moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn
301 Moved Permanently 162 B URL User Request GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn
IP
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
OpenPhish phishing Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 07 Dec 2023 15:22:56 GMT
content-type: text/html
content-length: 162
location: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/
162 B URL moz-extension-kyc.ddnss.eu/
IP
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET / HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 07 Dec 2023 15:22:57 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://moz-extension-kyc.ddnss.eu/
Strict-Transport-Security: max-age=31536000
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/
302 Found 162 B URL User Request GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/
IP
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/ HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 07 Dec 2023 15:22:57 GMT
content-type: text/html; charset=UTF-8
location: 70922
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (32061)
Hash e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 12:03:49 GMT
expires: Wed, 04 Dec 2024 12:03:49 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 184749
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
200 OK 25 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash abe91756d18b7cd60871a2f47c1e8192
7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d
7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moz-extension-kyc.ddnss.eu
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Thu, 07 Dec 2023 15:22:58 GMT
age: 15485820
x-served-by: cache-fra-eddf8230097-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/mm-logo.svg
200 OK 12 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/mm-logo.svg
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1001)
Hash 51bcea2625eb2c6e9268a7377a792c86
5eeb306e6584eed1747c36c11724f193711d430e
5e722754f038988ba4b6d7f380d60191eba3b6e01d4a00749a28b79c53521f5b
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/mm-logo.svg HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: image/svg+xml
content-length: 12019
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-2ef3"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/style.css
200 OK 423 B URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/style.css
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
Hash 58f59332e25349728c6f48ee0fb42c24
6e15b2b0962fbbdb1555f92e8d5ad3fb84383f6d
2f6d9ac47de576591f7a483e84fe2c8e4b932bd082783cdf499f05760ec37c6f
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/style.css HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: text/css
content-length: 423
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-1a7"
expires: Fri, 08 Dec 2023 03:22:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/js/script.js
200 OK 199 B URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/js/script.js
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type ASCII text, with CRLF line terminators
Hash c13cd45cb0fadddf8d912280d6b821df
39992c6f09ac5a26ea2bb56a1a58d0c43cb87aa2
8f9e97cd76e0b6591e9c5c6764c17114722f36eb1ad86f61ef831a87031bae3b
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/js/script.js HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: application/javascript
content-length: 199
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-c7"
expires: Fri, 08 Dec 2023 03:22:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/chrome_1chrome.png
200 OK 3.9 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/chrome_1chrome.png
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 162fd1e613c0f3a992365a980a4fd6cc
3401907394d4810392719d9696ce0088a8847618
90af37bb98146aba902ae19d013dc16ead7ea6f5050f339a5728eaf2a068c7ec
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/chrome_1chrome.png HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: image/png
content-length: 3890
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-f32"
expires: Sat, 06 Jan 2024 15:22:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Firefox_1Firefox.png
200 OK 10 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Firefox_1Firefox.png
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type PNG image data, 107 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 715129c60a9f70f0ccbb6c4395799e95
4dfc6120523fda842c83261ddd922a9ce15a66d7
52c88349bd9d45937236e20a4c9928f8a15db9dc7418436900e667b344e079c5
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Firefox_1Firefox.png HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: image/png
content-length: 10509
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-290d"
expires: Sat, 06 Jan 2024 15:22:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Brave.png
200 OK 19 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Brave.png
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash fbe69790d36bf636e87e83f5413218a7
709f392de11c5f48cbbbefa95d0a6cb56e2592db
cd70b79d81f32aa721dedf46ea682f1f0c1808d2ffe09da63730b2a01380c214
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Brave.png HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: image/png
content-length: 19073
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-4a81"
expires: Sat, 06 Jan 2024 15:22:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Edge.png
200 OK 35 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Edge.png
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 372e0f14122bc985fc25c9adf18e8dd1
0da9b96762170fcdca32a35630e161064d45b3f2
6643f9327bc18e8108d0bc474eee816d0807a10dc8ad3702797e8f81f23c888b
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/Edge.png HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: image/png
content-length: 34658
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-8762"
expires: Sat, 06 Jan 2024 15:22:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/
615 B URL moz-extension-kyc.ddnss.eu/
IP
