Help
RSS
API
Feed
Maltego
Contact
Domain > fafa777.vip
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2025-07-21
54.251.131.223
(
ClassC
)
2026-03-01
13.215.192.126
(
ClassC
)
Port 443
HTTP/1.1 200 OKDate: Sun, 01 Mar 2026 08:14:54 GMTContent-Type: text/htmlContent-Length: 11427Connection: keep-aliveServer: nginx/1.24.0Last-Modified: Sat, 28 Jun 2025 15:48:31 GMTETag: 68600ecf-2ca3Accept-Ranges: bytes !DOCTYPE html>html>head> base href. /> meta charsetUTF-8 /> meta nameviewport contentwidthdevice-width, initial-scale1.0, maximum-scale1.0, user-scalable0 /> meta namemobile-web-app-capable contentyes /> meta nameapple-mobile-web-app-capable contentyes /> meta nameapple-mobile-web-app-status-bar-style contentblack-translucent /> title>fafa 77/title> link relicon href../res/fafa_77_icon.webp> script> !(function (f, b, e, v, n, t, s) { if (f.fbq) return; n f.fbq function () { n.callMethod ? n.callMethod.apply(n, arguments) : n.queue.push(arguments); }; if (!f._fbq) f._fbq n; n.push n; n.loaded !0; n.version 2.0; n.queue ; t b.createElement(e); t.async !0; t.src v; s b.getElementsByTagName(e)0; s.parentNode.insertBefore(t, s); })(window, document, script, https://connect.facebook.net/en_US/fbevents.js); fbq(init, 1900795283790008); fbq(track, PageView); /script> noscript> img height1 width1 styledisplay: none srchttps://www.facebook.com/tr?id1900795283790008&evPageView&noscript1 /> /noscript>/head>body> div classall> img src../res/5.webp /> div iddown_load classdown_load onclickdownload(); styleposition: absolute; left: 0%; top: 18.09241706161138%; width: 96%; height: 10%>/div> div iddown_load classdown_load onclickdownload(); styleposition: absolute; left: 0.33333333333333337%; top: 42.31042654028436%; width: 96.33333333333334%; height: 10%> /div> div iddown_load classdown_load onclickdownload(); styleposition: absolute; left: 0%; top: 67.60663507109004%; width: 97%; height: 10.082938388625593%> /div> !-- /a> --> /div> block namejs> script typetext/javascript> function download() { // 获取链接参数 const urlParams new URLSearchParams(window.location.search); var sourceUrl window.location.href var cookie document.cookie; var searchParams new URLSearchParams(window.location.search); var fbclidValue searchParams.get(fbclid); var ttclidValue searchParams.get(ttclid); var gclidValue searchParams.get(gclid); var callbackValue searchParams.get(callback); var downloadUrl new URL(https://apk.lgweb.store/Android/formal/kh/downLoadAPK/fafa77/25/fafa77.apk, window.location.href); if (cookie) { downloadUrl.searchParams.append(c, encodeURI(cookie)) } if (fbclidValue){ downloadUrl.searchParams.append(fbclid, fbclidValue) } if (ttclidValue){ downloadUrl.searchParams.append(ttclid, ttclidValue) } if (gclidValue){ downloadUrl.searchParams.append(gclid, gclidValue) } if (callbackValue){ downloadUrl.searchParams.append(callback, callbackValue) } if (sourceUrl){ downloadUrl.searchParams.append(sourceUrl, sourceUrl) } location.href downloadUrl.href; } function copyCurrentUrl() { // Get the current page URL const currentUrl window.location.href; // Create a temporary textarea element to hold the URL const textarea document.createElement(textarea); var value currentUrl; // 判断参数是否有? if (value.indexOf(?) -1) { value + ?; value + (fbp + getFacebookPID()); } else { value + (&fbp + getFacebookPID()); } value + (&fbc + getFacebookCID()); textarea.value ###openLarkBegin### + value + ###openLarkEnd###; document.body.appendChild(textarea); // Select the textarea content textarea.select(); textarea.setSelectionRange(0, 99999); // For mobile devices // Copy the selected text to the clipboard if (!document.execCommand(copy, false, null)) { // 浏览器不支持 alert(the brower not support); } // Remove the temporary textarea document.body.removeChild(textarea); // Optionally, notify the user // alert(Current URL copied to clipboard: + currentUrl); } function report() { // 设备像素比 const dpr