Help
RSS
API
Feed
Maltego
Contact
Domain > balconygardenweb.stfi.re
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2020-09-17
99.84.252.24
(
ClassC
)
2020-09-17
99.84.252.115
(
ClassC
)
2020-09-17
99.84.252.192
(
ClassC
)
2024-11-17
54.230.125.101
(
ClassC
)
Port 80
HTTP/1.1 200 OKContent-Type: text/htmlContent-Length: 2420Connection: keep-aliveLast-Modified: Wed, 31 May 2017 12:35:26 GMTAccept-Ranges: bytesServer: AmazonS3Date: Sun, 17 Nov 2024 22:50:38 GMTETag: 4ad83394943ae0ac05db6568ca71bb92X-Cache: RefreshHit from cloudfrontVia: 1.1 3c30155ad910c4216892222abd582a98.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO50-C2X-Amz-Cf-Id: 54n6kC6eMbDWxFntij05UWaoVx5KDRmkq0uAEs-95ZCnSb6OOuQC-w !DOCTYPE html>html>head> title>Start A Fire/title> meta propertyog:title contentStart A Fire /> meta propertyog:image content//startafireredirect.s3.amazonaws.com/images/ogimage.png /> meta propertyog:url contenthttp://startafire.com /> meta nametwitter:title contentStart A Fire /> meta nametwitter:image content//startafireredirect.s3.amazonaws.com/images/ogimage.png /> meta namereferrer contentno-referrer /> link relshortcut icon href//startafireredirect.s3.amazonaws.com/images/favicon2.ico /> link idpage_favicon href//startafireredirect.s3.amazonaws.com/images/favicon2.ico relicon typeimage/x-icon />/head>body> script typetext/javascript> (function(){ try{ endpoint https://rdyd4a1hw2.execute-api.us-east-1.amazonaws.com/prod/?fireKey; stfhash1 getParameterByName(sf); stfhash2 getHashFromShortner(); if (stfhash1 ! ){ window.location.href endpoint + stfhash1; } else if (stfhash2 ! ){ window.location.href endpoint + stfhash2; } else { var domainArr location.hostname.split(.); var myDomain domainArrdomainArr.length-2 + . + domainArrdomainArr.length-1; window.location.href http:// + myDomain + /404.html; } } catch(e){ var domainArr location.hostname.split(.); var myDomain domainArrdomainArr.length-2 + . + domainArrdomainArr.length-1; window.location.href http:// + myDomain + /404.html; } })(); function getHashFromShortner(){ try{ if (location.hostname.split(.).length 2 && location.search && (location.pathname.split(/).length 2 || location.pathname.split(/).length 3) ){ var param location.pathname.split(/)1; if (isHash(param)) { return param; } } } catch(e){} return ; } function isHash(stfhash){ var myRe new RegExp(^a-z0-9{5,}$); return (myRe.exec(stfhash) ! null); } function getParameterByName(param) { name param.replace(/\/, \\).replace(/\/, \\); var regex new RegExp(\\?& + name + (^*)), results regex.exec(location.search); return results null ? : decodeURIComponent(results1.replace(/\+/g, )); } /script>/body>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]