I’m examining the scripts now.
However, there is a blob of JavaScript that doesn’t load into urlscan. Highly suspect.
Is this some watering hole?