| evri-uk.azurewebsites.net/ | 20.119.8.46 | | 0 B |
URL evri-uk.azurewebsites.net/ IP20.119.8.46:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET / HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Date: Wed, 24 Apr 2024 04:24:26 GMT
Location: https://evri-uk.azurewebsites.net/
|
|
| evri-uk.azurewebsites.net/ | 20.119.8.46 | | 0 B |
URL evri-uk.azurewebsites.net/ IP20.119.8.46:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET / HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Content-Length: 0
Content-Type: text/html; charset=utf-8
Date: Wed, 24 Apr 2024 04:24:27 GMT
Server: nginx/1.24.0
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Location: ./RDGDESDZRFSYJNOI/index.php?FGDD=1#HDHKJDJDSSJDSJKJDSJDSDJJDSHYKJHGFG
Pragma: no-cache
Set-Cookie: PHPSESSID=12563ea1b07450d37e03268d80e0dad4; path=/
X-Powered-By: PHP/8.2.17
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/style.css | 20.119.8.46 | 200 OK | 14 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/style.css IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
Hash5b03ddc76ebebfeadc4a3559375e9238 1918e7c6a0dd141802972b332b807e539ae824b3 cf20e7fd34410497647a461041188998d49425751bda2a00ef6117ef520c1db5
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/style.css HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 13716
Content-Type: text/css
Date: Wed, 24 Apr 2024 04:24:27 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-3594"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/font-awesome.min.css | 20.119.8.46 | 200 OK | 31 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/font-awesome.min.css IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/font-awesome.min.css HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 31000
Content-Type: text/css
Date: Wed, 24 Apr 2024 04:24:27 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-7918"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/bootstrap-icons.css | 20.119.8.46 | 200 OK | 66 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/bootstrap-icons.css IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
Hash1a264f8a938f1bafd771567199eb3662 d0affd8c41b450d30d2bd71ae2b852ac073e960c db3bddf54dea690aa25839265e3ba48668aa86636da378edf0eba51fcd783daa
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/bootstrap-icons.css HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 65680
Content-Type: text/css
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-10090"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css | 20.119.8.46 | 200 OK | 245 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size245 kB (245195 bytes) Hash0e7b316bbfa05ebb12f509c977ade596 c7479dae05b1de9a6483cdbed90d9865afd06e2d e75b3d58f4a6de4da1072b4440dcc397e023a0c767a87cc115e1945de9e39833
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 245195
Content-Type: text/css
Date: Wed, 24 Apr 2024 04:24:27 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-3bdcb"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/common-core_SHF.css | 20.119.8.46 | 200 OK | 1.1 MB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/common-core_SHF.css IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size1.1 MB (1142942 bytes) Hash4116afed0a973ce3153f5f84520039e7 94429b21c611e1a0aa2ab0017771b13adb7c7917 3a82833500c773452fe869d6d63b59bd20a7ebec53654c140adee99c50f94abf
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/common-core_SHF.css HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1142942
Content-Type: text/css
Date: Wed, 24 Apr 2024 04:24:27 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-11709e"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/X911.css | 20.119.8.46 | 200 OK | 1.2 MB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/X911.css IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with very long lines (65027) Size1.2 MB (1156972 bytes) Hash907fc01032351c87dd0f534a4ad44c17 d6096b9b2b07c9c9228f443d3cf0c7e9f3bcb558 136f067fb5dd1b8e9184d7c450f7f7a11bc86a6c313ca2c6204013134f414e84
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/X911.css HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1156972
Content-Type: text/css
Date: Wed, 24 Apr 2024 04:24:27 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-11a76c"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/LOGA.svg | 20.119.8.46 | 200 OK | 1.5 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/LOGA.svg IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeSVG Scalable Vector Graphics image Hashebd457321737b7283fc190e9e0b8d958 8dd45e40859711fc03bc020e47d445f136fe799d 3cab710bf0d863a38b93c19f550eb94f4372e01ac63194da36b5c75c0198cce2
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/LOGA.svg HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1452
Content-Type: image/svg+xml
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-5ac"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/LOGAA.svg | 20.119.8.46 | 200 OK | 2.4 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/LOGAA.svg IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeSVG Scalable Vector Graphics image Hash7dbe1ad8f679061bd99b1d9d1f604781 9d91464547683b9e9524d3fcbfc4fe633d32feff ce17facd9f7c27b61cadb0bbce9bf976bb147533aaf0c8a6f2f6470779e3c23d
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/LOGAA.svg HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 2363
Content-Type: image/svg+xml
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-93b"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/dhl-logo.svg | 20.119.8.46 | 200 OK | 1.6 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/dhl-logo.svg IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeSVG Scalable Vector Graphics image Hash3fecc9db35d5d2a9e6e71ab4b02d22e5 628ba2f505b480097445aaf08649a08242bd6847 362bcaa42090e36611031bec6bdaa0600375ef847092cca195c58d3bae9b4419
