| check.dhl-trackinged.com/img/dl-about-us-gci-2022.jpeg | 104.21.34.155 | 200 OK | 24 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/dl-about-us-gci-2022.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 385x216, components 3 Hashfd959636f75d0d73c719997afd857e85 9290eed491ea7a89f9f52dd7d965cbff1015562c ce53d17ee820f24a6d21e858e3c20f5b8fa8f7a39388f1c2ff20906a0d23b309
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/dl-about-us-gci-2022.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/jpeg
content-length: 24205
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:57:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8AA4k0lbcU3WpPWDw9cxnx5fx1onrFKOsca9nNP4HK2x6AwnBNSLg8WkogFmUPWmXDzKftpKjVi5bROj4f2XknHJJwYQe6IkMdBOAxTelw44N9qCOlR9WwJimAAe25bM%2F0r7baFvE9WtNeE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c494b9cd56a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/booth-with-automotive-visions-0001.jpeg | 104.21.34.155 | 200 OK | 26 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/booth-with-automotive-visions-0001.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 385x216, components 3 Hashbf7ace1b10a9945b069a1a899a15caef 595e9e586bcb7161820c11b8118d8332fd9bd843 47a26bd22c96d96dc0c6adcc217ea095c3fe071e657d04fdd022cb0423976ad7
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/booth-with-automotive-visions-0001.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/jpeg
content-length: 25901
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:57:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bHbo5y7mOotbcmI2Ju4TyDOolsYeFZ35Ts6%2FZ9pRquHHe%2FI2l57rE0vWgBAWfdvmGI%2FE2NFYObRzdhJf2dS35v9cNQUiFxeZFaD9n3oUZGXXsZT5wGzOOCFafXcap0KL8XXc25SwGd%2B7%2BFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c494b9c856a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/workers-in-warehouse-0001.jpeg | 104.21.34.155 | 200 OK | 266 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/workers-in-warehouse-0001.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3 Size266 kB (266186 bytes) Hash90a376c3cd4faa4c3579c2e8d5540071 8acaf40b974c53ee1645e1820e1f41b6e5964db8 9f709c306c5c297d7c00d80ca9f9e84680b0f1eb9f072a21b66a9cc5c7a1a182
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/workers-in-warehouse-0001.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/jpeg
content-length: 266186
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:58:04 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Xi82Fp%2FJ5s3Xtj9eb8lZRrVPaUnbkqwjWGY6Ly1XEO8nWgbHEHtQFncSYsfX3gihQOFajJBToKPHx92LdsFyYGsTlUSyyL8hqjN3Mo5fqQpYmrs0Og%2FEUHj0GYNBdaeQLDZfIDRHzGWdvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c494498156a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/truck-drives-through-forest-0001.jpeg | 104.21.34.155 | 200 OK | 20 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/truck-drives-through-forest-0001.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 385x216, components 3 Hash12e322462ae192ea3d69ac08689f41a2 869245a3e09f63fc10b78ac796957b7c43ca535a e922844fae454443ede03cbdb8840f30bfebd9495bb2f2096e6eb0ba5bb33425
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/truck-drives-through-forest-0001.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:58 GMT
content-type: image/jpeg
content-length: 19459
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:57:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Of7WPmBFjeEYXlD9O%2Ft1s4j2vo%2BAdyJteBrGYa5XsRwNvACQoh1A0Aak8AYMKdrRFaTRpIpIbKbcU%2BSCYW4JgMzifb%2F49dnAA5ImVmFuV1IsAHoqWkFsmtCPi%2Bmx%2BSYrilz1Pm1hNuXbmVo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c494a9c656a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/employee-receives-customer-signature-0001.web.1365.428.jpg | 104.21.34.155 | 200 OK | 60 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/employee-receives-customer-signature-0001.web.1365.428.jpg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1365x426, components 3 Hash8b1148108ccadf77fb8a01d46fbd8e21 3e2a81860af86fd0007fec30822816c97be9b15f fa300ed3935c81827019e1d9417674b0356c57c9d4b933b7fb9596350da6d75b
