Report - bbvasimdisenlik.sumber.com/iade

Report Overview

Submitted URL
bbvasimdisenlik.sumber.com/iade
IP
172.67.128.213
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-17 05:23:32
Access
public
Website Title
e-Devlet Kapısı
Final URL
bbvasimdisenlik.sumber.com/iade/
Tags
e-devlet phishing government turkey
urlquery detections
Phishing - e-Devlet

Detections

urlquery
30
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-16	437 B	29 kB	104.17.25.14
bbvasimdisenlik.sumber.com	unknown	2010-02-09	2024-04-16	2024-04-17	16 kB	482 kB	104.21.2.62

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	bbvasimdisenlik.sumber.com/iade	Government of Turkey

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	bbvasimdisenlik.sumber.com/iade/	1.6 kB	2023-04-11	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/ IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-11 18:53:33 Last Seen2024-04-17 07:23:35 Times Seen87 Hash 610d6f42404538afa28103e3beddae8c 9a1b1dfacd346e47e7e208a90f25060bf44199ed c85c179a7a79f31f6b3bb5973f7d703bce0655e8fffc961435c8b4e54003d949 Loading...

	unknown	266 B	2024-04-17	2024-04-17
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-04-17 07:23:35 Last Seen2024-04-17 07:23:35 Times Seen1 Hash 586b575e7f367d7b4a3d4821a15ab5f8 6590b83768f655999253d7fd47c069d1d9313b81 09c3cc64df544434ddf85c8fece6fadcff5b725f0874184cfe06c2d5300cca26 Loading...

	bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.date.extensions.js	14 kB	2024-04-17	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.date.extensions.js IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:23:35 Last Seen2024-04-17 07:23:36 Times Seen2 Hash 5ca76bc459eaa087235f4070b7343f26 a7d5a38171afb15d9da313614f9509223ee1990b f69bf7caa6df10f68c8a2be5506cbdc7643eec9d0962b32630b61d5d451e4240 Loading...

	bbvasimdisenlik.sumber.com/iade/assets/js/jquery.maskedinput.js	6.0 kB	2023-03-12	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/assets/js/jquery.maskedinput.js IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:30:18 Last Seen2024-04-17 07:23:35 Times Seen5 Hash 67661871c740b8d1ffef6cd822bfe164 edc6d69b9a195612c71814e91ec9b6b4c95a44d6 c70070dea8563cf48b07bd826618554ebb5cc1ea6332d024c4697e774c4ce44d Loading...

	bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.js	83 kB	2024-04-17	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.js IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:23:35 Last Seen2024-04-17 07:23:35 Times Seen1 Hash 734bdedf5b8c6b3c2e843810de3dec6d 2f05fa5e771b8c59a03c76507305fbc1269d7a85 9ab388ddda6da1caa364bbee5f87640e8be1b20db01d36143550cbcf6423237c Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-30 07:43:04 Times Seen263446 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	bbvasimdisenlik.sumber.com/iade/	503 B	2023-03-26	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/ IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 14:17:25 Last Seen2024-04-17 07:23:35 Times Seen79 Hash 99041a781e51b9c269512769f60f1fbe 2a952572c2d4b0e45cfb089490eddcec891c468b c2e362b040148f4ede4bcd9ca0067805f300216f0709cf7986a1ed839bacd25e Loading...

	bbvasimdisenlik.sumber.com/iade/assets/js/header.js	10 kB	2024-04-17	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/assets/js/header.js IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:23:35 Last Seen2024-04-17 07:23:35 Times Seen1 Hash a58b83636544ef4dace098c28a7e497c f9896bde6e736656cd6aa926e7a3a387cfa2ff9d 04da7baec06af7a6195468b23418da88165caec18e42ae7c24184aa1a8053634 Loading...

	bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.numeric.extensions.js	17 kB	2024-04-17	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.numeric.extensions.js IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:23:35 Last Seen2024-04-17 07:23:36 Times Seen2 Hash 0d04220c5c389a0a31646279d7f98533 b67ee4a0f57c7dfd8ae9ada69c04e72d7a495568 3567e7e386156be0ced7ac1501eb22ac61a560b4fdeb660963fc2804ab763f63 Loading...