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/dhl-logo.svg HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1603
Content-Type: image/svg+xml
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-643"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Regular.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Regular.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Regular.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/X911.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/bootstrap-icons.woff2?856008caa5eb66df68595e734e59580d | 20.119.8.46 | 200 OK | 85 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/bootstrap-icons.woff2?856008caa5eb66df68595e734e59580d IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 85044, version 1.0 Hash316400c09c0560b3812e58b3124bbf15 2314d4d73dd9ed7aa2f9d18d45e71ca0440ac0a9 856b3f9e0df4f7061c8948021c7cc6e6263d96c48161e7fe9e4fbefd0c69a085
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/bootstrap-icons.woff2?856008caa5eb66df68595e734e59580d HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/bootstrap-icons.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 85044
Content-Type: font/woff2
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-14c34"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Italic.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Italic.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Italic.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/X911.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/X911.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold-Italic.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold-Italic.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold-Italic.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/X911.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:28 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Light.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Light.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Light.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/X911.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Regular.475f432261db6051bb40.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Regular.475f432261db6051bb40.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/FedExSans_W-Regular.475f432261db6051bb40.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Bold.4659c1d4ddc84b4a3898.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Bold.4659c1d4ddc84b4a3898.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/FedExSans_W-Bold.4659c1d4ddc84b4a3898.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/common-core_SHF.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Italic.293f6c351bb0f40c453f.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Italic.293f6c351bb0f40c453f.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/FedExSans_W-Italic.293f6c351bb0f40c453f.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 | 20.119.8.46 | 200 OK | 152 kB |
URL User Request GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (47338) Size152 kB (152215 bytes) Hash9e34ed112a130f36292f94517ea4a60e bc5ae201ab9ff28880b4b2281d8d84c2505ef9ad f85de0a151a1b62e475c7ddb63658a13ee6d02a3ea0675dbd1f1e6ee2a5053bb
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/index.php?FGDD=1 HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Wed, 24 Apr 2024 04:24:27 GMT
Server: nginx/1.24.0
Cache-Control: no-store, no-cache, must-revalidate
Content-Encoding: gzip
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Set-Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff; path=/
Transfer-Encoding: chunked
X-Powered-By: PHP/8.2.17
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Condensed-Bold-Italic.4c1d6f58b86d3a9d2c37.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Condensed-Bold-Italic.4c1d6f58b86d3a9d2c37.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/FedExSans_W-Condensed-Bold-Italic.4c1d6f58b86d3a9d2c37.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js | 104.17.25.14 | 200 OK | 3.1 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js IP104.17.25.14:443
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (542) Hashcc290e6c3aeecf5021dd82ad8df2512a fb983aecd3940e8ebbfe5e74c8099cee9223c957 2a0db34dc14ef4b5ce73b230701c7561e5012667a4c9cb274ecab646e1474995
GET /ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:24:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 3074
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-2087"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1118029
expires: Mon, 14 Apr 2025 04:24:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XYe7lhmdmfwq8znaCQAzG4Ry999d6irHv3sBL4Ygl5ZOZH9PqcNBekeQpU%2BAUhXjWUbcX4SXx%2FQHXmVu0nk5yx22HIdA2dFBo4SxLRUj0bQ1nRnHwCmOJi4H0qFk3vJQq%2BEIbJgO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879352ee7ce6b527-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js | 104.17.25.14 | 200 OK | 418 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js IP104.17.25.14:443
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65317) Size418 kB (418541 bytes) Hashd5beb8fa265f90be5ccadd6b32b8672f 7bdc23c06b51e7e42c05de486680a3c18aa5ce5a 6a769e18b06859751eaa2259044a6ff76e3ddcd6572a516d8ce3a2d7b8c7538e
GET /ajax/libs/font-awesome/6.2.0/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:24:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 418541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630e6e62-662ed"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 729326