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/employee-receives-customer-signature-0001.web.1365.428.jpg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:58 GMT
content-type: image/jpeg
content-length: 59922
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:38:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o5cDVo%2FM0jXUc220uPu9R6LsYekdSAqe1GuTFJnHXEPlGAkRMFGhlUajB86%2BhUR8ob5VX%2F0sX2p1QECSzYHnBiCayEyllwXtmlOsgDyFFyl1ilWVDwK1ojBjFTDX8PnkhsYEyye1qN4VPqs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c49499af56a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/woman-signs-for-package-0002.jpeg | 104.21.34.155 | 200 OK | 132 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/woman-signs-for-package-0002.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3 Size132 kB (132214 bytes) Hash57cc63f2a031e76792dc07303b88ab39 0efe21e77d302897e5b32375c2545f54f84d3c4c a0bef149b9ee6896bb177c57e681c0c5913ba4eaa3c4ba881758b619789cf9c2
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/woman-signs-for-package-0002.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:58 GMT
content-type: image/jpeg
content-length: 132214
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:20:14 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4dChQ%2B3CRx35pl7yE0p1qkQkr9%2F4d%2FHNTUKlKsbYpDrZuNQul5JZUk6He54rbA45JcuYugpRgr6wqRxLFdfs29AMJtJv3df5vbUOvAfFpkdQw3TxwhkI%2BqBV82QVzSU5CfzoosPytqewOL4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c494a9c156a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/workers-at-the-container-port-0001.jpeg | 104.21.34.155 | 200 OK | 188 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/workers-at-the-container-port-0001.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3 Size188 kB (187987 bytes) Hashc70790f3fe6302040b3b239d1b893d2a 817460122f877c12ab4c17f974f9e6eb84826766 5b6c8d868c510905e0e0ddd2dec2c25cb9581f18dd6159e137919369451d50d4
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/workers-at-the-container-port-0001.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:58 GMT
content-type: image/jpeg
content-length: 187987
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:20:12 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GzFAaw8N3aO3dw%2F0pY4n474oIJgwAOrFZFAYXoNvjOw5dNQh6wLb4ezQ%2FN41lmY1P%2BF4MMPNzw8x48CeobvIGlCbATXILiXKp8kQuOXqWZF00q2lJpOlZJ5snB4JhdVDZQlZ2KRrt5IfEKE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c494a9c356a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/employees-working-in-warehouse-0005.jpeg | 104.21.34.155 | 200 OK | 133 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/employees-working-in-warehouse-0005.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3 Size133 kB (133103 bytes) Hash6623777f5fa26395aceb01ff5d33a784 655bc54a1d41eb3c7a8a30b7d8beb754efe5a3a3 98b552b411ab22afde008948a6858de1b8c4aef07d1ca1d7a275c559b7eb07a5
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/employees-working-in-warehouse-0005.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:59 GMT
content-type: image/jpeg
content-length: 133103
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:20:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f%2B2EVaKzbNbtOBTrbi3IUCnyMuVWzQTipI3KcUz6WRO9QxbO28NcP4vn4zY9HQDmkpU9O1ObP5B0hjekBe5wV0gvRfQhGenKJddyhZ0aFOiISo2L%2BgLz5cLtVxgLaVOXNhWtH9EcyWr%2B4m8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c494a9c456a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/js/bundle-utapi.js | 104.21.34.155 | 200 OK | 13 kB |