	bbvasimdisenlik.sumber.com/iade/assets/js/jquery.inputmask.js	1.9 kB	2024-04-17	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/assets/js/jquery.inputmask.js IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:23:35 Last Seen2024-04-17 07:23:35 Times Seen1 Hash 64c8f126b8274920c5a38ac9706bd706 b04d844868c34a4358d3a2202aaed49f2905726b 70d15c839638e62718345ba21a70172a5684ce9e6846080c231b50e5dbfd800b Loading...

	bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.extensions.js	2.1 kB	2024-04-17	2024-04-17
Pretty URL bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.extensions.js IP 104.21.2.62 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:23:35 Last Seen2024-04-17 07:23:35 Times Seen1 Hash d381c062bfe5bc2d02c7e43f09078888 7481d1dceb7478a2e79b35e2ccd5831d9c11cc88 9cfa53cf2f2ba0c7fd987537adebb111915c13c18f0ac049346b749ccbaa134d Loading...

HTTP Transactions (30)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bbvasimdisenlik.sumber.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 130855
expires: Mon, 07 Apr 2025 05:23:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=379UgeHVCwzQLABxNJJ8soXE7r8GezELYBxAgJvtWzRa1Mr3RyDUj%2BMW4q67sAYFkKftnRZILFNzhFkWA0oaIv9QsGAK%2BEmwmpRNYj9C296%2B%2BQpf1zY%2F2MrwVz2KgXC%2F1LHHY9cN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759fb2f2dee92fe-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bbvasimdisenlik.sumber.com/iade/assets/img/1.png

104.21.2.62

200 OK

1.9 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/img/1.png
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
PNG image data, 165 x 40, 8-bit colormap, non-interlaced
Size
1.9 kB (1855 bytes)
Hash
7847c396db234c92dc4b1bb4b759c011
cd8357fc05042cb787267f01fe0c38ba6526e0e4
b2f75fb62c0bf3c51f8eebc14891cf56976638fda4b0d23f90e2ee6dbd8f3b18

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/img/1.png HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: image/png
content-length: 1855
last-modified: Fri, 03 Mar 2023 02:34:58 GMT
etag: "64015cd2-73f"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xyvioVFkrdx0pcxsbodmXd32KZ7NDpe4Vx%2BJw6CfwseT5gJB3suZ02VWVK17b5qUsyM15qquGCq1ds3eJlw3nw48kxNTUsNKNRKkRvo0yAIM9vnShl3P1N6oTrdJ33Qm%2FRLS6gda2yPObITcaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ebbc69980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/img/bb-ubak-tsat-black.png

104.21.2.62

200 OK

15 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/img/bb-ubak-tsat-black.png
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
PNG image data, 800 x 110, 8-bit colormap, non-interlaced
Size
15 kB (15120 bytes)
Hash
c60ab750ec8321b9a186658d4157b22c
0edb72858fa9de74d818a2397ef62eb44e495c4c
a4745f259315892f1d3a76a0d8f524729e50ac83d4a8a53deda91970a1bf3dbb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/img/bb-ubak-tsat-black.png HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: image/png
content-length: 15120
last-modified: Fri, 03 Mar 2023 02:35:50 GMT
etag: "64015d06-3b10"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BRPbKr2MI%2B0FWPKyAf6dHok37k%2FmHn%2F2kgaGW9NvzVGMZNmdq8rbIkgaYvDhSgIGCwPtVBPKInaS5t92D9s%2BI9lfOJdDJjJmPPwMbyZcOtotWvEwSMH8xI64fitxw5NHIUBXutStod%2BQIOEf2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ecbca9980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/img/favicon-196x196.png

