Report - danalogin.myco-id.com/

Report Overview

Submitted URL
danalogin.myco-id.com/
IP
172.67.189.121
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 04:49:47
Access
public
Website Title
DANA | dana.id
Final URL
danalogin.myco-id.com/main.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-15	468 B	18 kB	216.58.207.234
danalogin.myco-id.com	unknown	unknown	No data	No data	7.9 kB	273 kB	104.21.41.61
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-15	1.1 kB	98 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/main.php	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA
2024-04-15	medium	danalogin.myco-id.com/	DANA

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	danalogin.myco-id.com/lib/functions/jquery.min.js	87 kB	2023-03-07	2024-04-29
Pretty URL danalogin.myco-id.com/lib/functions/jquery.min.js IP 104.21.41.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-29 21:19:52 Times Seen26178 Hash 4b57cf46dc8cb95c4cca54afc85e9540 05e1ad0cc600a057886deaf237ab6e3d4fcdb5ac a28ccf8a7b50522bdeea0cd83cdeca221c18fc1f9df3ee6b3d3c48d599206855 Loading...

	danalogin.myco-id.com/lib/functions/jquery.mask.min.js	8.0 kB	2023-03-07	2024-04-29
Pretty URL danalogin.myco-id.com/lib/functions/jquery.mask.min.js IP 104.21.41.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:57:10 Last Seen2024-04-29 07:41:05 Times Seen583 Hash 3c5a930556557c059672c932ee1cb6f4 210d6bbdf03eb055b3c9f4857ae39a7919298fbd d0ee3b624c75591bb550d49f508a38d0bdff62b8d8a30c59ffaf0c97a4ce494d Loading...

	danalogin.myco-id.com/lib/functions/function.js	751 B	2023-06-26	2024-04-29
Pretty URL danalogin.myco-id.com/lib/functions/function.js IP 104.21.41.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 01:49:46 Last Seen2024-04-29 07:41:06 Times Seen471 Hash 2a9d4437a54b47f78477d1459d62c412 2403968db940767ccf7a7e8dcc0b8362765439b4 ba311fcee8109c988cd072dbbbea6e7b0145eb603b2854b650c66050cf75280e Loading...

HTTP Transactions (20)

URL IP Response Size

danalogin.myco-id.com/assets/img/dana_text.png

104.21.41.61

1.5 kB

URL
danalogin.myco-id.com/assets/img/dana_text.png
IP
104.21.41.61:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 252 x 58, 8-bit colormap, non-interlaced
Size
1.5 kB (1466 bytes)
Hash
fd841b9e9127fb1190033b5194629e01
3e0110740cfb85144a8c31836dc5d72af8545a3c
7b29d4f79db97e3b622e8e4ff6fc2cc8e12189d1b32e105fb48315b2c052c339

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/dana_text.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:22 GMT
content-type: image/png
content-length: 1466
last-modified: Mon, 31 Oct 2022 06:38:06 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hDcR8sOSgvYqcMpT44sMtCBGtNpU2XayCJmMyYQIRChIjBvzAnIwoY0pF1odehPmfZNI94xvPHc4qMFoy4a9HfJnhpXPnmz7m66hycFn%2FUCF2rI8zRjlz8EHvJLBmpULNYfSzI%2Fr0qw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c62af5156b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/favicon/favicon-16x16.png

104.21.41.61

200 OK

768 B

URL GET HTTP/3
danalogin.myco-id.com/assets/img/favicon/favicon-16x16.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
768 B (768 bytes)
Hash
9c237fdaf513b1de8a5c885cc339ab14
99605f4126631e418dd9ae9a0580e229b889f6be
98de91ef2980f306d783292453164b76a7fc9f67f4352d5c82a4827702024388

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/favicon/favicon-16x16.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:22 GMT
content-type: image/png
content-length: 768
last-modified: Wed, 02 Nov 2022 08:48:18 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=priN7gguzwUsvBbKc1BRbdEtsfEF7n%2BQiDQIH1IcQ836o2jZMFUAsUqa6Xdvrf4YmSsOaA%2FBsqvSJ7FBebYh0izNdtqaIk8%2BmzeTWuByVYUps1zD3As7kzbaOPHVEqukgbtOr%2FMUQec%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c64a87b56b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/footer.jpg

