| bmo.sa.com/assets/images/fdic.png | 172.67.152.175 | 200 OK | 6.3 kB |
URL GET HTTP/3bmo.sa.com/assets/images/fdic.png IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced Hash1f216d4d130a1157674345d7c20e20b3 b4676bf182ac9cfe51aaf6d0709e5dfc591a3ae6 944f5f59fb5cff5bcfa135c92c8424dc678ef747a6114fbf926a59a2b07593c5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/fdic.png HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/png
content-length: 6323
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "662a5acc-18b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X2BRk79nDZuzo5BQNpkUs33J%2FVyIYpHhWhpif6sghPSKzaCyQVbnzTcd72X09dKoaTLXR0mceyRgnwsgUTM06zhzMlxK67BOgizNTv%2FOwJuFVM4av0L2xrno8OJ2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09e4ad80b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/assets/images/ehl.png | 172.67.152.175 | 200 OK | 6.5 kB |
URL GET HTTP/3bmo.sa.com/assets/images/ehl.png IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced Hashe19cb0a8ff7940341fe40ed00dada53c 6c298785abc2f256b1c1f44a211892ef73950ae0 324dfccf399348f7a1c9351a4ee814e21a37bc98895d55009b43dc1cfd1e39ba
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/ehl.png HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/png
content-length: 6512
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "662a5acc-1970"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eH53OG3o8ytdA76VulfuHg3Nzx5eTtdUFDYeMpXaJ9PbvO7RxPS1RChstVVl51zPO9JXlBLzHy4MXfYIG4LfslUWNNvR5hgizkuVE1%2F2gCscY2HrimGE3fEcViVF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09e5ada0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/capco-icon-fonts.e3dce399bcb18ec3.woff | 172.67.152.175 | 200 OK | 47 kB |
URL GET HTTP/3bmo.sa.com/capco-icon-fonts.e3dce399bcb18ec3.woff IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeWeb Open Font Format, TrueType, length 47132, version 0.0 Hashbdd2d7e7a2b19da123e3dd0aa2b6ba13 336b4abd79c8aa3f658c359e33bc5581955b72ad a6752fc2e494367dabaf484e095493fb7865ff58800abfc71123dc282d95b4f3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /capco-icon-fonts.e3dce399bcb18ec3.woff HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: application/font-woff
content-length: 47132
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "b81c-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2RVFxfRTgxkgqYIPveDqe8aKrwor5eY85L2AWlnKZKm%2BQiEVer7vV8%2BG8CvEZ1nhZX7NBEbTWUsunJzefe8TT0JHtDi4aoBAsPQQZGL5%2BNnTGaBaM%2BwpRLgL1sWy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09efb420b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/Heebo-Regular.f807eddb777f8cc0.woff2 | 172.67.152.175 | | 29 kB |
URL bmo.sa.com/Heebo-Regular.f807eddb777f8cc0.woff2 IP172.67.152.175:0
CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28632, version 1.0 Hash0ec52131c89aec5adb27d61223543ced ec24f7cf191c89d67076361a5449cff46b81570e c8eaf794d7920f0d958001cab7b9c403efb89217b4d5c3ad648de792bc590bff
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Regular.f807eddb777f8cc0.woff2 HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-length: 28632
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6fd8-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=08l2reFs5uh0zLHrRGaWCLliQaGYMSmN6bfKbr7iDQE%2BexUwHBfWwPSFEP0n1%2BoT3khhymh1IaK61ojvjz2ymMy4f6IEW9MjtnEOZFL62VIrbcffSWlzRYmdiFJq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09efb3f0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/Heebo-Medium.8df563692fcd9fd0.woff2 | 172.67.152.175 | 200 OK | 29 kB |
URL GET HTTP/3bmo.sa.com/Heebo-Medium.8df563692fcd9fd0.woff2 IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28596, version 1.0 Hashe1ec2e8632e031aaacebf19c22be7f94 5f477c6850c9623b37ca85115005bc8e17c99a32 6b0775312a70463baadc76ad84f408bf91b13da73fd1b2df4ea62233484d5a1e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Medium.8df563692fcd9fd0.woff2 HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-length: 28596
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6fb4-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y0M0HD%2Bgxfsd8Ifdi7Sq2lgBmAhQDHKLGox3aQAR3pnr5G%2Fyy6K5OH1QKLGcir6YJ0KjrLKeqq%2FrHaNFiaOWq6GJA5D0cKmVmIBFpxJOx6sGGBnpi64oWnAZ3Oat"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09f0b4b0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/Heebo-Thin.5740d8571ba2c17c.woff2 | 172.67.152.175 | | 28 kB |
URL bmo.sa.com/Heebo-Thin.5740d8571ba2c17c.woff2 IP172.67.152.175:0
CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27808, version 1.0 Hashcf1c3a336717c93381070d238c90f782 d663d5b077c06d4bc1b8bdfe28657147bd77256a 0201b5d83335daa6995cb96075f758bb09b8ada45a736462adbc3a28f833afef