104.21.2.62

200 OK

37 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/img/favicon-196x196.png
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced
Size
37 kB (36658 bytes)
Hash
d8d70ee5e70ce7e5ad1549bb4f1fa77d
0dd76a540a82edeb7eb2b7193d72c7e10c70778d
48939cab660e1218fbb818d611a1271f60790f9a1ae5906b08c9ad2f8f7b07fd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/img/favicon-196x196.png HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: image/png
content-length: 36658
last-modified: Fri, 03 Mar 2023 02:50:08 GMT
etag: "64016060-8f32"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uBwJCSOTwVMmkFRkYhf5bN1dJO7JG8KJwRQn0cVYq9GNlvlWVKIDZzuOoVX13QNb4Hs2tSERatu6aaaA2WDKeeEAdYvyHlctDNelCKzJmejL8PQ7w54PSzoVW7763rN4tX8EdLEil8s1U%2FmlTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb324fae9980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/img/favicon-196x196.png

104.21.2.62

200 OK

37 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/img/favicon-196x196.png
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced
Size
37 kB (36658 bytes)
Hash
d8d70ee5e70ce7e5ad1549bb4f1fa77d
0dd76a540a82edeb7eb2b7193d72c7e10c70778d
48939cab660e1218fbb818d611a1271f60790f9a1ae5906b08c9ad2f8f7b07fd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/img/favicon-196x196.png HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: image/png
content-length: 36658
last-modified: Fri, 03 Mar 2023 02:50:08 GMT
etag: "64016060-8f32"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e1K49TyoDVLb4Xb02FbVBiyrSjgyJWlKaXBtQTt%2BbKMtQKmunOc165OqAS1EIUy5Mwx0b9UT4K0%2Fa2jNyBRXppIXYVCNerT81k3PtyQKQ%2FUTuN73tl9OBzRNpSZm99PPxdAULZi5uohYEB5s2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb324fa89980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-regular-webfont.1.woff2

104.21.2.62

404 Not Found

1.2 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-regular-webfont.1.woff2
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
data
Size
1.2 kB (1247 bytes)
Hash
001739a8790663eac0c6045c627e49fe
8f85be2f5d4d72b61cf15132ed1bf53ae81bcc27
54ff9beaa31b245a98a6c06fe20a8ad24913abb0c617b4145d32dc3d08d6ab7b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-regular-webfont.1.woff2 HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Atj0gMv8y78ZP6CuE2kKrL3j67ShgROZSE7sQ4pW%2F35kpCW8Mlz4pjEvPuEjBUpoAE7pHww%2FT4Y4%2FnfhQ4%2FogAs0JmsnPhMM1ml7w37Lmp49YTLUQRCzi%2B0Whm28kZ9%2B2CB2oPU8bt2xe5Sm2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb30ee129980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-light-webfont.1.woff2

104.21.2.62

404 Not Found

6.4 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-light-webfont.1.woff2
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
data
Size
6.4 kB (6429 bytes)
Hash
4355369afb165da19a4903704d1854cc
bfc74ee3ffca930cd61e28c70336ae71f8f55e61
5ffe6b783038f01dfedc75e1c918c80e6af8a0159959831049b4e2ea857b28c0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-light-webfont.1.woff2 HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S%2FiN5xU6suD%2BxLMQ5LFLhcAU1s0FSdWwLmY51lxiEd01%2BXV%2BKcX3cxVriaJk8yj4hk5KvhOP5%2FMIB1geFdGsczq%2FbDpv1D0yj8jSFFWOQ33NCj%2FOfAp97BnSdXlJ52E0kEX7i7IGHH3F1q0kyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb30fe259980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-bold-webfont.1.woff

104.21.2.62

404 Not Found

1.2 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-bold-webfont.1.woff
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
data
Size
1.2 kB (1247 bytes)
Hash
001739a8790663eac0c6045c627e49fe
8f85be2f5d4d72b61cf15132ed1bf53ae81bcc27
54ff9beaa31b245a98a6c06fe20a8ad24913abb0c617b4145d32dc3d08d6ab7b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-bold-webfont.1.woff HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AUP6c%2BERbi5I38P2qsp5XcGn1q%2FkNHrENoaEtBDzP3YAjWV2OZj5mp6kgc9gDpnSOMm7mFMU1bYiqZvgB2x6qLuiWVJ9SPJyD1dqbE%2FunMakFlj0L%2BYMpicRye0T8hGsu%2B4jfu9kCUjvy%2FU7Tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb302d309980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/images/arrow-left.1.svg