URL GET HTTP/3check.dhl-trackinged.com/js/bundle-utapi.js IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hash121b1482acc4b8e54883e6341e23249d 5cb9b1def2faad04e9cf4566a09ec374de5a03b4 e84e9194ca1619735f8d431dc61b37e3cbe72e0365a5ce7eab3d3a967cbc36cc
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /js/bundle-utapi.js HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: text/javascript
last-modified: Mon, 04 Mar 2024 18:30:06 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GE1a78zRRnOVW35%2F4vTZHCRSd2Si1BMNKdMrSCM3SLneLgpMmGabuUIxVL3rGp5I46ELk%2BjPAi8L3YYDh6Nuu7AGVv5MviKu2MvmBOW7W%2BpK3eBGLiVEhYCeMfD3KGvr6HwG%2BayI9bvjJyA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494d9e356a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/js/bundle.js | 104.21.34.155 | 200 OK | 134 kB |
URL GET HTTP/3check.dhl-trackinged.com/js/bundle.js IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJavaScript source, ASCII text, with very long lines (365) Size134 kB (133617 bytes) Hash5aed19f69a9b8b56bf7fa4aab524970e 7350b787bce9fcb3e3e81f3e9bcc654b38018369 18eea30a6761ff88ec2a229c39c8e14940d61f91ca58c637d41c9ab666631763
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /js/bundle.js HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:59 GMT
content-type: text/javascript
last-modified: Tue, 05 Mar 2024 15:39:24 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8AxRQJKBd0t8Aa%2FWACimHSrQibNKLqGWeKXCwoHNVAruITFWJDOBwpYx7A5iL5B4ptnk4lRdNnlJpvuZQVHY9vuFnY7t3BvI9XrAX1aeYVlsfnIHdIiCC5pzfzMk8aHWz93Lt9t8sawn14E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494c9df56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/deliverer-opening-vehicle-0001.jpeg | 104.21.34.155 | 522 No Reason Phrase | 7.1 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/deliverer-opening-vehicle-0001.jpeg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeHTML document, ASCII text, with very long lines (460) Hash94f33d70b5317f91228b06869c8cfc0c a875ed050c0cbff62f38c932c806e4a2f81e32a2 0f9f4c768ec46acdbeec5e6634768f3f498366934af57daff013158ca98a5b03
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/deliverer-opening-vehicle-0001.jpeg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 522 No Reason Phrase
date: Thu, 18 Apr 2024 04:04:11 GMT
content-type: text/html; charset=UTF-8
content-length: 7132
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t4tjwwc9g9qXJgx7UxddSJsp319HFGGA8Fl%2BndKqCUd93xvI89D2vnR8Kcfx%2FcjPrpOYiBXbMRVX0SgeRTYpDULA0qsxs8cpXeGp8lbjXkPFhPBZL0PYHX1sxoCg%2FA6sETUCvGxwZ%2ByhGq4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 8761c494397b56a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/ | 104.21.34.155 | 200 OK | 566 kB |
URL User Request GET HTTP/2check.dhl-trackinged.com/ IP104.21.34.155:443
CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
Size566 kB (566223 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 04:03:55 GMT
content-type: text/html
last-modified: Tue, 05 Mar 2024 15:47:12 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8O6Yi%2FTn2Hi9H%2FeyyxIURwKu8%2B16PUTzviDmoizCObDtjKgcjt9NmNpM2NiLgGNHLF1nj0d7BSvTz1rDJ86IDlnWB1FUurXD%2BJpg2G%2FhZJSwFtP9qm2tswYq8j0LjMpO9jWGxv4tANDwuiw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c48f293956be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| check.dhl-trackinged.com/img/facebook-new.svg | 104.21.34.155 | 200 OK | 1.4 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/facebook-new.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash761c42dbcbd83dd03c6e0e0358ced519 18435ed527b40140523e7c935c12200f3044b81e f324ef6a0a5597d012faea961499ce97df905e35a4be4e8570fd2f4c951781cd
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/facebook-new.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:08:56 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LvtHM5rPV8RvfmCvY%2FQPdqyn4740ShNpDk7bUKQHJyeQ1SDhLXnjzxGalvpmhRV%2BhwJsB9nzntt1DQAiKDXVCuKX42qBsmCO1h0TL3APs3Sxk5ZVdYXWzj2WJxyRMPe0dfzg1eIwxWyBP0A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494c9d656a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/css/bundle-utapi.css | 104.21.34.155 | 200 OK | 21 kB |
