Domain > api.dev.cr.fancrew.com

More information on this domain is in AlienVault OTX

DNS Resolutions

Date	IP Address
2024-05-13	35.75.205.91 (ClassC)
2024-11-21	54.150.64.160 (ClassC)
2025-04-25	13.230.138.70 (ClassC)
2025-05-20	52.192.248.119 (ClassC)

HTTP/1.1 200 OKDate: Mon, 13 May 2024 22:19:00 GMTContent-Type: text/html; charsetUTF-8Content-Length: 3187Connection: keep-aliveX-Powered-By: ExpressVary: OriginAccess-Control-Allow-Credentials: true

!DOCTYPE html>html langen>  head>    meta charsetUTF-8 />    meta nameviewport contentwidthdevice-width, initial-scale1.0 />    title>Test Login/title>    style>      html {        font-size: 20px;        font-family: -apple-system, BlinkMacSystemFont, Segoe UI, Roboto,          Oxygen, Ubuntu, Cantarell, Open Sans, Helvetica Neue, sans-serif;        font-weight: 300;      }      pre {        max-width: 80vw;      }    /style>  /head>  body>    header>      h1>Test Login/h1>    /header>    label foremail>Email address:/label>    input typetext idemail nameemail valuemai.quang.linh@sun-asterisk.com/>    br/>    label forpassword>Password:/label>    input typepassword idpassword namepassword valueAa@123456/>    main>      p>button idbtnAdd>login/button>/p>      p idoutput>/p>    /main>    a hrefhttp://api.cr.fancrew.com:3000/admin/auth/google>admin google login/a>    a hrefhttp://api.cr.fancrew.com:3000/client/auth/google>client google login/a>    script>      //const baseURL  http://127.0.0.1:5555; // same-site      const baseURL  http://api.cr.fancrew.local:3000; // cross-site CORS      document.addEventListener(DOMContentLoaded, () > {        document.getElementById(btnAdd).addEventListener(click, fAdd);        let pre  document.getElementById(output);        //output the current cookies for this domain      });      function fAdd(ev) {        //send a request to an API that will create a cookie        let url  `${baseURL}/auth/login`;        let req  new Request(url, {          method: POST,          body: `{username: ${document.getElementById(email)?.value},password: ${document.getElementById(password)?.value}}`,          headers: new Headers({content-type: application/json}),          mode: cors, //just a safe-guard indicating our intentions of what to allow          credentials: include, //when will the cookies and authorization header be sent        });        fetch(req)          .then((resp) > {            resp.headers.forEach((val, key) > {              console.log(key, val);            });            let

View on OTX | View on ThreatMiner

Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]

Domain > api.dev.cr.fancrew.com

Is this malicious?

DNS Resolutions

Port 443