| sca.jne.co.id/img/logo/favicon.ico |  206.84.104.20 | 200 OK | 2.4 kB |
URL GET HTTP/2sca.jne.co.id/img/logo/favicon.ico IP206.84.104.20:443 ASN#64315 PT MITRA VISIONER PRATAMA
CertificateIssuerLet's Encrypt Subjectjne-email-agen.jne.co.id Fingerprint52:8C:58:72:E2:00:C8:67:6F:BE:B0:BA:B0:42:E0:D6:C6:93:66:51 ValidityThu, 18 Apr 2024 15:21:57 GMT - Wed, 17 Jul 2024 15:21:56 GMT
File typePNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced Hash39d1867f0fd97950bdc5942599073e43 f6128a0ebeba32c711c18d752592a4adcbd79835 0d952e58ae40bb9b7da49f2142396549b082669b89ff96d1fd53e422d63faae3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/logo/favicon.ico HTTP/1.1
Host: sca.jne.co.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sca.jne.co.id/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=fc9de3ce-5ebc-4aff-acdf-87d19e233d16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 21:47:06 GMT
content-type: image/x-icon
content-length: 2376
x-frame-options: SAMEORIGIN
expires: Sat, 25 May 2024 22:47:06 GMT
cache-control: public, max-age=2595600
last-modified: Thu, 07 Dec 2023 05:56:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| sca.jne.co.id/img/new-back-ground-image.png | 206.84.104.20 | 200 OK | 142 kB |
URL GET HTTP/2sca.jne.co.id/img/new-back-ground-image.png IP206.84.104.20:443 ASN#64315 PT MITRA VISIONER PRATAMA
CertificateIssuerLet's Encrypt Subjectjne-email-agen.jne.co.id Fingerprint52:8C:58:72:E2:00:C8:67:6F:BE:B0:BA:B0:42:E0:D6:C6:93:66:51 ValidityThu, 18 Apr 2024 15:21:57 GMT - Wed, 17 Jul 2024 15:21:56 GMT
File typePNG image data, 1440 x 1024, 8-bit colormap, non-interlaced Size142 kB (141674 bytes) Hash5a09af857512a874f5e2a6e01b80742b 8c87bcfd42ee8fab57f08c3664abd1424e608b6a 18b729cd6f3dd2b5657c1680e1388b825dc2c2d1e732e03478006714ac7ebc2d
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/new-back-ground-image.png HTTP/1.1
Host: sca.jne.co.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sca.jne.co.id/css/common,login,zhtml,skin.css?skin=harmony&v=231017114939
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=fc9de3ce-5ebc-4aff-acdf-87d19e233d16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 21:47:05 GMT
content-type: image/png
content-length: 141674
x-frame-options: SAMEORIGIN
expires: Sat, 25 May 2024 22:47:05 GMT
cache-control: public, max-age=2595600
last-modified: Tue, 17 Oct 2023 02:41:02 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| sca.jne.co.id/img/questionMark.png | 206.84.104.20 | 200 OK | 5.4 kB |
URL GET HTTP/2sca.jne.co.id/img/questionMark.png IP206.84.104.20:443 ASN#64315 PT MITRA VISIONER PRATAMA
CertificateIssuerLet's Encrypt Subjectjne-email-agen.jne.co.id Fingerprint52:8C:58:72:E2:00:C8:67:6F:BE:B0:BA:B0:42:E0:D6:C6:93:66:51 ValidityThu, 18 Apr 2024 15:21:57 GMT - Wed, 17 Jul 2024 15:21:56 GMT
File typePNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced Hash5d496d46fe9801cf0e92af8337b3b6af 6f9e34028d56b0229759aad8dab4f0c30be30a7e 395b89ffffb5b6ea44d2933531396f8d2ae8ff84bae554a1c245d0777af59034
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/questionMark.png HTTP/1.1
Host: sca.jne.co.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sca.jne.co.id/css/common,login,zhtml,skin.css?skin=harmony&v=231017114939
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=fc9de3ce-5ebc-4aff-acdf-87d19e233d16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 21:47:05 GMT
content-type: image/png
content-length: 5359
x-frame-options: SAMEORIGIN
expires: Sat, 25 May 2024 22:47:05 GMT
