Report - simbolodigital.es/ch/billing.php

Report Overview

Submitted URL
simbolodigital.es/ch/billing.php
IP
217.76.155.244
ASN
#8560 IONOS SE
Submitted
2024-03-29 10:08:25
Access
public
Website Title
Globale Logistik | Internationaler Versand | DHL | Polen
Final URL
simbolodigital.es/ch/billing.php
Tags
dhl logistics phishing
urlquery detections
Phishing - DHL

Detections

urlquery
32
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
simbolodigital.es	unknown	unknown	2021-09-29	2024-03-06	5.1 kB	52 kB	217.76.155.244
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-03-28	511 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	simbolodigital.es/ch/billing.php	0 B	2023-03-07	2024-04-29
Pretty URL simbolodigital.es/ch/billing.php IP 217.76.155.244 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 03:48:16 Times Seen37170422 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (12)

URL IP Response Size

simbolodigital.es/ch/billing.php

217.76.155.244

200 OK

1.5 kB

URL User Request GET HTTP/2
simbolodigital.es/ch/billing.php
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
1.5 kB (1464 bytes)
Hash
1b1025ca7338f666be742f83d06e16d7
3de6ca7fe3e461d9d22e14a754d14aa302cba894
291fc851077fea1c600fae9a9356859d2120eabb39de805cc3593e22ca908f98

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/billing.php HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: text/html; charset=UTF-8
content-length: 1464
vary: Accept-Encoding
content-encoding: gzip
x-cache-status: BYPASS
x-powered-by: PHP/8.2.17, PleskLin
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/ssdsd.JPG

217.76.155.244

200 OK

7.9 kB

URL GET HTTP/2
simbolodigital.es/ch/images/ssdsd.JPG
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 28x28, components 3
Size
7.9 kB (7949 bytes)
Hash
fdd21be8e8d91f9612828bbdb7747a73
450367143011e254d1778cdce71748d768cb9259
7dcdd04db64c3edd7e9868c6238b622d33caee1e7bdadbf2623d801109eefef1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/ssdsd.JPG HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/jpeg
content-length: 7949
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-1f0d"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/customer.svg

217.76.155.244

200 OK

1.6 kB

URL GET HTTP/2
simbolodigital.es/ch/images/customer.svg
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1623 bytes)
Hash
1b371d3a7372c07184eceb85cac5343c
47e5f403e20e06ad64e32488e5707249d9f8e6d6
0c3950f8653400246636960456db609af841feb691e53911e763ee282616a390

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/customer.svg HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/svg+xml
content-length: 1623
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-657"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/saba9m.JPG

217.76.155.244

200 OK

8.0 kB

URL GET HTTP/2
simbolodigital.es/ch/images/saba9m.JPG
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 28x23, components 3
Size
8.0 kB (7956 bytes)
Hash
9c39dfb4e67c4e51c573e9206c531644
097e34f53e6e287377bd18f31be3cb69111b6815
d1b64fb7749d0d3c905c5244660a21f3d8e29699457f2889274c8a717742b6c5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/saba9m.JPG HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/jpeg
content-length: 7956
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-1f14"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/dhl-logo.svg

217.76.155.244

200 OK

1.6 kB

URL GET HTTP/2
simbolodigital.es/ch/images/dhl-logo.svg
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1603 bytes)
Hash
3fecc9db35d5d2a9e6e71ab4b02d22e5
628ba2f505b480097445aaf08649a08242bd6847
362bcaa42090e36611031bec6bdaa0600375ef847092cca195c58d3bae9b4419

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/dhl-logo.svg HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/svg+xml
content-length: 1603
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-643"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/feedback.png

217.76.155.244

200 OK

1.6 kB

URL GET HTTP/2
simbolodigital.es/ch/images/feedback.png
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
PNG image data, 35 x 126, 8-bit colormap, non-interlaced
Size
1.6 kB (1577 bytes)
Hash
50b476a98e8a8fcab1eac59777d9491a
e7c94532df83b7d56e5e6512408b342c6eeb9591
3221db8f898b88e467ebbb8ae155a37bd02087b3df197ad5c4ecead06db08cdf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/feedback.png HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/png
content-length: 1577
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-629"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/socials.JPG