104.21.2.62

404 Not Found

11 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/images/arrow-left.1.svg
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text
Size
11 kB (11020 bytes)
Hash
543cf10d6db43236c9292148723e3ba2
13e8bb9b202bee88ed6a2b78098b162d914d0137
4622d8f57a4463b4b9fbf85d646dd2486345901669c2595fb4921c1a5b29f0c4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/images/arrow-left.1.svg HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/giris.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3ssl783RP%2Buo9eIDh%2BSwm%2FoSGZtfe7aTgzfeofRoTtazbNi5sAckq%2FuVaM7n7U9eJw%2BDnOC7%2FxeQbG5R8qAq0UNDyJlWuC9qlMUro9jWQhgxdLby5I%2BTWtkn4Ye8W94J%2FTCdkVHoAVkIWQydsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb302d2a9980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/img/form-progress.svg

104.21.2.62

200 OK

7.4 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/img/form-progress.svg
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
SVG Scalable Vector Graphics image
Size
7.4 kB (7395 bytes)
Hash
d57db381e336134adc11990f2f6863f5
67cfcefdf4c388118a149ad1749274419d1aa553
ff7498da718b1f50faeefae71e24ceadf4575da0692b84c9a1ad359daa1f2ff2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/img/form-progress.svg HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: image/svg+xml
last-modified: Fri, 03 Mar 2023 02:35:28 GMT
etag: W/"64015cf0-42c"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BzQKS6kA9%2F4pHEVPiTldWl5ooH%2BX8CodzxUHIJRga1wfi8ZAeZESkRVivmM0YZdOkGuvLCuWAKjs4R9mlNuvQ3de9DSZoqriXFsYrprq45AM3JyHa%2FpXbm5BtVNC3MotqAoPE8pR8gg%2Fh5g%2BFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ebbc89980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/veri.php?ip=91.90.42.154

104.21.2.62

200 OK

4.3 kB

URL POST HTTP/3
bbvasimdisenlik.sumber.com/iade/veri.php?ip=91.90.42.154
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
data
Size
4.3 kB (4268 bytes)
Hash
af12a967b888f18f5473a3b7917414a2
e6ce20027cbdad6bbb873fe4d1f1d2a13fa7d1a6
2dcd921c4a4ad0425a0f29f3d142dd9cba9c1d4226d61c5772f2d43a78bb0b0a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

POST /iade/veri.php?ip=91.90.42.154 HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://bbvasimdisenlik.sumber.com
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:09 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3jvb%2Bc5QW10mM7eZZOsqp3oXMaRoLinzscny8VjiSasrjhpR%2B1SUm5hHvwdz8N%2Bu1V8MfiIaq436UcxraYtL7paQpWG8qYIl%2Bmg%2BgrxHuDHOns7jDgkzt8lA%2BNSqFRpWXgVC1FJdOb1q15hBaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8759fb402fdb9980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/js/jquery.inputmask.js

104.21.2.62

200 OK

1.9 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/js/jquery.inputmask.js
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1982), with no line terminators
Size
1.9 kB (1938 bytes)
Hash
d048df064721f103500f472e73cb328b
e997aaf76a6d982cc730006058225981b0aa917d
4ac203b173250234bdf6a702902a01560b2a18db1940be540fa1145cee8e5447

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/js/jquery.inputmask.js HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2621
etag: W/"64015d20-a3d"
last-modified: Fri, 03 Mar 2023 02:36:16 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aN71jJeG4yXsHM5ck75nqstPZrvDjMr5Pb%2BAya%2BnCv0ZDa6ZykwcGshfjipJLjeXPRbdVw%2FRkU3j91cowrJKIPLvNbBA8Q6tLawRPmqbNMBoGoolAvgxfM1%2F4vqd52LjuXfEZqhomV2iaHdcXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ecbd89980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-regular-webfont.1.woff

