agamedemo.vulcan-stars-casino.co Open in urlscan Pro
2a07:180:5e4:25d9:6b26:b764:cddb:25 Public Scan

Go To Rescan
Add Verdict Report

URL:
https://agamedemo.vulcan-stars-casino.co/
Submission Tags: phishingrod
Submission: On May 16 via api (May 16th 2024, 7:36:41 am UTC) from DE — Scanned from DE

Summary HTTP 2 Redirects Behaviour Indicators

Summary

This website contacted 1 IPs in 1 countries across 1 domains to perform 2 HTTP transactions. The main IP is 2a07:180:5e4:25d9:6b26:b764:cddb:25, located in Belize and belongs to CLOUDFLARESPECTRUM Cloudflare, Inc., US. The main domain is agamedemo.vulcan-stars-casino.co.
TLS certificate: Issued by GTS CA 1P5 on May 15th 2024. Valid for: 3 months.

This is the only time agamedemo.vulcan-stars-casino.co was scanned on urlscan.io!

urlscan.io Verdict: No classification

Domain & IP information

	IP Address		AS Autonomous System
2	2a07:180:5e4:... 2a07:180:5e4:25d9:6b26:b764:cddb:25		209242 (CLOUDFLAR...) (CLOUDFLARESPECTRUM Cloudflare)
2	1

2 2a07:180:5e4:25d9:6b26:b764:cddb:25 (Belize)

ASN209242 (CLOUDFLARESPECTRUM Cloudflare, Inc., US)

agamedemo.vulcan-stars-casino.co	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

	Apex Domain Subdomains	Transfer
2	vulcan-stars-casino.co agamedemo.vulcan-stars-casino.co	780 B
2	1

	Domain	Requested by
2	agamedemo.vulcan-stars-casino.co
2	1

This site contains no links.

Subject Issuer	Validity	Valid
agamedemo.vulcan-stars-casino.co GTS CA 1P5	`2024-05-15` - `2024-08-13`	3 months	crt.sh

This page contains 1 frames:

Primary Page: https://agamedemo.vulcan-stars-casino.co/
Frame ID: F229DAB426D4E4B3FE55EE7BE80F4F3D
Requests: 2 HTTP requests in this frame

Screenshot
Live screenshot

Full Image

Page Statistics

2
Requests

100 %
HTTPS

100 %
IPv6

1
Domains

1
Subdomains

1
IPs

1
Countries

1 kB
Transfer

0 kB
Size

1
Cookies

0 Outgoing links

These are links going to different origins than the main page.

Redirected requests

There were HTTP redirect chains for the following requests:

2 HTTP transactions
0 data transactions

Method Protocol	Status	Resource Path	Size x-fer	Time Latency	Type MIME-Type	IP Location
GET H2	404	Primary Request / Show response agamedemo.vulcan-stars-casino.co/	16 B 602 B	240ms 175ms	Document text/html	2a07:180:5e4:25d9:6b26:b764:cddb:25 CLOUDFLARESPECTRU...
General Check archive.org Show headers Download Go to Full URL https://agamedemo.vulcan-stars-casino.co/ Protocol H2 Security TLS 1.3, , AES_128_GCM Server 2a07:180:5e4:25d9:6b26:b764:cddb:25 , Belize, ASN209242 (CLOUDFLARESPECTRUM Cloudflare, Inc., US), Reverse DNS Software cloudflare / Resource Hash `e5cca0377f5de960b2b0f0333fdcee30e4af47064175370322047c9521fa754a` Request headers Accept-Language de-DE,de;q=0.9;q=0.9 Upgrade-Insecure-Requests 1 User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 sec-ch-ua "Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124" sec-ch-ua-mobile ?0 sec-ch-ua-platform "Win32" Response headers access-control-allow-credentials true access-control-allow-headers DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,cid,token,authorization,apikey,subpartnerid,metadata access-control-allow-methods GET, POST, PUT, OPTIONS access-control-allow-origin * cf-cache-status DYNAMIC cf-ray 8849b297a8eb44f8-TXL content-encoding gzip content-type text/html; charset=UTF-8 date Thu, 16 May 2024 07:36:35 GMT server cloudflare
GET H2	404	favicon.ico agamedemo.vulcan-stars-casino.co/	16 B 178 B	139ms 139ms	Other text/html	2a07:180:5e4:25d9:6b26:b764:cddb:25 CLOUDFLARESPECTRU...
General Check archive.org Show headers Download Go to Full URL https://agamedemo.vulcan-stars-casino.co/favicon.ico Protocol H2 Security TLS 1.3, , AES_128_GCM Server 2a07:180:5e4:25d9:6b26:b764:cddb:25 , Belize, ASN209242 (CLOUDFLARESPECTRUM Cloudflare, Inc., US), Reverse DNS Software cloudflare / Resource Hash `e5cca0377f5de960b2b0f0333fdcee30e4af47064175370322047c9521fa754a` Request headers sec-ch-ua "Google Chrome";v="124", "Not:A-Brand";v="8", "Chromium";v="124" Referer https://agamedemo.vulcan-stars-casino.co/ Accept-Language de-DE,de;q=0.9;q=0.9 sec-ch-ua-mobile ?0 User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 sec-ch-ua-platform "Win32" Response headers date Thu, 16 May 2024 07:36:36 GMT content-encoding gzip cf-cache-status MISS server cloudflare vary Accept-Encoding access-control-allow-methods GET, POST, PUT, OPTIONS content-type text/html; charset=UTF-8 access-control-allow-origin * cache-control public, max-age=14400 access-control-allow-credentials true cf-ray 8849b298db7144f8-TXL access-control-allow-headers DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,cid,token,authorization,apikey,subpartnerid,metadata expires Thu, 16 May 2024 11:36:36 GMT