104.21.41.61

35 kB

URL
danalogin.myco-id.com/assets/img/footer.jpg
IP
104.21.41.61:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 814x167, components 3
Size
35 kB (35291 bytes)
Hash
c562bd188dc2a037a7802f007e864e75
79175aec8e6fc423994abc828524891be8f60132
d55b6db488cde763d6b9f8793537a30a9ea4238be9cf270d9b0dd47f7fe0f7ee

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/footer.jpg HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:23 GMT
content-type: image/jpeg
content-length: 35291
last-modified: Wed, 02 Nov 2022 05:17:24 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HFEuQjgs81i9NXpdy2EEWizwtjtAlQhgdfRrXAUonp8QGn%2BmZKiUkr8DIZhP8T0xtwT1XtRvIfcr3oipgZOUsw%2BVdo4IchXjJFd58zhwjmS6mcR%2Bb%2FEtkwvb0z86jgANftEsZLa%2FFL4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c62af5256b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/favicon/apple-touch-icon.png

104.21.41.61

200 OK

25 kB

URL GET HTTP/3
danalogin.myco-id.com/assets/img/favicon/apple-touch-icon.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
25 kB (25146 bytes)
Hash
7f5605d87563fde0035dda6b741020c1
34373fc74f78f5da678f82cf3261dd45aa93a665
21be7b34d93ddd125e009d7b8cd6efa0f7992bc907374ec0887a333c99d212c3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/favicon/apple-touch-icon.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:23 GMT
content-type: image/png
content-length: 25146
last-modified: Wed, 02 Nov 2022 08:48:18 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h%2Fa%2Bpy8MjjPs%2BPwFq4H%2BMvzXDnkarwP4NSnrELbD9PwPQM%2BRuGcRX2t6UZF6GFUYjTTdL6SW9HfGQBab%2F4RUk3rzrY%2FUR8cyb0iMIwCJcfJBEmEbUITdfLn%2FyibzLLOiC3MudaCEv5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c64a87856b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/load_spin.png

104.21.41.61

200 OK

5.1 kB

URL GET HTTP/3
danalogin.myco-id.com/assets/img/load_spin.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 200 x 200, 8-bit gray+alpha, non-interlaced
Size
5.1 kB (5078 bytes)
Hash
e8e4e4432355a07040a7327673850223
b07f6cfaacb6a2093778b08dd8d9b8f7d718c119
50b4bad00572d07c6158459a5cb93b1b3f9bdea95d393aa56970afded2f58913

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/load_spin.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:26 GMT
content-type: image/png
content-length: 5078
last-modified: Tue, 01 Nov 2022 20:12:08 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8PQiHpQvwhLguS%2FZ5AS46EKdnTKXdBvfAXpG4P5eYNIBiIcavglggyt5yEKPyhJ6MjVpvx4%2Fugu0ij%2FdfM2MccSoFfPPV%2BPrSlEzPUZdi40VT9Vy9wfe%2BsKwqMpTaJPQ8EEFxoJuOuw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8b056b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/lib/functions/function.js

104.21.41.61

200 OK

741 B

URL GET HTTP/3
danalogin.myco-id.com/lib/functions/function.js
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
JavaScript source, ASCII text
Size
741 B (741 bytes)
Hash
2a9d4437a54b47f78477d1459d62c412
2403968db940767ccf7a7e8dcc0b8362765439b4
ba311fcee8109c988cd072dbbbea6e7b0145eb603b2854b650c66050cf75280e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /lib/functions/function.js HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:26 GMT
content-type: text/javascript
last-modified: Wed, 02 Nov 2022 01:12:18 GMT
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=juSzzIXZkkjKo2xvA1lAsW%2FBMP02ZSZRxhCO59F5Ni1sVMfmi0YIRrcSVrUsI%2Fw6psw4iAxUyzbMuCRid3HL7ZRJ8FHl5mQupz4RA%2BoRliS7%2FbfTVNp30V9a6bXzUM7EZor%2FgoU%2Fjxg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bc8b756b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/indo.png