104.21.2.62

404 Not Found

744 B

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-regular-webfont.1.woff
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text, with very long lines (802), with no line terminators
Size
744 B (744 bytes)
Hash
530fe5b8d94e60d58111dfe3a445842f
2f9fac5df79b3ec55897200ac0e6decf23891fd1
36c45a4bf0f3bd8415c12090df2e52e48f511b522b722be3812a2ec2e23e41b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-regular-webfont.1.woff HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d4PmjqzzJkzm9vsPDt3rUUtaZg%2FM2eqmbYwWUluUrJYn8D991iFIFYos9w1waG%2Bu5UcYYVhaftSqISoN8uhrIULOnaICTGiDtuqsDc81H3XPa75D00QsuQ3ylxy%2BCQBruzqM56Pyn%2FrDLcu31A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb301d249980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/js/header.js

104.21.2.62

200 OK

10 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/js/header.js
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
JavaScript source, ASCII text, with very long lines (10302), with no line terminators
Size
10 kB (9986 bytes)
Hash
a681b9dd15e765fe558c1d8ce6bfaae3
13e9b8009da4cd2617e5567337bfc33cd29b54b7
185025f3305bc1f2253b80af507c84ea08fb36b128ed1942841760925271a7f4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/js/header.js HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=9990
etag: W/"64015c9e-2706"
last-modified: Fri, 03 Mar 2023 02:34:06 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P2E0nNpRCFshN0zeB8aYtdl0ZAWGcybqO2Dx8PWXyLKmTeooQmK9r1rJP7F5akzckQf%2Bu6OEicA4rv%2FJJMNF%2FxFUjtQTXba6W7RV7nPpdjfUCP%2FM32Lodu4CSxhj6B29izRLOFKlo8LOcPOwRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ebbc09980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/js/jquery.maskedinput.js

104.21.2.62

200 OK

6.0 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/js/jquery.maskedinput.js
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6103), with no line terminators
Size
6.0 kB (5999 bytes)
Hash
220904bbaf18f24a36bdf51b5614695c
8601d224a9721797ac22901140821420c370e5eb
2e990a6bde2772ed840aae0094062a5b3b504be6a0cbd81e278c207d10acc586

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/js/jquery.maskedinput.js HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=10498
etag: W/"64015d38-2902"
last-modified: Fri, 03 Mar 2023 02:36:40 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3gnVQ55qURO9p6%2B8uAWEMdBB7eW8zWCNx2teMj6LuRU0uh%2BlqmES53tK0cC7%2Bbf%2F%2BuoVwxZoPhd%2BE27hS1YdNCh4QeGR0k%2BZfJ51cLYYn7PUtD4OIl0%2F%2BLvVxj%2Bu2rId6szm00wRTkbxivNGyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ecbce9980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.date.extensions.js

104.21.2.62

200 OK

14 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.date.extensions.js
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3430)
Size
14 kB (14047 bytes)
Hash
5ca76bc459eaa087235f4070b7343f26
a7d5a38171afb15d9da313614f9509223ee1990b
f69bf7caa6df10f68c8a2be5506cbdc7643eec9d0962b32630b61d5d451e4240

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/js/inputmask.date.extensions.js HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=24422
etag: W/"64015d14-5f66"
last-modified: Fri, 03 Mar 2023 02:36:04 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tfS5PVz%2BXRfHi7Q3J1JJrZztvuHHvfjAPt2oReYpNVwXJ54CZgK2bUszHgqgX5GwUhKpdgiFnyJjAP3xqNTQgg%2BZItkKStiLmmBb%2B226Nq8sTZjVRvrIjcDB51S1Xo%2BaT4d1kIjdh09MGsv6eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ecbd69980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/

104.21.2.62

200 OK

11 kB

URL User Request GET HTTP/2
bbvasimdisenlik.sumber.com/iade/
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type

Size
11 kB (11204 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/ HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=68gq3podhdj95p1il39idp866g; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q6v77tODR9rLageKkqndLsCt%2BW6difSl4nf0HUMuB82fnTkJiT2hvHZOZMpQf2cyN3frxX03gn779b3C2MLiYjeHxgj8q1pD8jPdT3zzs8EI%2FlmA3dDFI3eEjqRyx5%2Bcxv3B6UBAd4xq3VtI%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8759fb2ccfdd1d12-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bbvasimdisenlik.sumber.com/iade/assets/css/base.css

