Suspected phishing site | Cloudflare

phishing scam

technology software

English

Within the developer-focused generic top-level domain (.dev), 'pub-04700b40dfe04fcfaf31ff772a6461b5.r2.dev' is registered with subdomain 'pub-04700b40dfe04fcfaf31ff772a6461b5'. The second-level label 'r2' is 2 characters long with zero vowels and 1 consonant, plus 1 digit. Segmentation suggests two words: r, 2. Average segment length settles at one character. The linguistic tilt is Chinese (Zhuyin) for 'r'. You will also see it in Sinhala and Chinese (Simplified) contexts.

html/eb/e5/ebe57ece-a223-40e9-b928-6c5bb55082e7.html.gz

robots

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

Abuse

Admin

Cloudflare-NOC

Cloudflare, Inc.

CLOUDFLARENET


  if (!navigator.cookieEnabled) {
    window.addEventListener('DOMContentLoaded', function () {
      var cookieEl = document.getElementById('cookie-alert');
      cookieEl.style.display = 'block';
 

(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classList"in b&&(b.classList.remove("hidden"),c.addEventListener("click",function(){c

X-UA-Compatible

Cloudflare Bot Management

Cloudflare

☠️ Malicious - https://pub-04700b40dfe04fcfaf31ff772a6461b5.r2.dev/mycourier/index.html

Requests	IP Address	Location	AS Autonomous System
4	104.18.54.45	United States	AS13335CLOUDFLARENET
1	104.18.50.34	United States	AS13335CLOUDFLARENET
1	2606:4700:3117::6812:3222	United States	AS13335CLOUDFLARENET
1	2606:4700:3113::6812:362d	United States	AS13335CLOUDFLARENET
4	4	-	-

Security Scan Report: pub-04700b40dfe04fcfaf31ff772a6461b5.r2.dev

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Bot Protection Detected

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History