Report - www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/

Report Overview

Visited public
2024-01-04 17:34:24
Tags
meta facebook phishing social suspicious
URL
www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Finishing URL
www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
IP / ASN
202.65.131.137
#18229 CtrlS Datacenters Ltd.
Title
Restrictions Information
Phishing - Facebook
Suspicious - Anti-debugging code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.technoindiagroup.com	unknown	2002-10-25	2013-12-02 08:59:10	2023-12-05 15:27:39	4.1 kB	1.3 MB	202.65.131.137
static.xx.fbcdn.net	661	2007-05-03	2012-12-01 14:12:13	2024-01-03 18:12:32	468 B	3.5 kB	31.13.72.12

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/	ScriptElement	495 B	2023-04-21	2025-04-18
Pretty URL www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ IP 202.65.131.137 ASN #18229 CtrlS Datacenters Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-21 09:55 Last Seen2025-04-18 14:15 Times Seen404 Hash 48b873e62b5424e323ecc556a8c8e968 8c3797779a2ce25ef31f35fca5c30e93047619a9 2f16749e18c2a58231a8ba21d3e1f7d96e71152aaaef2314f7d4dfbef5a2faa5 Loading...

	www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/	ScriptElement	31 B	2023-03-08	2025-04-23
Pretty URL www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ IP 202.65.131.137 ASN #18229 CtrlS Datacenters Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 12:16 Last Seen2025-04-23 13:09 Times Seen1569 Hash c8a8aecfed68494dc11a3a2c314544e0 0a032baa9aed1a5c5d570734a958655e008244b0 6dec1d337364ee9defa8079ae6640e5025ee6728e01f98277c6d382947859164 Loading...

	www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/	ScriptElement	555 B	2023-04-21	2024-12-06
Pretty URL www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ IP 202.65.131.137 ASN #18229 CtrlS Datacenters Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-21 09:55 Last Seen2024-12-06 10:23 Times Seen123 Hash c63dfd0e8b4d4c16bdfb6ab4ce5044a8 15447038761a33cdd208b5ddd459f9e8c19ab730 0815153d1a93599904a872a8d49691124ce3f3cadbbb26f7ac95ad4ccfacea8c Loading...

	www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/	ScriptElement	328 B	2023-04-21	2024-12-06
Pretty URL www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ IP 202.65.131.137 ASN #18229 CtrlS Datacenters Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-21 09:55 Last Seen2024-12-06 10:23 Times Seen123 Hash fe24add4065e4c51a06bf5163f940d6f 8f7025e21c808313755786d3713a9c971ea1a9f4 64da391ffd02d9f2a7174b3a679abbc264d1b307ac9825d1aa758b252e23f4be Loading...

	www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/	ScriptElement	478 B	2023-04-21	2024-12-06
Pretty URL www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ IP 202.65.131.137 ASN #18229 CtrlS Datacenters Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-21 09:55 Last Seen2024-12-06 10:23 Times Seen123 Hash 8ae8dda5376af09e94b50ff4d8df33b9 701398c79e2c38b46b817c1f57b9f7b074666637 57e831336bca2521c6ee78d76c663f5b973da13baee76384a2c7846a23c15368 Loading...

	www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/	ScriptElement	2.2 kB	2023-04-21	2024-12-06
Pretty URL www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ IP 202.65.131.137 ASN #18229 CtrlS Datacenters Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-21 09:55 Last Seen2024-12-06 10:23 Times Seen123 Hash 8138d3c0b5d41085f94707e0f89cb23f 8b8b7e971f4d908c219942bf5825d91753a3d11c d23acd4735cb3efbc4fdd6a14182709d730c538df0aee499fc7eae05cb401807 Loading...

	www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/	ScriptElement	760 B	2023-04-21	2024-12-06
Pretty URL www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ IP 202.65.131.137 ASN #18229 CtrlS Datacenters Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-21 09:55 Last Seen2024-12-06 10:23 Times Seen123 Hash 2a59f71c4545d8ca9a7924f0fbb314a2 8a8a644217695b9f8a4841e8f5537766997b62c1 231f33e2d579759146b122570dc464f43dc0b8bdfac385dd9d3b816602a5f8bd Loading...