expires: Mon, 14 Apr 2025 04:24:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PSsxzxKKPfauvVuvlCQDABe%2F6pEgkFq9kYDE8osDc89W6Vla3k4bBN%2BV3GkCp5eBzHkaoNcQCg8GxJJJX0mSKkMapji5NSKDl%2FtZ27SE19jGGmsKRTaz3PgfZVpPItfNHW3TdL2o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879352ee7ce4b527-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold-Italic.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold-Italic.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Bold-Italic.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/common-core_SHF.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Light.774e3ae02978a9a76de6.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Light.774e3ae02978a9a76de6.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/FedExSans_W-Light.774e3ae02978a9a76de6.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/assets/fonts/FedExSans_W-Regular.woff?6wo4i3 | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/assets/fonts/FedExSans_W-Regular.woff?6wo4i3 IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /assets/fonts/FedExSans_W-Regular.woff?6wo4i3 HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Regular.475f432261db6051bb40.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/FedExSans_W-Regular.475f432261db6051bb40.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/FedExSans_W-Regular.475f432261db6051bb40.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/styles.5b3e5351d5009950b08d.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Regular.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Regular.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Regular.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/common-core_SHF.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Italic.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Italic.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Italic.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/common-core_SHF.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js | 151.101.193.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js IP151.101.193.229:443
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash0aa8d64e726c4a57adb5c88f9115996b 901169527507ff9e662cf64d8e361f359308970d 7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:24:29 GMT
age: 147251
x-served-by: cache-fra-eddf8230080-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23943
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.1.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.1.min.js IP151.101.194.137:443
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74
GET /jquery-3.6.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15e40"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 04:24:29 GMT
age: 14549155
x-served-by: cache-lga13629-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 11, 122112
x-timer: S1713932669.297369,VS0,VE0
vary: Accept-Encoding
content-length: 30957
X-Firefox-Spdy: h2
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/adrum-xd.99c2fcc5ccc30ea4d38a1a74eeb7a6a6.html | 20.119.8.46 | 404 Not Found | 114 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/adrum-xd.99c2fcc5ccc30ea4d38a1a74eeb7a6a6.html IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/adrum-xd.99c2fcc5ccc30ea4d38a1a74eeb7a6a6.html HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/.png | 20.119.8.46 | 404 Not Found | 114 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/.png IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/.png HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
Content-Encoding: gzip
Transfer-Encoding: chunked
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Light.woff | 20.119.8.46 | 404 Not Found | 153 B |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Light.woff IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashd47b646093dd84d34885a714ce4bd74e c4df23671b6440e29159093dc52cb8c4aa184597 6807c84bf35d67496e020c1528303b87d4759933c09817e514a7159ac689d352
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/assets/fonts/FedExSans_W-Light.woff HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/common-core_SHF.css
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 153
Content-Type: text/html
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/favicon.ico | 20.119.8.46 | 200 OK | 1.2 kB |
URL GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/X911/favicon.ico IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashd8106bf3a1d00ab43b01e6e3c92500eb 202b5e8654ab1b28351378293bca3b9d844cc29b 9ada5709e264c31b04a05bd85448a9bd5e91925e8d83df5cef0762ec97cc283e
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/X911/favicon.ico HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1
Cookie: PHPSESSID=5b4541f7377d111438188186bfcf9bff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1150
Content-Type: image/x-icon
Date: Wed, 24 Apr 2024 04:24:29 GMT
Server: nginx/1.24.0
Accept-Ranges: bytes
ETag: "6621a9d2-47e"
Last-Modified: Thu, 18 Apr 2024 23:16:34 GMT
|
|
| evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 | 20.119.8.46 | 200 OK | 152 kB |
URL User Request GET HTTP/1.1evri-uk.azurewebsites.net/RDGDESDZRFSYJNOI/index.php?FGDD=1 IP20.119.8.46:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerMicrosoft Corporation Subject*.azurewebsites.net FingerprintF6:7C:DD:E0:C4:2D:6D:AA:F9:10:99:23:67:99:71:8F:2A:36:6C:5C ValidityWed, 13 Mar 2024 01:26:53 GMT - Sat, 08 Mar 2025 01:26:53 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (47338) Size152 kB (152215 bytes) Hash9e34ed112a130f36292f94517ea4a60e bc5ae201ab9ff28880b4b2281d8d84c2505ef9ad f85de0a151a1b62e475c7ddb63658a13ee6d02a3ea0675dbd1f1e6ee2a5053bb
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /RDGDESDZRFSYJNOI/index.php?FGDD=1 HTTP/1.1
Host: evri-uk.azurewebsites.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Wed, 24 Apr 2024 04:24:30 GMT
Server: nginx/1.24.0
Cache-Control: no-store, no-cache, must-revalidate
Content-Encoding: gzip
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Set-Cookie: PHPSESSID=96768dff83c7235931072dc1c1bca8a6; path=/
Transfer-Encoding: chunked
X-Powered-By: PHP/8.2.17
|
|