Domain > preview.craft-world.gg

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2025-06-11	18.155.129.4 (ClassC)
2025-11-01	3.175.34.9 (ClassC)

HTTP/1.1 200 OKContent-Type: text/htmlContent-Length: 12063Connection: keep-aliveDate: Sat, 01 Nov 2025 09:17:34 GMTLast-Modified: Sat, 30 Aug 2025 10:03:01 GMTETag: a75b080cc77fe3481e5d3b4d2abec1dex-amz-server-side-encryption: AES256x-amz-version-id: OrY1MC4aVYji3bMQKb5YunZJ0jQ._KTDAccept-Ranges: bytesServer: AmazonS3X-Cache: Miss from cloudfrontVia: 1.1 c705ee033a363383cd13caf9803ae766.cloudfront.net (CloudFront)X-Amz-Cf-Pop: HIO52-P3Alt-Svc: h3:443; ma86400X-Amz-Cf-Id: vBh7u95pIAuFrYjmuyN2VDZ-SxohVpAqP0hpJG9v-AEPcvqxSXrMcw

!DOCTYPE html>html langen-us>  head>    meta charsetutf-8 />    meta http-equivContent-Type contenttext/html; charsetutf-8 />    meta      nameviewport      contentwidthdevice-width, initial-scale1.0, user-scalableno, viewport-fitcover    />    meta nameapple-itunes-app contentapp-id6469102709, app-argumenthttps://apps.apple.com/us/app/craft-world-builder/id6469102709>    title>Craft World/title>    link relstylesheet hrefhttps://cdnjs.cloudflare.com/ajax/libs/smartbanner.js/1.20.0/smartbanner.css integritysha512-pRw7cJkDAcQatz2SzRhoS/CP+jNQOATmc/bZtw8UN7MydbmzhdYutHA67OHEsgI81ST4cZKi5jnIUHy79QcH6A crossoriginanonymous referrerpolicyno-referrer />    link relshortcut icon hrefTemplateData/favicon.ico />    link relstylesheet hrefTemplateData/style.css />    link relmanifest hrefmanifest.webmanifest>    link refpreload asfetch hrefBuild/088737146926f2735279b76656a5384f.data.br />    link refpreload asscript hrefBuild/5b3ab86b28473a5b8399262ac8f7e135.framework.js.br />    !-- Start SmartBanner.js configuration -->    meta namesmartbanner:title contentCraft World Builder>    meta namesmartbanner:author contentDinosaur Crafting Adventure>    meta namesmartbanner:price contentFREE>    meta namesmartbanner:price-suffix-apple content - On the App Store>    meta namesmartbanner:price-suffix-google content - In Google Play>    meta namesmartbanner:icon-apple contenthttps://is1-ssl.mzstatic.com/image/thumb/Purple116/v4/1a/df/f7/1adff767-8bf8-5813-333d-133901bb2491/AppIcon-1x_U007emarketing-0-7-0-85-220-0.png/230x0w.webp>    meta namesmartbanner:icon-google contenthttps://play-lh.googleusercontent.com/BKL1I40Ix9ai9mQVrqaHfC_nCccCGPj7DwDZrM89PtvPkzgO1U5GffZitBZwdbjpiww240-h480-rw>    meta namesmartbanner:button contentVIEW>    meta namesmartbanner:button-url-apple contenthttps://apps.apple.com/us/app/craft-world-builder/id6469102709>    meta namesmartbanner:button-url-google contenthttps://play.google.com/store/apps/details?idcom.angrydynomiteslab.craftworld>    meta namesmartbanner:enabled-platforms contentandroid,ios>    meta namesmartbanner:close-label contentClose>    meta namesmartbanner:exclude-user-agent-regex content^.*(Version).*Safari>    !-- End SmartBanner.js configuration -->  /head>  body classdark>    div idunity-container classunity-desktop>      canvas idunity-canvas>/canvas>    /div>    div idloading-cover styledisplay: none>      div idunity-loading-bar>        div idflex>          div idimage-wraper>            img idimage srcTemplateData/ADLScience.gif>          /div>          div id unity-loading-bar>            div idunity-logo>/div>          /div>          div idunity-progress-bar-empty styledisplay: none>            div idunity-progress-bar-full>              div idunity-progress-bar-reflection>/div>            /div>          /div>        /div>        div classspinner>/div>      /div>    /div>    div idunity-fullscreen-button styledisplay: none>/div>    script srchttps://cdnjs.cloudflare.com/ajax/libs/smartbanner.js/1.20.0/smartbanner.min.js integritysha512-xfAkTPXltjrTj4GSwaKURMwKOHbUUTYHxjTjedsysR+nUWnwqf29yOlnMPCggC3nHLN9+gbiwUqH/ffazSyxxQ crossoriginanonymous referrerpolicyno-referrer>/script>    script srchttps://telegram.org/js/telegram-web-app.js>/script>    script typemodule>            