		Size	First Seen	Last Seen
	#1 Write - a8368159f1c865e17a60cff5b1d99689	15 B	2024-01-04 16:37	2024-08-20 13:56
Pretty Observations First Seen2024-01-04 16:37 Last Seen2024-08-20 13:56 Times Seen3 Hash a8368159f1c865e17a60cff5b1d99689 060839d629880538e8e7c0215f7830c382839bcd bedc32b1fb74160f5528e73b9e37495a3b3f7062d715f7c69c5e046b0c00838f Loading...

HTTP Transactions (8)

URL IP Response Size

www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/

202.65.131.137

200 OK

20 kB

URL User Request GET HTTP/1.1
www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
IP
202.65.131.137:443
ASN
#18229 CtrlS Datacenters Ltd.

Certificate
IssuerGlobalSign nv-sa
Subject*.technoindiagroup.com
Fingerprint69:59:A0:74:35:D1:7A:C2:82:7B:4F:EC:AB:D1:94:E5:4B:5E:A2:B3
ValidityTue, 27 Jun 2023 10:23:19 GMT - Sun, 28 Jul 2024 10:23:18 GMT

File type
HTML document, ASCII text, with very long lines (2175), with CRLF line terminators
Size
20 kB (19621 bytes)
Hash
2953f87d066d0ae64ddf80bb73f9155a
d7befbb0aea40f3969091724c332bcb7cfa14084
099a17dab93f761c68398425c2fa5f0f795f117bc8206112d12e44c1c2650855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/ HTTP/1.1
Host: www.technoindiagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 04 Jan 2024 17:33:58 GMT
Server: Apache
Last-Modified: Wed, 27 Sep 2023 02:15:00 GMT
Accept-Ranges: bytes
Content-Length: 19621
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

www.technoindiagroup.com/secure-massage871600/asset/css/1D8erEf3S9.css

202.65.131.137

200 OK

517 kB

URL GET HTTP/1.1
www.technoindiagroup.com/secure-massage871600/asset/css/1D8erEf3S9.css
IP
202.65.131.137:443
ASN
#18229 CtrlS Datacenters Ltd.

Requested by
https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Certificate
IssuerGlobalSign nv-sa
Subject*.technoindiagroup.com
Fingerprint69:59:A0:74:35:D1:7A:C2:82:7B:4F:EC:AB:D1:94:E5:4B:5E:A2:B3
ValidityTue, 27 Jun 2023 10:23:19 GMT - Sun, 28 Jul 2024 10:23:18 GMT

File type
ASCII text, with very long lines (52186)
Size
517 kB (516747 bytes)
Hash
ae670d885b61601699af0f279da572e8
dcc18a3ee8ad626a09ffe4866b2b4b1eb83e63d2
9be6fcd99b4925b0428087f59d20245466827164a26b795d3169a6b578ef8476

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /secure-massage871600/asset/css/1D8erEf3S9.css HTTP/1.1
Host: www.technoindiagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 04 Jan 2024 17:33:59 GMT
Server: Apache
Last-Modified: Wed, 27 Sep 2023 02:04:14 GMT
Accept-Ranges: bytes
Content-Length: 516747
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.technoindiagroup.com/secure-massage871600/asset/css/4fGxs96Xxc.css

202.65.131.137

200 OK

54 kB

URL GET HTTP/1.1
www.technoindiagroup.com/secure-massage871600/asset/css/4fGxs96Xxc.css
IP
202.65.131.137:443
ASN
#18229 CtrlS Datacenters Ltd.

