phishing scam

news media journalism

English

The domain 'zonfhev65anki.mocha.app' uses the application-focused generic top-level domain (.app), featuring subdomain 'zonfhev65anki'. Count 5 characters in 'mocha' containing two vowels alongside 3 consonants. It segments into 1 word: mocha. No strong language cues emerged from the frequency lists.

html/5b/d7/5bd75587-1e41-42fd-bc3a-6fc12c5b89e0.html.gz

require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers

a86d4afb147fadd2fcfa6a2e38ac973d6f159782d7136cdd01b524ada90b9158

4a5edcda8473a8c8a9ca2ef728b79945e66aef8633a8bc7d453717b72eb7c8ad

05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad

a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

4bc5d10249cbaf0828a1f84c476d6a32fd37d998bb7bc229a2144ce9dfab4a69

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

GoDaddy Abuse

GoDaddy.com, LLC

mocha.app

Script

PasswordField

JQuery

Cloudflare Bot Management

Cloudflare

✅ Low Risk - https://zonfhev65anki.mocha.app/#x@x.com

Requests	IP Address	Location	AS Autonomous System
13	35.157.26.135	Frankfurt am Main, Hesse, Germany	AS16509AMAZON-02
0	98.87.66.187	Ashburn, Virginia, United States	AS14618AMAZON-AES
0	104.18.19.24	United States	AS13335CLOUDFLARENET
0	65.9.175.126	United States	AS16509AMAZON-02
0	104.19.162.13	United States	AS13335CLOUDFLARENET
0	151.101.2.137	San Francisco, California, United States	AS54113FASTLY
0	142.250.186.106	United States	AS15169GOOGLE
0	151.101.194.137	San Francisco, California, United States	AS54113FASTLY
0	104.17.24.14	United States	AS13335CLOUDFLARENET
0	34.117.59.81	Kansas City, Missouri, United States	AS396982GOOGLE-CLOUD-PLATFORM
13	33	-	-

Security Scan Report: zonfhev65anki.mocha.app

Summary

AI Security Verdict

High Risk

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies4

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History