Source: Yara match |
File source: 3.7.pages.csv, type: HTML |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
Matcher: Found strong image similarity, brand: MICROSOFT |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
Matcher: Template: microsoft matched |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
HTTP Parser: Number of links: 0 |
Source: https://ridgelineexcavatoin.com/ |
HTTP Parser: Base64 decoded: https://ridgelineexcavatoin.com/ |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
HTTP Parser: Title: bf2d17ea43d9a21b47ee7113bd06321c66218b24a22c3 does not match URL |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
HTTP Parser: Invalid link: get a new Microsoft account |
Source: http://www.pipebending.com/#/ |
HTTP Parser: No favicon |
Source: http://www.pipebending.com/#/ |
HTTP Parser: No favicon |
Source: https://ridgelineexcavatoin.com/ |
HTTP Parser: No favicon |
Source: https://ridgelineexcavatoin.com/ |
HTTP Parser: No favicon |
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/g4s4m/0x4AAAAAAADnPIDROrmt1Wwj/light/normal |
HTTP Parser: No favicon |
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/g4s4m/0x4AAAAAAADnPIDROrmt1Wwj/light/normal |
HTTP Parser: No favicon |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
HTTP Parser: No favicon |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
HTTP Parser: No <meta name="author".. found |
Source: https://ridgelineexcavatoin.com/d740c10c7b9cf800d441f265844201e166218b24a22ffLOGd740c10c7b9cf800d441f265844201e166218b24a2301 |
HTTP Parser: No <meta name="copyright".. found |
Source: unknown |
HTTPS traffic detected: 23.216.69.213:443 -> 192.168.2.16:49707 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 23.216.69.213:443 -> 192.168.2.16:49708 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 40.126.7.35:443 -> 192.168.2.16:49710 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 13.85.23.86:443 -> 192.168.2.16:49712 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 40.127.169.103:443 -> 192.168.2.16:49800 version: TLS 1.2 |
Source: Joe Sandbox View |
IP Address: 104.17.3.184 104.17.3.184 |
Source: Joe Sandbox View |
IP Address: 184.25.164.138 184.25.164.138 |
Source: Joe Sandbox View |
IP Address: 239.255.255.250 239.255.255.250 |
Source: Joe Sandbox View |
IP Address: 104.17.2.184 104.17.2.184 |
Source: Joe Sandbox View |
JA3 fingerprint: 28a2c9bd18a11de089ef85a160da29e4 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 204.79.197.203 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 204.79.197.203 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 204.79.197.203 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 204.79.197.203 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.216.69.213 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 204.79.197.203 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 40.126.7.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 20.189.173.10 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 192.229.211.108 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 13.85.23.86 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 13.85.23.86 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 13.85.23.86 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 13.85.23.86 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 13.85.23.86 |
Source: global traffic |
HTTP traffic detected: HTTP/1.1 200 OKDate: Thu, 18 Apr 2024 21:05:21 GMTServer: ApacheUpgrade: h2,h2cConnection: Upgrade, Keep-AliveLast-Modified: Tue, 05 Jan 2021 13:37:47 GMTETag: "9e0c96-b56-5b8274fe200c0-gzip"Accept-Ranges: bytesVary: Accept-EncodingContent-Encoding: gzipContent-Length: 1280Keep-Alive: timeout=5Content-Type: text/htmlData Raw: 1f 8b 08 00 00 00 00 00 00 03 ad 56 5b 6f db 36 14 7e 4e 7f 05 a3 87 ca 46 74 49 d3 66 49 63 c9 83 73 41 db 61 0d 86 22 5b 31 04 c1 40 4b 47 12 3d 8a d4 48 ca 9e 91 e4 bf ef 50 17 47 71 93 20 0f 7b 91 c8 c3 73 f9 ce 95 8c 76 53 99 98 75 05 a4 30 25 9f 46 bb be 7f cd 32 c2 0d f9 72 41 8e 6e a6 6f 22 4b 27 09 a7 5a c7 8e 90 fe 42 e3 a1 cf e0 63 fb 3b 6e 7f 47 ce 94 44 bb d7 20 52 96 dd f8 fe 46 cf 2b 95 3c 2f 7d fc 92 f4 33 62 b9 e9 24 2d e1 29 71 87 88 dc a7 55 15 3b 46 b1 8a c3 f9 ac aa 9c 86 7b a8 0e 05 81 a6 d3 37 3b f6 80 7c e2 72 4e 39 d1 cc 00 31 34 27 a3 1c bf c1 42 8f 09 9e 49 99 73 20 33 41 f9 da b0 44 13 2b bd 13 e9 04 b5 1b 42 f5 5a 24 44 ab 24 76 0a 63 2a 7d 12 86 ab d5 2a c8 1b 21 54 52 52 41 73 50 41 22 cb d0 2a 0d 17 fa 67 96 c6 bf cf fc 77 07 07 fb ef 7f 3a d8 3f f6 df 21 bc b0 d5 f7 a0 19 57 3b 2b 26 52 b9 0a 52 6a e8 af 74 0d 8a c4 e4 07 d2 dd 1d b9 be 99 20 73 56 8b c4 30 29 88 35 33 1a df 6e 58 82 aa d6 c5 88 aa bc 2e 41 18 3d 9e dc 23 77 c3 e4 2e b4 eb 11 01 2b 72 4e 0d 8c c6 63 ab 67 73 98 48 91 b1 1c 19 dc c7 68 5d cb 36 00 dc c7 b0 8d d3 15 86 ef 6b eb f4 a3 48 59 7f 46 3d c6 d1 ca 4b 3d ed 71 8f 8d 6f 57 d7 fc 26 b6 9f bb 3b 74 c4 2e 5a c0 b7 6e 6e ca 40 1b aa 8c 7b 82 c2 0f 30 83 1c cc 15 2b 71 e5 c1 12 5d 3a 69 38 d1 97 fb f1 64 49 15 c9 e2 d4 b2 5c 70 68 1c 3e 5d 23 a6 4b 8a fc 7a 7c bd 7f e3 a1 ae 05 72 24 0a 50 5b c7 84 47 5e ca 63 be 1b bb 9b b8 b9 3f bb 6f 79 ec ee f1 13 d7 9d 2c 82 26 d3 b1 51 35 e0 c6 26 1c f5 b8 af c8 b9 45 66 53 ee ee b1 bd 94 4f b2 a0 a2 0a 2d 5e ca 14 02 26 34 28 73 0a 99 54 30 5a 78 59 93 80 fb f1 a8 cd b2 87 dd db e4 cc 73 db 18 ba de 00 9d e7 7e ba fa ea 7f 3f fc 76 f8 f9 97 b3 ed 9c 34 19 b9 10 e9 73 59 41 8e 12 a1 92 a4 a0 4a 83 89 9d da 64 3e 76 2a d2 0d 33 28 80 3d 34 47 10 b1 e3 9e 82 a8 94 24 57 90 14 42 72 99 33 d0 e4 4c aa 2a 20 6f cb 94 ea 62 42 5c b2 47 1a 29 67 fa 2c 73 14 36 1c d3 de b0 c0 7c c4 4e 0a 2d 62 2c 09 87 60 bd 19 74 36 76 4e 6d 97 8a 9c 98 02 48 25 b5 66 73 c6 99 41 55 01 f9 8e a3 8c 2e a1 39 52 2c 2f 0c 81 7f 6a 56 d9 20 11 8a ee 3e d0 2b 90 d8 fc c4 48 92 02 67 4b f4 1b 6b 45 ad 11 68 09 81 b3 85 63 c9 6 |