Requested by
https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Certificate
IssuerGlobalSign nv-sa
Subject*.technoindiagroup.com
Fingerprint69:59:A0:74:35:D1:7A:C2:82:7B:4F:EC:AB:D1:94:E5:4B:5E:A2:B3
ValidityTue, 27 Jun 2023 10:23:19 GMT - Sun, 28 Jul 2024 10:23:18 GMT

File type
ASCII text, with very long lines (53722), with no line terminators
Size
54 kB (53722 bytes)
Hash
6be5be4cd02bcbd8e333352eff5b63ee
1f03e9e98af55d74c1f7002ac99ccfea99e78cc0
12702066a2a9e7bb44d1cfdba4129a6b0cb23188f62a9e6935a65ae775ac5ab7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /secure-massage871600/asset/css/4fGxs96Xxc.css HTTP/1.1
Host: www.technoindiagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 04 Jan 2024 17:33:59 GMT
Server: Apache
Last-Modified: Wed, 27 Sep 2023 02:04:14 GMT
Accept-Ranges: bytes
Content-Length: 53722
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.technoindiagroup.com/secure-massage871600/asset/css/4fGxs96Xxc.css

202.65.131.137

200 OK

54 kB

URL GET HTTP/1.1
www.technoindiagroup.com/secure-massage871600/asset/css/4fGxs96Xxc.css
IP
202.65.131.137:443
ASN
#18229 CtrlS Datacenters Ltd.

Requested by
https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Certificate
IssuerGlobalSign nv-sa
Subject*.technoindiagroup.com
Fingerprint69:59:A0:74:35:D1:7A:C2:82:7B:4F:EC:AB:D1:94:E5:4B:5E:A2:B3
ValidityTue, 27 Jun 2023 10:23:19 GMT - Sun, 28 Jul 2024 10:23:18 GMT

File type
ASCII text, with very long lines (53722), with no line terminators
Size
54 kB (53722 bytes)
Hash
6be5be4cd02bcbd8e333352eff5b63ee
1f03e9e98af55d74c1f7002ac99ccfea99e78cc0
12702066a2a9e7bb44d1cfdba4129a6b0cb23188f62a9e6935a65ae775ac5ab7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /secure-massage871600/asset/css/4fGxs96Xxc.css HTTP/1.1
Host: www.technoindiagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 04 Jan 2024 17:33:59 GMT
Server: Apache
Last-Modified: Wed, 27 Sep 2023 02:04:14 GMT
Accept-Ranges: bytes
Content-Length: 53722
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.technoindiagroup.com/secure-massage871600/asset/css/1D8erEf3S9.css

202.65.131.137

200 OK

517 kB

URL GET HTTP/1.1
www.technoindiagroup.com/secure-massage871600/asset/css/1D8erEf3S9.css
IP
202.65.131.137:443
ASN
#18229 CtrlS Datacenters Ltd.

Requested by
https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Certificate
IssuerGlobalSign nv-sa
Subject*.technoindiagroup.com
Fingerprint69:59:A0:74:35:D1:7A:C2:82:7B:4F:EC:AB:D1:94:E5:4B:5E:A2:B3
ValidityTue, 27 Jun 2023 10:23:19 GMT - Sun, 28 Jul 2024 10:23:18 GMT

File type
ASCII text, with very long lines (52186)
Size
517 kB (516747 bytes)
Hash
ae670d885b61601699af0f279da572e8
dcc18a3ee8ad626a09ffe4866b2b4b1eb83e63d2
9be6fcd99b4925b0428087f59d20245466827164a26b795d3169a6b578ef8476

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /secure-massage871600/asset/css/1D8erEf3S9.css HTTP/1.1
Host: www.technoindiagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 04 Jan 2024 17:33:59 GMT
Server: Apache
Last-Modified: Wed, 27 Sep 2023 02:04:14 GMT
Accept-Ranges: bytes
Content-Length: 516747
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.technoindiagroup.com/secure-massage871600/asset/img/MetaSecure.png

202.65.131.137

200 OK

49 kB

URL GET HTTP/1.1
www.technoindiagroup.com/secure-massage871600/asset/img/MetaSecure.png
IP
202.65.131.137:443
ASN
#18229 CtrlS Datacenters Ltd.