window.devicePixelRatio; // 获取屏幕尺寸 const screenWidth Math.floor(window.screen.width * dpr); const screenHeight Math.floor(window.screen.height * dpr); // 获取网页地址 const currentUrl window.location.href; // 获取浏览器信息 const ua navigator.userAgent; const fbp getFacebookPID(); const fbc getFacebookCID(); const agentId 25; // post 请求 fetch(https://event-api.game123.games/api/report/sub, { method: POST, headers: { Content-Type: application/json }, body: JSON.stringify({ screenWidth, screenHeight, currentUrl, ua, fbp, fbc, agentId }) }) .then(response > response.json()) .then(data > console.log(请求成功:, data)) .catch(error > console.error(请求失败:, error)); } function getFacebookPID() { const fbCookieMatch document.cookie.match(/(^|;) ?_fbp(^;*)(;|$)/); return fbCookieMatch ? fbCookieMatch2 : null; } function getFacebookCID() { const fbCookieMatch document.cookie.match(/(^|;) ?_fbc(^;*)(;|$)/); return fbCookieMatch ? fbCookieMatch2 : null; } /script>/body>style> html, body, div, span, applet, object, iframe, h1, h2, h3, h4, h5, h6, p, blockquote, pre, a, abbr, acronym, address, big, cite, code, del, dfn, em, img, ins, kbd, q, s, samp, small, strike, strong, sub, sup, tt, var, b, u, i, center, dl, dt, dd, ol, ul, li, fieldset, form, label, legend, table, caption, tbody, tfoot, thead, tr, th, td, article, aside, canvas, details, embed, figure, figcaption, footer, header, hgroup, menu, nav, output, ruby, section, summary, time, mark, audio, video { margin: 0; padding: 0; border: 0; font-size: 100%; font: inherit; vertical-align: baseline; } /* HTML5 display-role reset for older browsers */ article, aside, details, figcaption, figure, footer, header, hgroup, menu, nav, section { display: block; } body { line-height: 1; } ol, ul { list-style: none; } blockquote, q { quotes: none; } blockquote:before, blockquote:after, q:before, q:after { content: ; content: none; } table { border-collapse: collapse; border-spacing: 0; } * { font-family: arial, Microsoft JhengHei !important; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box; } body, html { padding: 0; margin: 0; width: 100%; background: #663399; text-align: center; } .all { background: #000; width: 100%; margin: 0 auto; position: relative; min-width: 320px; max-width: 1280px; -webkit-background-size: 100% auto; -o-background-size: 100% auto; background-size: 100% auto; } .all img { width: 100%; } .top { position: fixed; width: 100%; z-index: 999; /*background: rgba(0,0,0,0.2);*/ margin: 0 auto; min-width: 320px; max-width: 750px; } .hasBtn { background: url(../img/img_02.jpg) top no-repeat; width: 100%; position: relative; padding-bottom: 56.3%; -webkit-background-size: 100%; -o-background-size: 100%; background-size: 100%; } .hasBtn a { position: absolute; bottom: -3%; right: 5.8%; width: 50%; } .contactBtn { position: absolute; width: 32.7%; right: 1.45%; top: 10%; } .mb-3 { margin-bottom: -5px; } .btns { z-index: 10; position: relative; margin-top: -8%; } .btns a { width: calc(50% - 10px); display: inline-block; } .btns a.ios_tutor { width: 100%; display: block; margin: 0; margin-top: 0px; margin-bottom: -3px; } .btns a.ios_tutor img { margin: 0; } .downloadNum { font-size: 24px; color: #fff; position: absolute; bottom: 60px; left: 50%; -webkit-transform: translateX(-50%); -moz-transform: translateX(-50%); -ms-transform: translateX(-50%); -o-transform: translateX(-50%); transform: translateX(-50%); } .pore { position: relative; z-index: 10; } h2 { font-size: 24px; font-weight: bold; text-align: left; line-height: 1.6; } ol { list-style: decimal; padding: 0 20px; padding-right: 10px; } li { text-align: left; line-height: 1.4; font-weight: bold; } #weixin-tip { position: absolute; right: 0; top: 0; width: 100%; height: 100%; background: rgba(0, 0, 0, 0.6); z-index: 999; display: none; } @media (max-width: 750px) { .downloadNum { font-size: 4vw; bottom: 6%; } }/style>/html>
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]