217.76.155.244

200 OK

9.1 kB

URL GET HTTP/2
simbolodigital.es/ch/images/socials.JPG
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 238x49, components 3
Size
9.1 kB (9110 bytes)
Hash
8d8989b7f5fe29cc63b1843962399e4c
ec2b7cd2f1f624832c59836779a742c0ed9f20dc
1ace605596027318737abeca712c7a0d6d76f753cf82affba37c3d2f44862ae4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/socials.JPG HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/jpeg
content-length: 9110
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-2396"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/headermobile.JPG

217.76.155.244

200 OK

9.1 kB

URL GET HTTP/2
simbolodigital.es/ch/images/headermobile.JPG
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 185x56, components 3
Size
9.1 kB (9061 bytes)
Hash
5bd5e8588c60476b1f05d3a98097bb9a
d5cc42e7f3ac4e3f99f37d0133b6aac3ad18e810
c600aea2fa4dad3a13560e01bedf9e6c45db0571c3257d9e53e51c4f8fbbc41f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/headermobile.JPG HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/jpeg
content-length: 9061
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-2365"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/searchloupe.svg

217.76.155.244

200 OK

329 B

URL GET HTTP/2
simbolodigital.es/ch/images/searchloupe.svg
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
SVG Scalable Vector Graphics image
Size
329 B (329 bytes)
Hash
3d7de098db257a26983280a316b9dc09
bb56940343b38534d1427390bc91cb251dfa6d18
fd85293d457b5dc514838dd7d5c7c1509a7eed60e23cb32ab9303666833eb98a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/searchloupe.svg HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/svg+xml
content-length: 329
x-accel-version: 0.01
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "149-5f643bafdf300"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

simbolodigital.es/ch/images/icon.png

217.76.155.244

200 OK

2.0 kB

URL GET HTTP/2
simbolodigital.es/ch/images/icon.png
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
PNG image data, 120 x 120, 8-bit/color RGB, non-interlaced
Size
2.0 kB (2016 bytes)
Hash
d011458153ebafc72aa151494c00df0c
65463bc6d44eae53813372c11c4b0ac843011d27
97f7ee4e158d34feb59abf8d05fb3782f57d1c62d6ef8dcff7a26be6ad54c6f9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/images/icon.png HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: image/png
content-length: 2016
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: "6406786c-7e0"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-04-29-22-13-57.chain; p384ecdsa=9JAas4cRZNdAWlkyHnYimGbmAXG3EoRWABBchD6coWc7mrNy7kfKdXwQlb4mB8FnJ6syyteL2_IRwTRsQLY7ItAz4a7L1Apo3Ew2W3GgnzHYJPzcGhiXCnATmaeC5ghy
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 29 Mar 2024 10:07:00 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 79
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

simbolodigital.es/ch/css/header.css

217.76.155.244

200 OK

6.3 kB

URL GET HTTP/2
simbolodigital.es/ch/css/header.css
IP
217.76.155.244:443
ASN
#8560 IONOS SE

Requested by
https://simbolodigital.es/ch/billing.php
Certificate
IssuerLet's Encrypt
Subjectsimbolodigital.es
Fingerprint36:AE:29:6B:FE:94:61:4C:20:D9:73:A8:D2:D7:2B:0C:86:7E:C4:F4
ValidityFri, 23 Feb 2024 21:07:13 GMT - Thu, 23 May 2024 21:07:12 GMT

File type
ASCII text, with very long lines (7008), with no line terminators
Size
6.3 kB (6320 bytes)
Hash
c5fb5eff9fa94d9cf1e0635afb724e64
54499e44c20d7c00c9738c156511262e7f0fa5ea
1d9e09ed4b6deff36ce1b2d1ed43de6f110a365ca0c35cf9026544187f163435

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ch/css/header.css HTTP/1.1
Host: simbolodigital.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simbolodigital.es/ch/billing.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 10:08:00 GMT
content-type: text/css
last-modified: Mon, 06 Mar 2023 23:34:04 GMT
etag: W/"6406786c-18b0"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size