104.21.2.62

200 OK

128 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/css/base.css
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type

Size
128 kB (127987 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/css/base.css HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=128192
etag: W/"64015c82-1f4c0"
last-modified: Fri, 03 Mar 2023 02:33:38 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2B69aCzU7bPNLij1FcP%2FZ9GnKpLQsz3LvS22daIu809gEfy1paFBt8UnniDxJpgqR%2FDDZm%2B5YUat5RasehHLiQI2zm1WLCahbYyDiN1%2BY5Sm0t5q0GXSEhysAGy%2BKcMJhteN9A9yQRSPfTXpfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ebbbf9980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-regular-webfont.1.ttf

104.21.2.62

404 Not Found

744 B

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-regular-webfont.1.ttf
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text, with very long lines (802), with no line terminators
Size
744 B (744 bytes)
Hash
530fe5b8d94e60d58111dfe3a445842f
2f9fac5df79b3ec55897200ac0e6decf23891fd1
36c45a4bf0f3bd8415c12090df2e52e48f511b522b722be3812a2ec2e23e41b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-regular-webfont.1.ttf HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YT%2BBLLY3zWN8%2FsJJ3aIvoND6F3m9Xeef3HV3p6CBgY%2FQiCfuSKOTcs5H1xVIEe4mcTqh3L5ZgQgLOoCk5u9xb3uI730bDzBqSZTgZuV1Z2HmzjuYqDdWkYCSyOGfIPPUdKvVXBmeTW6o9RDSIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb319eb69980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade

104.21.2.62

301 Moved Permanently

11 kB

URL User Request GET HTTP/2
bbvasimdisenlik.sumber.com/iade
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type

Size
11 kB (11204 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet
OpenPhish	phishing	Government of Turkey

HTTP Headers

GET /iade HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/html; charset=iso-8859-1
location: https://bbvasimdisenlik.sumber.com/iade/
x-powered-by: PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cCQnBWUoauZemzTvh7i8y8Sff%2F6nhCGg8R7h965pzylc9jEdokkIPmbw4bEcbpf76mE8NZRkTEgrg9DDokfFQ6qtdJ9BSn6Suf76nEGkkfRGpS76TjrRUpKBaP6mHh6ZVNstyHfLnvP%2FwWcdYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8759fb2c1f4c1d12-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bbvasimdisenlik.sumber.com/iade/assets/css/giris.css

104.21.2.62

200 OK

41 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/css/giris.css
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
ASCII text, with very long lines (41193), with no line terminators
Size
41 kB (41193 bytes)
Hash
d5f61703005bef2975ee616b3f6fa898
0fd48287f9f4c25f264acd3e669f70ce09410f85
d9e42693241f77625d8c049c325713ffc26719cfa76386e8abc46996cd91e2be

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/css/giris.css HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=45305
etag: W/"64015c8e-b0f9"
last-modified: Fri, 03 Mar 2023 02:33:50 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHa%2FeRrLDlMnEk4sw28Kg7whFYNELNlCeC6cld63ddBUEhYWEpi3oOSsbOUt7%2FBUVox%2Bzijoo94NNonTC2iXWrjfMglL4bIv%2Bw2cLdxiQkq9DRMbCh7%2FxjRVeTvVJB6fKwjIiyDkPRbd0BFy1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ebbc29980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-light-webfont.1.ttf

104.21.2.62

404 Not Found

744 B

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-light-webfont.1.ttf
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text, with very long lines (802), with no line terminators
Size
744 B (744 bytes)
Hash
530fe5b8d94e60d58111dfe3a445842f
2f9fac5df79b3ec55897200ac0e6decf23891fd1
36c45a4bf0f3bd8415c12090df2e52e48f511b522b722be3812a2ec2e23e41b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-light-webfont.1.ttf HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hfHjZF7d4jY6kdhsqCMEPMUeCk79co641F38%2FpuAuwLhb5RyJ4tRo8kHb%2BMvIIs0YyxvUiA3FfYHWaAojB0AqXoR87nfKlb9MsJPR3K0Gwfojp9iFEPHm23A%2FBZXYIOfB6%2B5roSt%2FZKiu9qPzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb31aec99980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.numeric.extensions.js