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Thin.5740d8571ba2c17c.woff2 HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-length: 27808
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6ca0-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Rs4UuqKBxdAKWsqWRL29MiCwTvWQ4X0OxZ1SrfKEN5bnQgsGqqhBppiS8iKsjZDaRAjlXcVFGfnPDhSuSdyPWeqGsICoycUdJpBoTNp2VmFno9b%2BFoI1vxWk7tD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09f0b4f0b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/Heebo-Light.b37fd88770249dfa.woff2 | 172.67.152.175 | 200 OK | 28 kB |
URL GET HTTP/3bmo.sa.com/Heebo-Light.b37fd88770249dfa.woff2 IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28476, version 1.0 Hash400e8b71de50f49b7b0d8677fd9d81de 9303146a35fff66540170a40ff33b0ea29a0ba79 207ee410a833bdc6e9258c826ce60b8cb26471e6fac689e18d8ea8c7c5a9b585
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Light.b37fd88770249dfa.woff2 HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-length: 28476
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6f3c-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=APal2O0ma%2BrtZenX1hx%2BJopxmwLKv%2BOZs70WQHBccZYE7T4EWhAlJTMQaUA%2BFLlKiBThjPjOYRaVPWH5TOcENUSxTmyeox6ZmMJd6Exmpni2epkYPVLh5XO5Vkl5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09f1b590b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/Heebo-Bold.acf14f737f7438f7.woff2 | 172.67.152.175 | 200 OK | 29 kB |
URL GET HTTP/3bmo.sa.com/Heebo-Bold.acf14f737f7438f7.woff2 IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28560, version 1.0 Hashf7bc99b64b780c65fc75a44644084a6e fb0e3ded3e6072c86a3e86f94695e2576f9758f5 f2e10df61c61ac80916ace8bb9d8166788127143cfb9f189e8c3daff7727c96d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Bold.acf14f737f7438f7.woff2 HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-length: 28560
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6f90-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K9fBB4gWDBKf6vMb1BoB3l4jK9l3kdcTApxMO%2F0k0RphtjzdA2KEZHluICP7naRuC4TyycpjnHEOWvflCONXKT2D3KZTVBpTryFaSEH4lexWvGH3Gx26saMBKo0J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09f2b610b02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/assets/images/close_icon.svg | 172.67.152.175 | | 1.8 kB |
URL bmo.sa.com/assets/images/close_icon.svg IP172.67.152.175:0
CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hash02165b732cf61f3761a5dde7f25fa63a 10cad2b78404a7db1c6762d31564502567608b46 f0a638d71d980f453a4ca56a85bc6fcfab2cafbef3d9535a086426b8f3271077
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/close_icon.svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-328"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2BSQMh%2BAwSFifLTyoBF158hly6zCs1l%2FPjj1h%2B19o3n2oY7gC%2FDF1cQUvgGFZVZf2%2F7%2BZPd3fNZDQEdijxe0%2BfW2nWUeYIPgZtLtGpnG4u2Yd5UcoT8uCMYVla5j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e5adc0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/assets/images/take-a-look-at-your-accounts.svg | 172.67.152.175 | | 12 kB |
URL bmo.sa.com/assets/images/take-a-look-at-your-accounts.svg IP172.67.152.175:0
CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hashdfc59bf6fb03812a4960e061e78cd3d5 0431e77ed4b5bdbdf79fb220ca0e5a14bf506758 9b560887e13cadf1d2a3db5d1a6bbe3d867e8af0c8300bb410f091740df37cf7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/take-a-look-at-your-accounts.svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-3da2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rqMZmxwfo0LMTd5ynYl3W017A24lUxrJkecCzfkwymtK7N3%2BVz0puGIiWFecJIpJwgl7AP2WkTlqCqRv%2BtnegsqaiDp4o2N3GP8K5%2FuexImzHhX%2BX%2BCeDbhNYmCy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e5ae10b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F | 172.67.152.175 | 200 OK | 38 kB |
URL GET HTTP/3bmo.sa.com/login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
etag: W/"15d84-616ebc8028d40-gzip"
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QgdwDOvHUtqQTYcn%2BcXjMI4OcOuPxVvsJ0JSJABT9SKsyWpiMFKdroRhbUdDiMfefCf06j%2FCK5JCvdG0Q78rk6M2FQYBfbZaLUbRnmVQvYYvkr7al3T%2FKfg9I2mk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e5ae30b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/login_files/Logo_Master-Reverse(1).svg | 172.67.152.175 | 200 OK | 3.8 kB |
URL GET HTTP/3bmo.sa.com/login_files/Logo_Master-Reverse(1).svg IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hash9256617ff3587d2a6e669765544011aa 56374110d91ae43da040b2d6074082bad289c7f3 57f2a79c0c447b629348a97b9dabaea0596ebced897a64c3f3f77a7a5c138324
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/Logo_Master-Reverse(1).svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
vary: Accept-Encoding