const hideFullScreenButton  true;            const buildUrl  Build;            const loaderUrl  buildUrl + /bb0d9ecdb05db3e84da20bd14a4f84dc.loader.js;            const config  {              dataUrl: buildUrl + /088737146926f2735279b76656a5384f.data.br,              frameworkUrl: buildUrl + /5b3ab86b28473a5b8399262ac8f7e135.framework.js.br,              codeUrl: buildUrl + /5fe445fca864b96fe94f956b5f84d85e.wasm.br,              streamingAssetsUrl: StreamingAssets,              companyName: VOYA Games GmbH,              productName: Craft World,              productVersion: 1.1.2,            };            const container  document.querySelector(#unity-container);            const canvas  document.querySelector(#unity-canvas);            const loadingCover  document.querySelector(#loading-cover);            const progressBarEmpty  document.querySelector(#unity-progress-bar-empty);            const progressBarFull  document.querySelector(#unity-progress-bar-full);            const fullscreenButton  document.querySelector(#unity-fullscreen-button);            const spinner  document.querySelector(.spinner);            const canFullscreen  (function() {              for (const key of                   exitFullscreen,                  webkitExitFullscreen,                  webkitCancelFullScreen,                  mozCancelFullScreen,                  msExitFullscreen,                ) {                if (key in document) {                  return true;                }              }              return false;            }());            if (/iPhone|iPad|iPod|Android/i.test(navigator.userAgent)) {              container.className  unity-mobile;              config.devicePixelRatio  window.devicePixelRatio;            }            loadingCover.style.display  ;            const script  document.createElement(script);            script.src  loaderUrl;            script.onload  () > {                createUnityInstance(canvas, config, (progress) > {                  spinner.style.display  none;                  progressBarEmpty.style.display  ;                  progressBarFull.style.width  `${100 * progress}%`;                }).then((unityInstance) > {                  loadingCover.style.display  none;                  if (canFullscreen) {                    if (!hideFullScreenButton) {                      fullscreenButton.style.display  ;                    }                    fullscreenButton.onclick  () > {                      document.makeFullscreen(unity-container);                    };                  }                }).catch((message) > {                  alert(message);                });            };            document.body.appendChild(script);    /script>    script typemodule>      import { initializeApp } from https://www.gstatic.com/firebasejs/11.4.0/firebase-app.js;      import { initializeAppCheck, ReCaptchaV3Provider, getToken as getAppCheckToken } from https://www.gstatic.com/firebasejs/11.4.0/firebase-app-check.js;      import {        getAuth,        OAuthProvider,        GoogleAuthProvider,        signInWithPopup,        signInWithEmailAndPassword,        createUserWithEmailAndPassword,        signInAnonymously,        signInWithCustomToken,        linkWithPopup      } from https://www.gstatic.com/firebasejs/11.4.0/firebase-auth.js;      import {        getAnalytics,        logEvent,        setUserId      } from https://www.gstatic.com/firebasejs/11.4.0/firebase-analytics.js;      import {        getMessaging,        getToken,        onMessage,        isSupported      } from https://www.gstatic.com/firebasejs/11.4.0/firebase-messaging.js;      const config  {        apiKey: AIzaSyDgDDykbRrhbdfWUpm1BUgj4ga7d_-wy_g,        authDomain: game-preview-51c2a.firebaseapp.com,        projectId: game-preview-51c2a,        storageBucket: game-preview-51c2a.appspot.com,        messagingSenderId: 54312317442,        appId: 1:54312317442:web:585f62354db53c142bed1b,        