URL GET HTTP/3check.dhl-trackinged.com/css/bundle-utapi.css IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
Hash77c60230363ba113b96884aa2bbefcd7 4ba19146e8246e59916da96a40af9e3a5abd1177 e94c6b0fa451a55c7d9361be45bdcb5f2394d3bfa4ddf8b927fc342fa62e8bce
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /css/bundle-utapi.css HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:04:02 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5RhkhSm7ieGBi%2F4eILax96clJ6L5ioy60qYdleShxGG0jnX6VzgSPaEDnr%2BsAiHaBuXbILXgLA1j14ggyY%2BFQr9OJ17bGCDToay62RH2YsjC3n1Kc8B%2F51XQW%2FN4Kmaqsroef%2FzLhc9A2mg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494396c56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/js/anubis.js | 104.21.34.155 | 200 OK | 23 kB |
URL GET HTTP/3check.dhl-trackinged.com/js/anubis.js IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJavaScript source, ASCII text, with very long lines (23256), with no line terminators Hash1aa867ac6682cde0e94b950ecec48e69 dda3fb293b570cbe8fc0ce6c1fae8dc2525239d0 312d2097e7d567afde6f3245ca91c4c75a05c1570bfd503216c08b6868118f15
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /js/anubis.js HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:56 GMT
content-type: text/javascript
last-modified: Tue, 05 Mar 2024 19:16:12 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7YAILpl5px%2BwlY4CLQjPcatHXvD6PUoR%2B7vvAcMBRrbkRf6qHasniV4Fz13v76c78sQbEmyvTTLhgGnZ1JuOh3lHOOa7ZTq3zpsiAFkt3P3FS4BK8IjOSj2LXv2%2BttWhh2skz2Z17V0CRW4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494397256a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/favicon.ico | 104.21.34.155 | 200 OK | 1.2 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/favicon.ico IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashd8106bf3a1d00ab43b01e6e3c92500eb 202b5e8654ab1b28351378293bca3b9d844cc29b 9ada5709e264c31b04a05bd85448a9bd5e91925e8d83df5cef0762ec97cc283e
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/favicon.ico HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:04:01 GMT
content-type: image/x-icon
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:04:01 GMT
last-modified: Mon, 04 Mar 2024 19:14:30 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O9KLQXnaEADrP4jXxFsBeqlYX2RSCvpgtwsbIiwHLZQun1GE3n43scap1ya7mVZHftsP4wU8sM5rwWIY47ts9s%2FQqWteLLR%2B377ecvVQ9L8BZXcCJMN575ShxenVU0sktMf2NQMw0%2FzN7x8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c4affe8356a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/css/bundle.css | 104.21.34.155 | 200 OK | 913 kB |
URL GET HTTP/3check.dhl-trackinged.com/css/bundle.css IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
Size913 kB (913443 bytes) Hash4c3869afcf0179729b7052d12bea26a1 82b4d454327b62149cb543a5992f4d3661b426a4 55067834bd6b01531459a83538170c4dc96970ec6444fea23a46dbe05bdb15e8
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /css/bundle.css HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:58 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:03:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RBIL7goMKiMzHNhEuzgh2tvwtIkJ32y8KOcsWvawTRZh%2FvuVN7W2SnAKp72cgnL%2FSK4erjvz2k4%2FiaJAqRFFFQ30JcNNFKNKB42bASn41VAbMAa47l9PmcCU9dXwUKZaGeDPKrb%2Bcxw4Il8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494396a56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/glo-footer-logo.svg | 104.21.34.155 | 200 OK | 4.5 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/glo-footer-logo.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash8f37de832621c4bdc03b3ec5dc89102f 0d541c551bd89a54f728da1742c87cc839f25333 3993bd27849b8e4418664102b2a7d84b37e39a8f77dc1e6457c45ad4098c8514
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/glo-footer-logo.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:08:58 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9RuF7IuChi0DesB9bNpIHEAsqBDDERBqcphUUXzrYEynTIkLauV5QGjnM4pmJTqxbseiAzvQPj6TOtc8MobNYb1AlA8nCPe%2Btpzaiog51tMec%2B18Y%2F4R7eqW2p%2BAXtRzX7%2BbcYkaid9PplI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494b9ce56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/instagram-new.svg | 104.21.34.155 | 200 OK | 4.5 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/instagram-new.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash00065a4ffd8620e0daca6af7aefbfb39 92cc496ae1f427693d6b891c7e5db9266cbba999 6a1d2fa05879d3712869458c8c95cf7a21d2c8e922097bf659f9faaab5a232a3
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/instagram-new.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:58 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:58 GMT
last-modified: Mon, 04 Mar 2024 18:09:00 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z0ZkTGcXQ90mNOkSO4Go9dxCFidwfMjsA4sDdePizuu4zXgnK4WRmWY1SNSt9XuLt3PpoOyzQ%2FFi0UNTv4MEied6fWYfLlavjmIiV2ANf1LiixCLNhlJlfTYSKu9D8ciACAbmuyPJbAidB8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494c9dc56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/js/jquery-3.4.1.min.js | 104.21.34.155 | 200 OK | 88 kB |
URL GET HTTP/3check.dhl-trackinged.com/js/jquery-3.4.1.min.js IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators Hash2f772fed444d5489079f275bd01e26cc a8927ac2830b2fdd4a729eb0eb7f80923539ceb9 2b381363dda049f2d49a59037b228bc865d51ffb977c8f5c3547d5c28de48e3a
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-3.4.1.min.js HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: text/javascript
last-modified: Mon, 04 Mar 2024 17:55:32 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dd3I2RskPRfaq%2BMXHI83yjqijUPlnrviqvHZ008StP4N51nZUN8kGi6xoFHhJk4WjM4SZkySyHVfmnHt6NDe%2Bv3pdSGDJd47mGrb3c%2BEvOe2CttbI8MOIx5s%2BqTQ9qpKM0Xcsr3l61PSHw0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494397056a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/glo-core-getaquote.svg | 104.21.34.155 | 200 OK | 786 B |
URL GET HTTP/3check.dhl-trackinged.com/img/glo-core-getaquote.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hashe4a0c304a3883316de56b287d45a5709 18a14d51613f7149a891ab95ef9b9f1944a0d04c 0ae746888bbfa8c63398b222647c1c6b1a28b4ac5a6a4c9af6b64472f6264e2b
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/glo-core-getaquote.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:13:34 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HqWu%2FQMa%2BhhF%2FA%2BliIht0XRUaw1RNx%2F2Q5nP9NT8%2BKsf3neo70VHvndUjuwrFST4vLerkvJnBi1elLx03sgKIcEJnB3lqbP7MpxTDAfmLeKjVBkSMQSg2Fn2A0XsH0nO%2BSswsxe4zDGupwc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c49499b856a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/globe-rgb-red.svg | 104.21.34.155 | 200 OK | 1.9 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/globe-rgb-red.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash466a17ac6caec603628930553c7e4d02 537278f4ec58f6deb67af18fced2fa8f8cfb0a16 2f619532dec81d71cb527ad6e5508579a33f452869f2f669a370253a1d0f71a5
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/globe-rgb-red.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:15:32 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gCmqRma7IbEd4Ml09Gh%2FYhdkGA6Jt1PqQHDBfuv6xnRAgVE5coawHGbhEjSRui1HnDoAnFBqNsEma9UzECzturq2NzhcjPW9OUqK5ZSub%2FIvzCksKJdIs9D9Ahdi%2B6mW%2BJKuAxZ1RaE2AZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c49499bd56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/linkedIn-new.svg | 104.21.34.155 | 200 OK | 1.6 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/linkedIn-new.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash730bcfccbcc08137f809f22dc2d123db f7a1d9f253df1e93b9b3db8636d25cbdeee5787b e8d1c56a40d02306a8a570b9dbb490b04e50b4c27c40f59d3b8ff137326d79e6
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/linkedIn-new.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:09:02 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nkjaG6aqKOe212bXTXxRWKw1uTfApz0iXahA0MerQepq%2F%2BoBFGLHuWmcBotTc%2F%2Fym%2FkrSzhUqHCwBxW23U9VLx9d0ncRIPsod%2B2a86YgXWNs8Caz03GqcC3eK2QfEyoJCY%2B7gyKgOsYpHI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494c9d856a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/manifest-received-rgb-red.svg | 104.21.34.155 | 200 OK | 437 B |
URL GET HTTP/3check.dhl-trackinged.com/img/manifest-received-rgb-red.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash6ed50d3e71a66343489a379a5ae262df 17f74ecb225bf91df48a2f721317cb116d59cf7b 017547860b7e703c1e89d12094dddc353a18d96f91a7ad16e7d0fe76d59375ac
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/manifest-received-rgb-red.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:17:46 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hk0B2DYsphskBM4S8oBUVPVJWHOM6SAoBJrnPB8VOET67rFhDn%2Br9W9Gx0Fwa6fBxyfWzGJu72VEr9o3hGKVQkLp51S1HDYUKcNVmjzAjjD31glurFGss4O8R2jes7JZx%2Bkmy6D4brEzrYM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494397c56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/mobile-phone-rgb-red.svg | 104.21.34.155 | 200 OK | 1.5 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/mobile-phone-rgb-red.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash390cfa239fb2e4acfc6cccfcaa54e44d 5148cdfe3d213328f304907cf369d5ebe9623a78 7021c56abf8f1ea376fc1d9f8b4b0c59dd062cfd214eb9de843ef28f0b3bd958
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/mobile-phone-rgb-red.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:15:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v6gK9guCpmNq%2F1FfzLum3LotU967H%2BFThBkG8tMuGU8Q9MmaQJ9rB05NsrgJldH3Z0%2BVbMEyabmOTeJ6bFNkMdsFBs7dMBPvGWG4kz5va6zumPLyGOITFASo8V80MyNWE2QwWo8FS7MYt8o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494a9bf56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/calendar-rgb-red.svg | 104.21.34.155 | 200 OK | 235 B |
URL GET HTTP/3check.dhl-trackinged.com/img/calendar-rgb-red.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hasha76acfa4b8b3fb3b48161f0aec6363da 2b0b0bc29a3c8681dfa34547ac6ac09a2e5f26ba cdf88b747566b0157d581c823581d362ceb8b448dc658339aa4b4b9144bfdbb9
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/calendar-rgb-red.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:56 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:17:50 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3BvL5aGLGE7ITHfKryqtWxiTaT0IvEB3avfa0mOMngree6JNp%2FesLrj9vYzBg2rHUl3zpq9Pa5rf1A7ZbtWDqunHfSokLNVj7CXQl0GezfBwh66bx%2BGv9P7AeRNqWIaYWqnhvzZ3UwoDJDM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494497f56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/glo-core-online.svg | 104.21.34.155 | 200 OK | 1.8 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/glo-core-online.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hashf4bbb03250e47a7f0a2bc7558710de67 a034732cc70ed8a8376031cb2317f4b7e5d45366 df8a552fb91f3078e31a3904909de6db583e0fdb728e32e136ab08e0218687ef
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/glo-core-online.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:13:38 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RqFRxTM0MftoK1tGX24%2Bt8cMhMz8L69A3zftaBoshEWLh0QQklShSx%2Fq%2BQnot39Wh92PvThenCOBXdhbY5gjuFU23TxUtE0jVOgEmpVMYkHyHwp%2FIzZYQPLzGuzlgqJvyKZVXWqq1cga61o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c49499b556a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/glo-core-gogreen-warehousing.svg | 104.21.34.155 | 200 OK | 764 B |
URL GET HTTP/3check.dhl-trackinged.com/img/glo-core-gogreen-warehousing.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash5bd5b760bfdedd5da9b6e5de499bd3bb 82f09c4b3d9b859c369a634601375974648c2fc5 787c4ea4ca1c8927f887a40c7210357a9aa9e855bcda5a789d81c5a4d1172756
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/glo-core-gogreen-warehousing.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:57 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:57 GMT
last-modified: Mon, 04 Mar 2024 18:13:42 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4hjYWB8PGcwxMiRFo%2BY0VuCek5EY8loxyeYFpWQqlUVXKHyfRIhv7e7A0IU%2BDFMul0QEQ7sLbrc1k%2FjMfFnh%2F%2FknEMTN3b7M9QlOWJBBLirsXfmqdW8VXoGFfSL2myf9jGNkSg9t1KDZZfA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c49499b956a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/youtube-new.svg | 104.21.34.155 | 200 OK | 1.4 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/youtube-new.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash2829dbd0e273cc479b3b76228366c561 d61df11e3f0f20ce954ad0633f93c6bf99e6e674 02c065202f5cd15d0c116421d7a3e9d2f7298062e4c24de3c9290d9109b795f0
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/youtube-new.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:56 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:09:04 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iSB9IAWeJg4%2Blusxcxn%2Fbgki5%2BWGi8LUpPWwrJb1bDR2e8yVTloHHFfdzmis4%2Bqgz1OCXRd0FkFlweWcriOaSGIJmUzegYzmZDxJO5TFwRP8yu3Clx9wlGKKOBvYFIf%2B1%2BbTu9F1LWp7dkU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494b9d156a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/dhl-logo.svg | 104.21.34.155 | 200 OK | 1.6 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/dhl-logo.svg IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typeSVG Scalable Vector Graphics image Hash81da319018ec6b19d902b2403f7b017d fc9e5d348bf1394d29114340e224e8f92b543e19 5a3d930217a60c991040b3bcd1d3c42e5860a395461cc04454d5626cf0869bfc
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/dhl-logo.svg HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:03:56 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:03:56 GMT
last-modified: Mon, 04 Mar 2024 18:08:50 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bJG8%2F0lhX7PyrVa2mRLA5N1ZkTtSDMHlKarv2K53Kh%2F1SVQCvC%2FXbVb5OPnPZQo0Y8N5Mhe5ELG0yAeYWZuDjerSH9bZOXDOAUGA%2BrgjNOncLu%2BI9jRFJHRbb0X0HZWKBrS4SWnwRKvFv9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8761c494397456a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| check.dhl-trackinged.com/img/apple-touch-icon-180x180.png | 104.21.34.155 | 200 OK | 1.2 kB |
URL GET HTTP/3check.dhl-trackinged.com/img/apple-touch-icon-180x180.png IP104.21.34.155:443
Requested byhttps://check.dhl-trackinged.com/ CertificateIssuerLet's Encrypt Subjectdhl-trackinged.com FingerprintE6:40:C5:FE:CB:9A:18:37:AC:01:BE:B4:B2:92:02:19:10:3E:A8:19 ValidityTue, 05 Mar 2024 05:19:27 GMT - Mon, 03 Jun 2024 05:19:26 GMT
File typePNG image data, 180 x 180, 8-bit colormap, non-interlaced Hash6e5f4e072a2793f9d9cd2a6974d5ccc9 df0d0b28ae71a37dd321d33435c3143a446e2741 148a09a41b13df86b44d2a1f70e2482e5d31fd91ce540a0dbe016011a5fd29b9
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /img/apple-touch-icon-180x180.png HTTP/1.1
Host: check.dhl-trackinged.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://check.dhl-trackinged.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 04:04:02 GMT
content-type: image/png
content-length: 1173
cache-control: public, max-age=604800
expires: Thu, 25 Apr 2024 04:04:02 GMT
last-modified: Mon, 04 Mar 2024 19:15:20 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZgPzauekOZ6pggTrMupNjCTD9ACxyLNcQd92xIsG%2F2e%2FDH2F9lyr3qULHRP%2F7c1OHsMqQMYqveJhMKcKL0t57q5dfgSdo3kuObCTGRYZP8rpNA4OY7D%2FTEbf9qMwzKdKVlHYTekvK6553j0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8761c4affe8256a5-OSL
alt-svc: h3=":443"; ma=86400
|
|