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7df3d7cf3358af3f470ac7229387ef94
c51a3f0e6de4eb802d5630941c3fd9e1d0efae4b
fb47468a2cd3953c7131431991afcc6a2703f14640520102eea0a685a7e8d6de
GET / HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:59 GMT
content-type: text/html
content-length: 615
last-modified: Sat, 25 Nov 2023 23:42:32 GMT
etag: "65628668-267"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Regular-WebXL.woff2
404 Not Found 146 B URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Regular-WebXL.woff2
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/metamask-staging-2.webflow.css
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 07 Dec 2023 15:22:59 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Bold-WebXL.woff2
404 Not Found 146 B URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Bold-WebXL.woff2
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/metamask-staging-2.webflow.css
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 07 Dec 2023 15:22:59 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Regular-WebXL.woff
404 Not Found 146 B URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Regular-WebXL.woff
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Regular-WebXL.woff HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/metamask-staging-2.webflow.css
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 07 Dec 2023 15:22:59 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Bold-WebXL.woff
404 Not Found 146 B URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Bold-WebXL.woff
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/fonts/EuclidCircularB-Bold-WebXL.woff HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/metamask-staging-2.webflow.css
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 07 Dec 2023 15:22:59 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/webclip.png
200 OK 12 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/webclip.png
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 48400a28770e10dd52a8c0e539aeb282
151bcd0c431ed79f30193731de564106a5b11956
27712ebee35bae5474f124f7cbf6cb2ca60d5121e561d284c9f11a4e69efd663
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/webclip.png HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:23:00 GMT
content-type: image/png
content-length: 11764
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-2df4"
expires: Sat, 06 Jan 2024 15:23:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/favicon.png
200 OK 1.5 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/favicon.png
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash b7919ea38a8beed9b4763858c4f7412b
1aa57bcd7ca8a0c3352923c9ee06c472f23d5b63
214080adac9969108cb602cb68617e332db1288e95e18c29c10f9396c6d3744c
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/images/favicon.png HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:23:00 GMT
content-type: image/png
content-length: 1532
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
etag: "6571e351-5fc"
expires: Sat, 06 Jan 2024 15:23:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922
301 Moved Permanently 31 kB URL User Request GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922
IP
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922 HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 07 Dec 2023 15:22:57 GMT
content-type: text/html
content-length: 162
location: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
200 OK 31 kB URL User Request GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
IP
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/ HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/normalize.css
200 OK 7.8 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/normalize.css
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
File type ASCII text, with very long lines (8193), with no line terminators
Hash bb3ad69396b798677f7f296c8db74c4f
cf6b99d3a58e080d48f8fdb069c27efde0412ec1
1d659700a9d3accb4f62f59010869925d3bfba32f3a8ccfd6fc65e1cc53f0e91
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/normalize.css HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: text/css
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
vary: Accept-Encoding
etag: W/"6571e351-1e87"
expires: Fri, 08 Dec 2023 03:22:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/metamask-staging-2.webflow.css
200 OK 107 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/metamask-staging-2.webflow.css
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
Size 107 kB (106930 bytes)
Hash 89f6a14f29d16d37b72ad7b8d9824841
7d0aa327576702f0d2a81dae560fe5d1b01dc31b
f0be991998b5b13faf449e2cb52086b98013da518d6ee76dd5665be00bfb52f1
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/metamask-staging-2.webflow.css HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: text/css
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
vary: Accept-Encoding
etag: W/"6571e351-1a1b2"
expires: Fri, 08 Dec 2023 03:22:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/webflow.css
200 OK 39 kB URL GET HTTP/2 moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/webflow.css
IP
Requested by https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Certificate IssuerLet's Encrypt
Subjectmoz-extension-kyc.ddnss.eu
Fingerprint80:D8:36:D2:C5:7C:19:26:DB:2A:15:77:4F:2C:73:2A:40:F6:BD:94
ValiditySat, 25 Nov 2023 22:42:44 GMT - Fri, 23 Feb 2024 22:42:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Generic Crypto/Wallet
GET /fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/css/webflow.css HTTP/1.1
Host: moz-extension-kyc.ddnss.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moz-extension-kyc.ddnss.eu/fbeogaeaoehlefnkodbefgpgknndsqdqs/aeaoehlefnko/befgpgknn/70922/
Cookie: PHPSESSID=90tv1d8t0kpr9sabgdv0svpo9a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 07 Dec 2023 15:22:58 GMT
content-type: text/css
last-modified: Thu, 07 Dec 2023 15:22:57 GMT
vary: Accept-Encoding
etag: W/"6571e351-9885"
expires: Fri, 08 Dec 2023 03:22:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
8.222.178.6
216.58.211.10