measurementId: G-1E3Y19Q6PM      };      const appCheckSiteKey  6LdsYCErAAAAAPzGcwKuvE4ZbXxqrOGSnd6jpYLA;      const app  initializeApp(config);      const appCheck  initializeAppCheck(app, {          provider: new ReCaptchaV3Provider(appCheckSiteKey),          isTokenAutoRefreshEnabled: true        });      globalThis.getAppCheckToken  async () > {        try {          const appCheckTokenResponse  await getAppCheckToken(appCheck, /* forceRefresh */ false);          return appCheckTokenResponse.token;        } catch (error) {          console.error(Error getting App Check token:, error);          return null;        }      }      globalThis.auth  getAuth(app);      globalThis.OAuthProvider  OAuthProvider;      globalThis.GoogleAuthProvider  GoogleAuthProvider;      globalThis.signInWithPopup  signInWithPopup;      globalThis.signInWithEmailAndPassword  signInWithEmailAndPassword;      globalThis.createUserWithEmailAndPassword  createUserWithEmailAndPassword;      globalThis.signInAnonymously  signInAnonymously;      globalThis.signInWithCustomToken  signInWithCustomToken;      globalThis.linkWithPopup  linkWithPopup;      const analytics  getAnalytics(app);      globalThis.analytics  analytics;      globalThis.logEvent  (eventName, params) > logEvent(analytics, eventName, params);      globalThis.setUserId  (userId) > setUserId(analytics, userId);      globalThis.isFirebaseMessagingSupported  await isSupported();      const messaging  globalThis.isFirebaseMessagingSupported ? getMessaging(app) : null;      globalThis.messaging  messaging;      globalThis.getToken  getToken;      const url  new URL(globalThis.location.href);      const distribution  url.searchParams.get(distribution);      globalThis.customToken  null;      /**       * If the distributiontelegram query parameter is present, we will attempt to parse the initData from        * Telegram library and send it to the server to receive a custom token that can be used to sign-in with       * Firebase Auth. On error, we display an alert to the user.       *        * Those three nested ifs are ugly, however there is no top-level return and Im reluctant to wrap it into        * a top-level function like in the old days.       */      if (distribution  telegram) {        const initData  globalThis.Telegram?.WebApp?.initData;        if (initData) {          const response  await fetch(https://preview.craft-world.gg/api/1/telegram-auth, {            method: POST,            body: JSON.stringify({              data: initData,            }),            headers: {              Content-Type: application/json            }          });          if (response.ok) {            try {              const result  await response.json();              globalThis.customToken  result.customToken;            } catch (error) {              alert(`Failed to parse response from Telegram Web App: ${error}`);            }          } else {            alert(`Failed to authenticate with Telegram Web App: ${response.status} ${response.statusText}`);          }        }      }    /script>    !-- Facebook Pixel Code -->    script>      !function(f,b,e,v,n,t,s)      {if(f.fbq)return;nf.fbqfunction(){n.callMethod?              n.callMethod.apply(n,arguments):n.queue.push(arguments)};        if(!f._fbq)f._fbqn;n.pushn;n.loaded!0;n.version2.0;        n.queue;tb.createElement(e);t.async!0;        t.srcv;sb.getElementsByTagName(e)0;        s.parentNode.insertBefore(t,s)}(window, document,script,              https://connect.facebook.net/en_US/fbevents.js);      fbq(init, 848568769689263);      fbq(track, PageView);    /script>    noscript>      img height1 width1 styledisplay:none           srchttps://www.facebook.com/tr?id848568769689263&evPageView&noscript1/>    /noscript>    !-- End Facebook Pixel Code -->  /body>/html>

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > preview.craft-world.gg

Is this malicious?

DNS Resolutions

Port 80

Port 443