Report Overview

  1. Submitted URL

    www.6294h.xyz/

  2. IP

    104.21.84.197

    ASN

    #13335 CLOUDFLARENET

  3. Submitted

    2022-11-25 10:47:30

    Access

  4. Website Title

  5. Final URL

  6. Tags

    None

  7. urlquery detections

    Detects suspicious URL pattern

Detections

  1. urlquery

    6

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    56

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
www.7823s.xyzunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.digicert.com860001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
e1.o.lencr.org61590001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.2857d.xyzunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
cdn.dcloud.net.cn1168680001-01-01T00:00:00Z0001-01-01T00:00:00Z
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.6294h.xyzunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish
SeverityIndicatorAlert
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.
mediumwww.6294h.xyz/Amazon.com Inc.

PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumwww.6294h.xyz/Phishing
mediumwww.6294h.xyz/static/js/index.338c31de.jsPhishing
mediumwww.6294h.xyz/static/js/chunk-vendors.06540738.jsPhishing
mediumwww.6294h.xyz/static/js/pages-index-index.a8edfdf8.jsPhishing
mediumwww.6294h.xyz/static/js/pages-login-login.42f9bcda.jsPhishing
mediumwww.6294h.xyz/undefinedPhishing

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


JavaScript (6)

HTTP Transactions (67)

URLIPResponseSize
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK5.3 kB
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK939 B
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
www.6294h.xyz/
172.67.196.61200 OK489 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK329 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
push.services.mozilla.com/
52.39.96.8101 Switching Protocols0 B
www.6294h.xyz/static/index.2772579d.css
172.67.196.61200 OK29 kB
www.6294h.xyz/static/js/index.338c31de.js
172.67.196.61200 OK33 kB
www.6294h.xyz/static/js/chunk-vendors.06540738.js
172.67.196.61200 OK316 kB
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
34.120.237.76200 OK6.4 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK11 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
34.120.237.76200 OK8.0 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK4.0 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg
34.120.237.76200 OK11 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
34.120.237.76200 OK12 kB
www.6294h.xyz/static/js/pages-index-index.a8edfdf8.js
172.67.196.61200 OK3.7 kB
www.6294h.xyz/static/them01/tar1s.png
172.67.196.61200 OK5.4 kB
www.6294h.xyz/static/them01/tar5.png
172.67.196.61200 OK3.8 kB
www.6294h.xyz/static/them01/tar2.png
172.67.196.61200 OK3.3 kB
www.6294h.xyz/static/them01/tar3.png
172.67.196.61200 OK7.3 kB
www.6294h.xyz/static/them01/tar4.png
172.67.196.61200 OK4.0 kB
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
r3.o.lencr.org/
23.36.77.32200 OK503 B
www.6294h.xyz/static/js/pages-login-login.42f9bcda.js
172.67.196.61200 OK3.6 kB
www.6294h.xyz/favicon.ico
172.67.196.61404 Not Found109 B
e1.o.lencr.org/
23.36.76.226200 OK344 B
e1.o.lencr.org/
23.36.76.226200 OK344 B
e1.o.lencr.org/
23.36.76.226200 OK344 B
www.6294h.xyz/undefined
172.67.196.61404 Not Found115 B
www.2857d.xyz/api/user/siteobj
172.67.171.232200 OK619 B
www.2857d.xyz/api/user/siteobj
172.67.171.232200 OK1.9 kB
cdn.dcloud.net.cn/img/shadow-grey.png
121.41.118.199200 OK136 B
www.6294h.xyz/static/gq/malaixiya.png
172.67.196.61200 OK5.2 kB
www.6294h.xyz/static/gq/en.png
172.67.196.61200 OK1.9 kB
www.6294h.xyz/static/gq/riben.png
172.67.196.61200 OK2.4 kB
www.6294h.xyz/static/gq/zh.png
172.67.196.61200 OK1.6 kB
www.6294h.xyz/static/gq/hk.png
172.67.196.61200 OK1.5 kB
www.6294h.xyz/static/gq/taiguo.png
172.67.196.61200 OK1.8 kB
www.6294h.xyz/static/gq/eyu.png
172.67.196.61200 OK6.3 kB
www.6294h.xyz/static/gq/yuenan.png
172.67.196.61200 OK1.7 kB
www.6294h.xyz/static/gq/alabo.png
172.67.196.61200 OK3.8 kB
www.7823s.xyz/1.php
143.92.43.197200 OK8.2 kB
www.7823s.xyz/1.php
143.92.43.197200 OK0 B
www.2857d.xyz/api/user/siteobj
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/islogin
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/setlang?lang=en
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/siteobj
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/setlang?lang=en
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/siteobj
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/setlang?lang=en
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/setlang?lang=en
172.67.171.232200 OK0 B
www.2857d.xyz/api/user/siteobj
172.67.171.232200 OK0 B
www.7823s.xyz/1.php
143.92.43.197200 OK0 B
www.7823s.xyz/1.php
143.92.43.197200 OK0 B
www.2857d.xyz/api/user/siteobj
172.67.171.232200 OK0 B
www.7823s.xyz/1.php
143.92.43.197200 OK0 B