Verdicts & Comments Add Verdict or Comment

0 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

1 Cookies

Cookies are little pieces of information stored in the browser of a user. Whenever a user visits the site again, he will also send his cookie values, thus allowing the website to re-identify him even if he changed locations. This is how permanent logins work.

			Domain/Path	Expires	Name / Value
			.agamedemo.vulcan-stars-casino.co/	1970-01-20 20:37:26	Name: __cf_bm Value: 8SSJnDNSnuWuq55Xds6RmuES_8lzh4kJ3gc33OU1GfA-1715844995-1.0.1.1-kTi1Dwgvrg.NONhlkyZgwy00PXJ6bTqDZbdIw1gd.EmiSwBVjgg.2PziO.iPqe6ZR787Cnxt4ilb.GtmcFbc8g

2 Console Messages

A page may trigger messages to the console to be logged. These are often error messages about being unable to load a resource or execute a piece of JavaScript. Sometimes they also provide insight into the technology behind a website.

Source	Level	URL Text
network	error	URL: https://agamedemo.vulcan-stars-casino.co/ Message: Failed to load resource: the server responded with a status of 404 ()
network	error	URL: https://agamedemo.vulcan-stars-casino.co/favicon.ico Message: Failed to load resource: the server responded with a status of 404 ()

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

agamedemo.vulcan-stars-casino.co
2a07:180:5e4:25d9:6b26:b764:cddb:25
e5cca0377f5de960b2b0f0333fdcee30e4af47064175370322047c9521fa754a

agamedemo.vulcan-stars-casino.co Open in urlscan Pro 2a07:180:5e4:25d9:6b26:b764:cddb:25 Public Scan

Summary

urlscan.io Verdict: No classification

Domain & IP information

Screenshot Live screenshot Full Image

Page Statistics

2 Requests

100 %HTTPS

100 %IPv6

1 Domains

1 Subdomains

1 IPs

1 Countries

1 kBTransfer

0 kBSize

1 Cookies

0 Outgoing links

Redirected requests

2 HTTP transactions Everything HTML Script AJAX CSS Image Expand all 0 data transactions

Request headers

Response headers

Request headers

Response headers

Verdicts & Comments Add Verdict or Comment

0 JavaScript Global Variables

1 Cookies

2 Console Messages

Indicators

agamedemo.vulcan-stars-casino.co Open in urlscan Pro
2a07:180:5e4:25d9:6b26:b764:cddb:25 Public Scan

Screenshot
Live screenshot

Full Image

2
Requests

100 %
HTTPS

100 %
IPv6

1
Domains

1
Subdomains

1
IPs

1
Countries

1 kB
Transfer

0 kB
Size

1
Cookies

2 HTTP transactions
0 data transactions