Requested by
https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Certificate
IssuerGlobalSign nv-sa
Subject*.technoindiagroup.com
Fingerprint69:59:A0:74:35:D1:7A:C2:82:7B:4F:EC:AB:D1:94:E5:4B:5E:A2:B3
ValidityTue, 27 Jun 2023 10:23:19 GMT - Sun, 28 Jul 2024 10:23:18 GMT

File type
PNG image data, 1131 x 424, 8-bit/color RGBA, non-interlaced
Size
49 kB (49084 bytes)
Hash
b9552b82c8de66f59f33ff21454a33c2
433ded5f76a15fab77b1bb190f4f6d6e35da99f5
545c3781cff9f7114a31b0de7323250d7abbbea4c567cabd7025efb0f6a290e9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /secure-massage871600/asset/img/MetaSecure.png HTTP/1.1
Host: www.technoindiagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 04 Jan 2024 17:34:00 GMT
Server: Apache
Last-Modified: Wed, 27 Sep 2023 02:04:14 GMT
Accept-Ranges: bytes
Content-Length: 49084
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

static.xx.fbcdn.net/rsrc.php/v3/y5/r/espe7X_o_zC.png

31.13.72.12

404 Not Found

0 B

URL GET HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/y5/r/espe7X_o_zC.png
IP
31.13.72.12:443
ASN
#32934 FACEBOOK