104.21.41.61

200 OK

741 B

URL GET HTTP/3
danalogin.myco-id.com/assets/img/indo.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 80 x 45, 8-bit colormap, non-interlaced
Size
741 B (741 bytes)
Hash
c15c95b8db17f44e5826bb7839278578
5be0ab5aba6201a0a3a3423f9db8008ed2385430
af52bfb0ab7606d185db1457ddc3edceb61c7fe9675e099cae3e3be1eccf152c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/indo.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: image/png
content-length: 741
last-modified: Sat, 29 Oct 2022 18:42:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qgQ%2FBpY5JT%2F%2Baph42gjw1HQfry37jQXMzl8FAiyt8t%2BN50nB3v2NxyiYThQpa%2BCrLfOzcUb%2Bz6gny7ytPu9nRATOk7KNF%2BR8eQfhxvLpQf29K5sYfkCH9YvOBgzl4q%2FZw55g%2B%2F9OccQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8a756b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/load_bg.png

104.21.41.61

200 OK

7.9 kB

URL GET HTTP/3
danalogin.myco-id.com/assets/img/load_bg.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced
Size
7.9 kB (7863 bytes)
Hash
bf1d4a90de7e29b2be55237982cb30b4
ef942049631b598767fda52d54458b9f9680ee87
46518758f002d85cff9220609163f23b7e9f8f2721561d1e0ba79c4f17425c58

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/load_bg.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: image/png
content-length: 7863
last-modified: Tue, 01 Nov 2022 20:12:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ojzFJ7Via9NEEm05IMltBTslVdJgrKxorFZdE4%2F7N7UfJ7qQslLB410%2F7IvRsH775iFdA75wNRbwJ8IobZ6mds4UG24lvnW%2F2XBaeG5YCEv7KRqG%2F5Ipce1HK0IRjm%2FOyyDns8lg6G8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8ab56b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/back.png

104.21.41.61

200 OK

1.1 kB

URL GET HTTP/3
danalogin.myco-id.com/assets/img/back.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1091 bytes)
Hash
17f283c873070f034cb9ef54a1a0c853
68850d1e164c97993dc91ed47e95ed40feaf95e2
56a3d46407a0b9246a8daf55b136656b08b23a07948e524df10bba09d94b41f5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/back.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: image/png
content-length: 1091
last-modified: Mon, 31 Oct 2022 06:11:12 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JjpI1lDHAhwIp00acWYYmQGkNkz8ilSylVn9Y8LxJvCCbQPbTcOPfIeZ4TPE7XUbsbB3q5PqzZW8yjOtP1BQ914kw2%2FC4oSbb8QYT1KnRTHjkpCTfWV4Bq8eQn6Cv1r3soIA48V2BGs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8a456b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/dana_logo.png

104.21.41.61

200 OK

13 kB

URL GET HTTP/3
danalogin.myco-id.com/assets/img/dana_logo.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 382 x 112, 8-bit/color RGBA, interlaced
Size
13 kB (12786 bytes)
Hash
6fd5a7d18a8f7c04bc5effcdc5235987
c4852c577f44fcdf78fb439a30ea2c6c6983b140
c67e5431f9c00bb690ea8b8add63d5ca9250bf2925f2c2a691eeee498ac75853

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/dana_logo.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: image/png
content-length: 12786
last-modified: Mon, 31 Oct 2022 06:38:08 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k4U%2F9BmyBYxDxBQqjj0LTOSJUMnN59%2F2kPml9NYwvHc0yQW1bc96diHDjFxlqS4wVVbzznSd7EBqG3St9m3B46q4mlniErzrF3tP8LedZV%2BIhd6Hz49Z6K%2FLcwsIca8kyOD01vPoouU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8a556b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/lib/style/main.css

