Suspected phishing site | Cloudflare

phishing scam

technology software

English

Domain 'gtcrewardsa.top' uses the .top top-level domain. The registrable portion 'gtcrewardsa' spans 11 characters with three vowels and 8 consonants. Tokenizing the label suggests 3 words: gtc, rewards, a. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

atok

original_path

cf-turnstile-response

html/41/8a/418a2cdf-41c6-4fe8-b00d-1a715416dc3e.html.gz

default-src 'none'; script-src 'nonce-8xxRlBD0GeQDCXuk' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms

50e878a18b2b5be7071dc7c10297381bcfcb55f17c27760ee857af9e31133324

5743c640722924aa6974b1f602ad1abb67f4c5240cc4829ed64147cf0e6ecf83

18a52fd2cc16c86bcba28796b0e231144f219cc87e049c41d9d378b880a42fba

275407540ae2d5516300e4027ce994e1c97f958d464e137d0fff116d7acf0f24

390eefa5af21228aaab4bb7eb68043b2468a645b3c861aaba17b226cc8c05d95

robots

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/


  if (!navigator.cookieEnabled) {
    window.addEventListener('DOMContentLoaded', function () {
      var cookieEl = document.getElementById('cookie-alert');
      cookieEl.style.display = 'block';
    })
  }



    function onTurnstileSuccess(token) {
      document.getElementById("bypass-button").disabled = false;
    }
  


    window._cf_translation = {};
    
    
  

☠️ Malicious - https://gtcrewardsa.top/#/info

Requests	IP Address	Location	AS Autonomous System
6	104.18.94.41	United States	AS13335CLOUDFLARENET
4	188.114.97.3	United States	AS13335CLOUDFLARENET
1	188.114.96.3	United States	AS13335CLOUDFLARENET
1	104.18.95.41	United States	AS13335CLOUDFLARENET
1	2606:4700::6812:5f29	United States	AS13335CLOUDFLARENET
1	2a06:98c1:3120::3	United States	AS13335CLOUDFLARENET
1	2a06:98c1:3121::3	United States	AS13335CLOUDFLARENET
1	2606:4700::6812:5e29	United States	AS13335CLOUDFLARENET
11	8	-	-

Security Scan Report: gtcrewardsa.top

Summary

AI Security Verdict

High Risk

Risk Factors

Details

Bot Protection Detected

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History