Requested by
https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Certificate
IssuerDigiCert Inc
Subject*.facebook.com
FingerprintDD:95:B6:56:76:EA:CA:90:95:C4:0B:E0:05:0B:5B:BD:BC:2C:F0:89
ValidityFri, 13 Oct 2023 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rsrc.php/v3/y5/r/espe7X_o_zC.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.technoindiagroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: 
content-security-policy-report-only: default-src fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy-report-only: autoplay=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(), keyboard-map=(), picture-in-picture=(), xr-spatial-tracking=()
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: VH489tpFuV6qCMMtrNxPZ+B2kLOLQxu0aYaPU7owEzwIh6ElBX34RRbl68ZpAWfW3/KE7Smgtqk5wMaP0jPUOA==
content-length: 0
proxy-status: http_request_error; e_clientaddr="AcK8mANdXWik2KY_R2AVL8dzUKlqNeRhzqz4XC5pzn3aGzvehzFtTh6xrWdkY3aKPTwa7BWBD5-_fa1y2qPTyG_6mW-USFBWEjJ-TM8DULoMJ3damg"; e_fb_vipport="AcLSpYdywghhbKAIY4PJu9-GdO0AXVJ41yVDAcvXfzyP1hKfAyUtVn0iSJ5v"; e_upip="AcIHkVCQ2mPY8wFQ264J1w1klqMMxUy5bUxHG3Pa9SrF2vXcpynvHKw4iZKGMCwlZDuhHg-0nOUS5KvKa-Q9b0vuLPwPwAZQJA"; e_fb_hostheader="AcIYdBv84RKMlKjOvkfSVQeg9lm9e7BxZGnMfjLhLYqXQgdG8eMLAiPSPShtz_DlBngI-a-Ra-E1QtX3GA"; e_fb_vipaddr="AcLaeF2c1fw5gULZmlBKwFWmnUsBoypRYFRZSdJRMqCZ_nRrZsnLQ7uhLBtV-Ej28gGov0XeV5BwRt7YCj6h7dIhTwuAtjbWQQ"; e_fb_requesthandler="AcIUoNtHN0a_HwYDXIB5MRSZc1ZX_fwh28l0C5cM8tvAcexOJrAustCBcRZxWCxJWxlAc4aI50A"; e_fb_builduser="AcK0yOs5KrK8PPJMR-iAkz2T2kAKAw3_irCVV6BtaJFXgunhV-LfP22p8UP9sU-LHIU"; e_fb_binaryversion="AcKKBh9m7DGuNX5bFW_s-5N1U-xVtIBx_60ZFUF8Zh-X8J0nNgQSJbG9LaCby2OYgeMfVnWSGvS1Uvw9cgbGtrZOTTQXb4nUINY"; e_proxy="AcKnsJG63UG5c46XwzMMFHvGSobvlRusDsJnA0r4ueWcAbeen9fqfQa2OoSHOdRJXGpjNsK13eL73lhxtST9", http_request_error; e_clientaddr="AcIcvGzT5pF4v6icWY9-zUcnuDEmWHtd6RkBPk7BUudxAtYdFX69vgatalNxocaJqx0I13ql586_NyBp"; e_fb_vipport="AcI65VEKyBNRGU7lVFaQRRo2yhV5dbzm-sWZVMN1soXC5FgAvvKHmc8YpJc3"; e_fb_hostheader="AcKD6PB0Nkf3aRdZH4JrHlQ2MLpWTYtuvAZ49FmujemcPKYZlCy-hanrkwi4fdc97IiS0MnAMOkKKHyJ7g"; e_fb_vipaddr="AcLwKCQm8MJaLYRhCVGfJtFphfyLAmzGq1oefB-9L2vHAzeISSVT2wNie_mZ5bt4BhTVHOQ"; e_fb_requesthandler="AcKz9b3cghTyjgbZjt727eNDQ-CdQuV9D7MTAQFXiS-1SPHROh0_llbFddEHzEWVU-IKKJVcJesUwA"; e_fb_builduser="AcJ9mj-9xIWD65bqcXHPJeqh1SZ6rEqB1zo5XB97jV6XEcoUtqWgv9luMbpRbj0Tgu0"; e_fb_binaryversion="AcL5SKNxpGKl04kMJrdxSbv-xgEn3OPtKOVpGtokdvnVygTwG2w4EFET_v5EWXejtGOHWksp5Ux7EQ5FTBvoC4DPiB86YNZYlI0"; e_proxy="AcJmH-32QSQeneKDGPTiRN3v3_c3tj05pn6Ty7_nNmFS0eFL7tTzeGPkdKpBpbr0mJcsW-lssdv6T4o"
date: Thu, 04 Jan 2024 17:34:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.technoindiagroup.com/secure-massage871600/asset/icon/favicon.ico

202.65.131.137

200 OK

118 kB

URL GET HTTP/1.1
www.technoindiagroup.com/secure-massage871600/asset/icon/favicon.ico
IP
202.65.131.137:443
ASN
#18229 CtrlS Datacenters Ltd.

Requested by
https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Certificate
IssuerGlobalSign nv-sa
Subject*.technoindiagroup.com
Fingerprint69:59:A0:74:35:D1:7A:C2:82:7B:4F:EC:AB:D1:94:E5:4B:5E:A2:B3
ValidityTue, 27 Jun 2023 10:23:19 GMT - Sun, 28 Jul 2024 10:23:18 GMT

File type
MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel
Size
118 kB (117705 bytes)
Hash
ad971586d24796b16779d8a83fba25eb
ca0e4bd9b4d425b89d9605c57702425e5a19c353
78dac669a1d69af7af596bb9b2256bb9c77986d9083f55d6436f3553101d7c76

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook

HTTP Headers

GET /secure-massage871600/asset/icon/favicon.ico HTTP/1.1
Host: www.technoindiagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.technoindiagroup.com/secure-massage871600/invalid.html?user-agent=Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 04 Jan 2024 17:34:00 GMT
Server: Apache
Last-Modified: Wed, 27 Sep 2023 02:04:14 GMT
Accept-Ranges: bytes
Content-Length: 117705
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (8)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type