104.21.41.61

200 OK

3.0 kB

URL GET HTTP/3
danalogin.myco-id.com/lib/style/main.css
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
ASCII text
Size
3.0 kB (2951 bytes)
Hash
98724ff0163583453f77cf9b730a037b
0711539f8341b1c862bcfd0594d7fba8efbe34f0
bcf55bf0c2335cf8a12fe7ef89e291586160cae4b72a81b9e8fbb41ba0ef5025

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /lib/style/main.css HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: text/css
last-modified: Mon, 15 Apr 2024 08:35:12 GMT
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sCa6htKr%2BaJaqUyqPSwdjLgu0oqSWRvr%2BxLCIXqXMfHiIYVvFtBa1WCMcZQ2XNEzd8kx2a7ZfTItXFY1Y2VT20TJ2RQ3tGoNTC5ocp8uY5wrfcwwSfRpniNi7wT6RcpnJdNwWoOsaNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7ba8a056b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://danalogin.myco-id.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 440067
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

danalogin.myco-id.com/lib/functions/jquery.mask.min.js

104.21.41.61

200 OK

52 kB

URL GET HTTP/3
danalogin.myco-id.com/lib/functions/jquery.mask.min.js
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
JavaScript source, ASCII text, with very long lines (551)
Size
52 kB (51645 bytes)
Hash
3c5a930556557c059672c932ee1cb6f4
210d6bbdf03eb055b3c9f4857ae39a7919298fbd
d0ee3b624c75591bb550d49f508a38d0bdff62b8d8a30c59ffaf0c97a4ce494d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /lib/functions/jquery.mask.min.js HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:26 GMT
content-type: text/javascript
last-modified: Tue, 01 Nov 2022 14:40:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5dKYaFdkMKlZO031Az36DO4UUmxVA7qhLtW6ux2IbCrm9qtdSlKhxC8UrP797CJuX%2FC1KOXGJ1B8fVrszELtO8lISLwNizRRG9mDWZO2NZ4cYQa%2FRjC9zyHJGuKM0eXl0Xf3JBw26BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8b456b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://danalogin.myco-id.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 440067
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

danalogin.myco-id.com/assets/img/favicon/apple-touch-icon.png

104.21.41.61

200 OK

25 kB

URL GET HTTP/3
danalogin.myco-id.com/assets/img/favicon/apple-touch-icon.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
25 kB (25146 bytes)
Hash
7f5605d87563fde0035dda6b741020c1
34373fc74f78f5da678f82cf3261dd45aa93a665
21be7b34d93ddd125e009d7b8cd6efa0f7992bc907374ec0887a333c99d212c3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/favicon/apple-touch-icon.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: image/png
content-length: 25146
last-modified: Wed, 02 Nov 2022 08:48:18 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gep3U2NG9gSdzh51kBwmXOOl5lOYjwPFbwFbdWZPZIDPQ%2B1k3NWYHIw3lFbOKzanEz6KwoSTq5X0BCCqNEyywFjQAoS4r7DP71n26mGtDtbuxYk8xL49S9WesPQWG48uUztV1EOJ3AM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c81fe1656b7-OSL
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/assets/img/favicon/favicon-16x16.png

104.21.41.61

200 OK

768 B

URL GET HTTP/3
danalogin.myco-id.com/assets/img/favicon/favicon-16x16.png
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
768 B (768 bytes)
Hash
9c237fdaf513b1de8a5c885cc339ab14
99605f4126631e418dd9ae9a0580e229b889f6be
98de91ef2980f306d783292453164b76a7fc9f67f4352d5c82a4827702024388

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /assets/img/favicon/favicon-16x16.png HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: image/png
content-length: 768
last-modified: Wed, 02 Nov 2022 08:48:18 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJe6YIum9hRmjbwnwUSQNEDwCWXygReQ0ISZWmNLMEQLKLneVHYnD0%2BF%2BkyXdJpnDxVWN9alJyE6DMVvHmyXhhY%2FvJubWD5y3QwahXlgcQxLgV1Gq87QYcqmKYbqErZnAIyfM6DPHOw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c81fe1956b7-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap

216.58.207.234

200 OK

18 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (1572)
Size
18 kB (17451 bytes)
Hash
71b2730c1cecf7a0768725bd944422c5
8dfa323cb988538bce8556a99bb5bd556e3593d1
851699a18b631a7bd68efc99598701293a6065b463fced7b68d8d6d9227bd8e7

HTTP Headers

GET /css2?family=Open+Sans:wght@400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 04:49:27 GMT
date: Tue, 16 Apr 2024 04:49:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

danalogin.myco-id.com/main.php

104.21.41.61

200 OK

2.4 kB

URL User Request GET HTTP/3
danalogin.myco-id.com/main.php
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
HTML document, ASCII text, with very long lines (2589), with no line terminators
Size
2.4 kB (2417 bytes)
Hash
3a0d2939fcade80e4f42ebd0c2ff3aba
5cb934f5d3725a3a4a45936a2417813115c50488
520cdf0879e408b8401f48c03855fe9feafa0d264884cb2c7f28722f05af2b2c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /main.php HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:26 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J3%2FFcrbTJ5UcJpvhLJPrsHdvUGbAzjmJABNXObcpw3RRGhfeqANIZCTI0ycL0MLs41F%2FrpohE6g2NFtFdYssnNxzy3PSUJCLivz96id9j16CeNwZrM7%2Ffa6OF0NsW1%2BrbYQzGL9QtMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87518c7a3f8456b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/lib/functions/jquery.min.js

104.21.41.61

200 OK

87 kB

URL GET HTTP/3
danalogin.myco-id.com/lib/functions/jquery.min.js
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
87 kB (86926 bytes)
Hash
4b57cf46dc8cb95c4cca54afc85e9540
05e1ad0cc600a057886deaf237ab6e3d4fcdb5ac
a28ccf8a7b50522bdeea0cd83cdeca221c18fc1f9df3ee6b3d3c48d599206855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /lib/functions/jquery.min.js HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: text/javascript
last-modified: Tue, 01 Nov 2022 14:40:30 GMT
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vwt483F80oAfVbmPPGx18MWPHd6hV%2Ff7gOWcx4j5UuQCywlc5qi8NURDqbqMzD2yM6wFm5g5%2B62DvjKqfZvxTxaZotjTTn6kald%2FrU1seaCBnHs6IecVlCx8Hzw7pamvxIa%2FXnxnB8k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8b256b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

danalogin.myco-id.com/lib/style/spinner.css

104.21.41.61

200 OK

1.2 kB

URL GET HTTP/3
danalogin.myco-id.com/lib/style/spinner.css
IP
104.21.41.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://danalogin.myco-id.com/main.php
Certificate
IssuerGoogle Trust Services LLC
Subjectmyco-id.com
Fingerprint97:44:6C:2A:F7:48:B2:F9:28:34:1F:DC:2B:B4:41:B9:1B:E6:E5:59
ValiditySun, 14 Apr 2024 01:59:48 GMT - Sat, 13 Jul 2024 01:59:47 GMT

File type
ASCII text, with very long lines (1240), with no line terminators
Size
1.2 kB (1191 bytes)
Hash
98f9b918c94ed513be691a3928c26897
f1d9cfc6406635cec7fcd485f0626df510db8900
9179b8d360a37e6143c8852cdeb6b7a013d8eeccb72e6cdb242af92b48bbff3e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /lib/style/spinner.css HTTP/1.1
Host: danalogin.myco-id.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://danalogin.myco-id.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 04:49:27 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 00:00:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zY5WvfiXQKo%2BKORlZoD2UiPu8%2Ftr9t%2F%2FyH5TnjwgD0OwVVItC33XqMN2wgl7GiaGSrqzbJ%2FbDfiG38TRqoAi542Vaq%2FL4zZQ1WFjMfXDpZ0OKRrIkdAVyn%2BkNK0LNzyu0hZXRnWNCzo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87518c7bb8a356b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (20)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type