104.21.2.62

200 OK

17 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.numeric.extensions.js
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4415)
Size
17 kB (17036 bytes)
Hash
0d04220c5c389a0a31646279d7f98533
b67ee4a0f57c7dfd8ae9ada69c04e72d7a495568
3567e7e386156be0ced7ac1501eb22ac61a560b4fdeb660963fc2804ab763f63

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/js/inputmask.numeric.extensions.js HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=24911
etag: W/"64015cfc-614f"
last-modified: Fri, 03 Mar 2023 02:35:40 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZiLySo8%2B0%2B98U9oSWkTKrxJoV75rH0VtsrnRRQzWPKJg4KTBrM51lOxLtXlbbynPPE%2F2F%2BYsCGYNUyC57odsc5bipti1RKOaGtII0MDoxodAxP5DxTd4kCJUnOYVX6GWQQXRim%2BYkHo82jPp7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ecbd49980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/img/edkkds.svg

104.21.2.62

200 OK

8.8 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/img/edkkds.svg
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
SVG Scalable Vector Graphics image
Size
8.8 kB (8818 bytes)
Hash
5cc0873330e07cd12318f2b28d3422ab
757226ff8ac0a67e4ecb97b8f1fa75c037809552
0441aca91b754dffb6c915ce91a2e712c0da7cf3bafa1822d3db425c5942027b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/img/edkkds.svg HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: image/svg+xml
last-modified: Fri, 03 Mar 2023 02:36:26 GMT
etag: W/"64015d2a-2272"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h6s12Z4OwSh%2Fe0o8msv8RQU9HZ1v52w4xGI13zzHFLc7h1ksaqyONpzC668fmkfA9OzbZwVz%2FL%2B%2B3GyyL0s3lBbkp%2F1LRpODW3wQxstLvs1EC4oW%2BsHZW6khvmna2dVctekKJuZshr4NnO2SEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb302d279980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.extensions.js

104.21.2.62

200 OK

2.1 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.extensions.js
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (2146), with no line terminators
Size
2.1 kB (2068 bytes)
Hash
c18a80784d97c36b4309b170e47563d8
9463a1083ee2f4cce4491b2002296e42e9f1f7f2
5bfc3cc75cd8740ef052a33fae1642904164f553fe71c0f28a34526d55098262

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/js/inputmask.extensions.js HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3443
etag: W/"64015ce0-d73"
last-modified: Fri, 03 Mar 2023 02:35:12 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YP7ENgJbGwBTrZOPIuj14S4NphXMzSGTeByVnFtPvwyaakgnVixWH0iiYrYXVIzHy9vyPsmZl%2BZFxANwJ0cBjvvp1YrOmzxTyg70z38M%2BnO%2FnSYA8KyKrjVKZYot5I%2BgAIrcBsR5s4zW7BfuXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ecbd39980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-light-webfont.1.woff

104.21.2.62

404 Not Found

744 B

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-light-webfont.1.woff
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text, with very long lines (802), with no line terminators
Size
744 B (744 bytes)
Hash
530fe5b8d94e60d58111dfe3a445842f
2f9fac5df79b3ec55897200ac0e6decf23891fd1
36c45a4bf0f3bd8415c12090df2e52e48f511b522b722be3812a2ec2e23e41b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-light-webfont.1.woff HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gkSPhUnMLyvo7TvzYBGGMWXLHjAEDbFrGb3Rf3AysrlEUwkcF8Y1Qx4Q3BjmQDbL0g7wfmQ2mBp%2B0QLWQUPO7OWiA0UECHkk0QAv7%2FxCxSi%2Futa6%2F0qUd%2BU%2B7qfzDQ9fSQeIdOd4EC%2FU83myBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb302d339980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-bold-webfont.1.woff2