cache-control: public, max-age=2595600
last-modified: Tue, 17 Oct 2023 02:41:02 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| sca.jne.co.id/skins/_base/logos/LoginBanner.png?v=231017114939 | 206.84.104.20 | 200 OK | 107 kB |
URL GET HTTP/2sca.jne.co.id/skins/_base/logos/LoginBanner.png?v=231017114939 IP206.84.104.20:443 ASN#64315 PT MITRA VISIONER PRATAMA
CertificateIssuerLet's Encrypt Subjectjne-email-agen.jne.co.id Fingerprint52:8C:58:72:E2:00:C8:67:6F:BE:B0:BA:B0:42:E0:D6:C6:93:66:51 ValidityThu, 18 Apr 2024 15:21:57 GMT - Wed, 17 Jul 2024 15:21:56 GMT
File typePNG image data, 2000 x 275, 8-bit/color RGBA, non-interlaced Size107 kB (106997 bytes) Hash301bc8224cc997bee5687a5625136200 3cf566ce662c5f14b4997a10c0ec5a4da0b61b52 5f12b82fc264d3ea36f5cf156180d39d9fc79f09bdfdcaa0800b00440673d3f3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Zimbra Web Client |
GET /skins/_base/logos/LoginBanner.png?v=231017114939 HTTP/1.1
Host: sca.jne.co.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sca.jne.co.id/css/common,login,zhtml,skin.css?skin=harmony&v=231017114939
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=fc9de3ce-5ebc-4aff-acdf-87d19e233d16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 21:47:05 GMT
content-type: image/png
content-length: 106997
x-frame-options: SAMEORIGIN
expires: Sat, 25 May 2024 22:47:05 GMT
cache-control: public, max-age=2595600
last-modified: Thu, 07 Dec 2023 06:07:14 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| sca.jne.co.id/css/common,login,zhtml,skin.css?skin=harmony&v=231017114939 | 206.84.104.20 | 200 OK | 65 kB |
URL GET HTTP/2sca.jne.co.id/css/common,login,zhtml,skin.css?skin=harmony&v=231017114939 IP206.84.104.20:443 ASN#64315 PT MITRA VISIONER PRATAMA
CertificateIssuerLet's Encrypt Subjectjne-email-agen.jne.co.id Fingerprint52:8C:58:72:E2:00:C8:67:6F:BE:B0:BA:B0:42:E0:D6:C6:93:66:51 ValidityThu, 18 Apr 2024 15:21:57 GMT - Wed, 17 Jul 2024 15:21:56 GMT
File typeASCII text, with very long lines (751) Hash73d7abc29c13cb59bc7ae93ffdf78a53 404a5f5814e23bcc5ddbab0b059e389200f2781d 542846b1da5c2d5225d1736be767aa4068f44a38b69160c73f25c047a03d8182
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Zimbra Web Client |
GET /css/common,login,zhtml,skin.css?skin=harmony&v=231017114939 HTTP/1.1
Host: sca.jne.co.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sca.jne.co.id/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=fc9de3ce-5ebc-4aff-acdf-87d19e233d16
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 21:47:05 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
expires: Sat, 25 May 2024 22:47:05 GMT
cache-control: public, max-age=2595600
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 206.84.104.20 | 200 OK | 22 kB |
URL User Request GET HTTP/2IP206.84.104.20:443 ASN#64315 PT MITRA VISIONER PRATAMA
CertificateIssuerLet's Encrypt Subjectjne-email-agen.jne.co.id Fingerprint52:8C:58:72:E2:00:C8:67:6F:BE:B0:BA:B0:42:E0:D6:C6:93:66:51 ValidityThu, 18 Apr 2024 15:21:57 GMT - Wed, 17 Jul 2024 15:21:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Zimbra Web Client |
GET / HTTP/1.1
Host: sca.jne.co.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 21:47:05 GMT
content-type: text/html;charset=utf-8
x-frame-options: SAMEORIGIN
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
content-language: en-US
set-cookie: ZM_TEST=true; Secure
ZM_LOGIN_CSRF=fc9de3ce-5ebc-4aff-acdf-87d19e233d16; Secure; HttpOnly
x-ua-compatible: IE=edge
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|