etag: W/"662a5acd-ef5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sh3WFijPXYFh2TPM%2BHt6L5NnECnidmMHhARJTkNlqQINK3aKNQYRxrcWzXL2XiKdsTIIGzbrrFqHJ6SWy%2BM8NS4H0l15%2FfclFZcrpuTvWYgqrDklD6nBVsf2LjoJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e4ad30b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/assets/images/bmo-logo_2.svg | 172.67.152.175 | 200 OK | 2.2 kB |
URL GET HTTP/3bmo.sa.com/assets/images/bmo-logo_2.svg IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hash9ad5272aa281180ca604b472f6a20ecd 5c4fb5579743f0a859bad799c23e209e89bd8ae1 9c483d1c02a221c041f279c0d8f74301e6ec39ab666b13c6ea65314e6bea7a0a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/bmo-logo_2.svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-89b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=upFvj93G7Pvm3WoJbCTh0Te0Ns%2Ff8AFciyKFmjozceF10JbxFcjJU9%2BLz8HlausMFoiJukg1aRIZp%2BHE9hQsis1IwxTh9YTVZt2srdCFpyRaoF5RHNKpglFGzgHy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e4ad70b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/login_files/Logo_Master-Reverse.svg | 172.67.152.175 | 200 OK | 3.8 kB |
URL GET HTTP/3bmo.sa.com/login_files/Logo_Master-Reverse.svg IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hash9256617ff3587d2a6e669765544011aa 56374110d91ae43da040b2d6074082bad289c7f3 57f2a79c0c447b629348a97b9dabaea0596ebced897a64c3f3f77a7a5c138324
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/Logo_Master-Reverse.svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
vary: Accept-Encoding
etag: W/"662a5acd-ef5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X6ViCo%2FL55eSsucar7ZsMAerdzJ9zBiCieXczX%2F9JmIoUu7%2BWHKP86TWI06RO0iDKpsX7YHPyk%2FIxDGmPC%2B6o6KiQxkj04r3O%2BXRN8ZU7W9EEUH10HjztIckfyRJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e4acc0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/assets/images/Logo_Master.svg | 172.67.152.175 | 200 OK | 3.8 kB |
URL GET HTTP/3bmo.sa.com/assets/images/Logo_Master.svg IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hashcc7e515d9803f675c078fab93fb82c44 6f736baef39f70ba3c3b7eaea5179cff09c9f410 dd2573228e20a1b91a05f24f1d980e573746c94d69258d61a9a0f7f9b13ab4eb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/Logo_Master.svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-ef4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2BayWxee92KrBeD3MkQbsNgDQiF8sr%2BEXALnqE2sNDbw7%2BQXLc9Ji8OuITYN2piY506XEGL8%2BlZYwxFDfAki3fG6v4YkARle6xHFzVOBjnfDfvifj4fKNtnEycL%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e4ace0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/assets/images/minimize_icon.svg | 172.67.152.175 | 200 OK | 242 B |
URL GET HTTP/3bmo.sa.com/assets/images/minimize_icon.svg IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hashf6e33203dd67db19508d0e5656bbd5fe f5c5ee14c4dde28a2e0655d9c02a4f71b8c346df 6fb609f6b9760747b55fa262330106b254cf160689958948fc64fe9fecfadb2c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/minimize_icon.svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: W/"662a5acc-f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k6egvTFw2zuMCZj3xIEOQKL9Ps2SZxi7invIre1vdtP%2Bjo6NlFajYwMowlQgPvMse80e9uKgiO4R00dZq7XGhXLEb%2FcFA0qBPgvWbJuOEXOJPPXNyMrSEiXMX%2Fh1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0a09e5adb0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmo.sa.com/login_files/Logo_Master.svg | 172.67.152.175 | 200 OK | 3.8 kB |
URL GET HTTP/3bmo.sa.com/login_files/Logo_Master.svg IP172.67.152.175:443
Requested byhttps://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE CertificateIssuerGoogle Trust Services LLC Subjectbmo.sa.com Fingerprint83:D3:04:D3:BD:83:49:F6:29:5E:83:37:FA:59:CB:A5:E4:A3:D7:A6 ValidityThu, 25 Apr 2024 12:47:41 GMT - Wed, 24 Jul 2024 12:47:40 GMT
File typeSVG Scalable Vector Graphics image Hashcc7e515d9803f675c078fab93fb82c44 6f736baef39f70ba3c3b7eaea5179cff09c9f410 dd2573228e20a1b91a05f24f1d980e573746c94d69258d61a9a0f7f9b13ab4eb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/Logo_Master.svg HTTP/1.1
Host: bmo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmo.sa.com/login.php?gad_source=1&gclid=EAIaIQobChMI5pPHpIDehQMV80dHAR1o3A5VEAMYASAAEgKJC_D_BwE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:09:26 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
vary: Accept-Encoding
etag: W/"662a5acd-ef4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CfRsYakwQQC6ywHPnCAHrrTKlicPLV7hcEmFcutVDQr2ALZKx2x%2BDZ8HmodrHpSP0WLM3Gk1DYyuMgfJw93HpFkQgAe7Jc0i8T5WQKB0zq2VgnlA0atWifln3Bln"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0a09e5ae20b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|