3:AE:AA:22:FC:15:43:47:F4:6B:2E:BE:73:DF:6C:9A:38:EC:4D:28
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
90 kB (89476 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Microsoft OneDrive

HTTP Headers

GET /jquery.min.js HTTP/1.1
Host: ronacanx.bitbucket.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ronacanx.bitbucket.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 13:13:01 GMT
content-type: text/javascript
server: AtlassianEdge
last-modified: Wed, 17 Aug 2022 09:48:38 GMT
x-used-mesh: False
vary: Accept-Language, Origin, Accept-Encoding
content-language: en
x-view-name: bitbucket.apps.hosted.views.serve
x-dc-location: Micros-3
x-served-by: 5d28b0378b27
x-version: f5dbb1d6a314
x-static-version: f5dbb1d6a314
x-request-count: 3296
x-render-time: 0.0633242130279541
x-b3-traceid: 62d89a89c18643709613bdbc81ab0a66
x-b3-spanid: 66a0ba18cbdb3169
content-security-policy: None
cache-control: max-age=900,max-age=900
x-usage-quota-remaining: 998235.537
x-usage-request-cost: 1069.73
x-usage-user-time: 0.032092
x-usage-system-time: 0.000000
x-usage-input-ops: 0
x-usage-output-ops: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: 62d89a89c18643709613bdbc81ab0a66
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
strict-transport-security: max-age=63072000; preload
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by