104.21.2.62

404 Not Found

744 B

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-bold-webfont.1.woff2
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text, with very long lines (802), with no line terminators
Size
744 B (744 bytes)
Hash
530fe5b8d94e60d58111dfe3a445842f
2f9fac5df79b3ec55897200ac0e6decf23891fd1
36c45a4bf0f3bd8415c12090df2e52e48f511b522b722be3812a2ec2e23e41b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-bold-webfont.1.woff2 HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VxD0iXQ9%2BmcriWzMkMqr%2B9qMay4GhZGY8KJJnHMwkjPqVZ2EkC7uRdxGp4cPIqtTpqElrV7b82YpKa6hfEj54qGME0mbA9PGy0MyR7jgIRk2JxiKWsa%2FMSjJtnjdpvEb8K%2BKJC9%2Fw4Pgs9Su6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb30fe239980-CPH
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-bold-webfont.1.ttf

104.21.2.62

404 Not Found

744 B

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/fonts/opensans-bold-webfont.1.ttf
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text, with very long lines (802), with no line terminators
Size
744 B (744 bytes)
Hash
530fe5b8d94e60d58111dfe3a445842f
2f9fac5df79b3ec55897200ac0e6decf23891fd1
36c45a4bf0f3bd8415c12090df2e52e48f511b522b722be3812a2ec2e23e41b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/fonts/opensans-bold-webfont.1.ttf HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/base.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:07 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4THVoCuYnOak5qpZKF%2BV6VVuvMaSgpovLCAL47eeuUkxCSk0jatw8Ml5y5JmRyQoaSSFWkYy9jiEHPX4loRsy5mvwBtvVKm85gmlEd%2BZEOfiwE1aLcpM3O2G3bqJrh5r0%2FZZbGYhOkFG%2FAYcNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb31aecd9980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.js

104.21.2.62

200 OK

83 kB

URL GET HTTP/3
bbvasimdisenlik.sumber.com/iade/assets/js/inputmask.js
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type

Size
83 kB (82909 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /iade/assets/js/inputmask.js HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=123405
etag: W/"64015cc0-1e20d"
last-modified: Fri, 03 Mar 2023 02:34:40 GMT
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=92xRVbgIY6wxvTq%2BfzNiw4xDDBSzxPR8%2B4DtqLCmvSMWKad3c%2BY4YnCAkBj4TslmvJ7ShnW6CCLNL6jgD%2Bu2fQ3%2FN0szmPp5mIcszXB8DJpuEog8bwSRpjOCp959UiZ3IWERD8uVXU6lhZoumQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb2ecbd29980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

bbvasimdisenlik.sumber.com/themes/izmir/images/button-right.1.svg

104.21.2.62

404 Not Found

744 B

URL GET HTTP/3
bbvasimdisenlik.sumber.com/themes/izmir/images/button-right.1.svg
IP
104.21.2.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bbvasimdisenlik.sumber.com/iade/
Certificate
IssuerGoogle Trust Services LLC
Subjectsumber.com
FingerprintC2:B4:30:32:A8:0A:4F:56:0F:6E:D8:AA:DB:31:D7:99:A5:A0:56:37
ValidityThu, 22 Feb 2024 13:27:00 GMT - Wed, 22 May 2024 13:26:59 GMT

File type
HTML document, ASCII text, with very long lines (802), with no line terminators
Size
744 B (744 bytes)
Hash
530fe5b8d94e60d58111dfe3a445842f
2f9fac5df79b3ec55897200ac0e6decf23891fd1
36c45a4bf0f3bd8415c12090df2e52e48f511b522b722be3812a2ec2e23e41b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /themes/izmir/images/button-right.1.svg HTTP/1.1
Host: bbvasimdisenlik.sumber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bbvasimdisenlik.sumber.com/iade/assets/css/giris.css
Cookie: PHPSESSID=68gq3podhdj95p1il39idp866g
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 05:23:06 GMT
content-type: text/html
last-modified: Mon, 15 Apr 2024 07:17:20 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0VuEzXQOxXa0olNyMkm8e%2FFeT%2FJStaShSdmAgUNkjYGn%2FZ%2FWIP8IdtVXEydCJff9ilKVc993euFrZ2SGJmyRmIaTuDo%2F%2BBvJAPYLY1nTcI8jZtisTvquahfSuCOZfKlDX7Vhhl5grqVY%2FhQYWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759fb302d299980-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL