Report - edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank

Report Overview

Submitted URL
edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
IP
145.239.120.141
ASN
#16276 OVH SAS
Submitted
2024-04-20 14:07:30
Access
public
Website Title
Müşteri Portalı | e-Devlet
Final URL
edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Tags
e-devlet phishing government turkey
urlquery detections
Phishing - e-Devlet

Detections

urlquery
22
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-20	461 B	28 kB	104.17.25.14
edevlet-giris-aidatsorgu-islemler.app	unknown	unknown	No data	No data	5.0 kB	242 kB	145.239.120.141
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-20	1.1 kB	14 kB	142.250.74.74
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-20	2.8 kB	220 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank	40 B	2023-03-07	2024-05-03
Pretty URL edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank IP 145.239.120.141 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:07 Last Seen2024-05-03 09:41:23 Times Seen4747 Hash 6bd43cf0ae158526c6ab93dc3be79f28 15c289e342bd3fdf5b1e95f7abf25a2bc78bf357 7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/5.0.7/inputmask.min.js	102 kB	2023-05-19	2024-04-21
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/5.0.7/inputmask.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-19 11:37:21 Last Seen2024-04-21 05:53:46 Times Seen592 Hash 3cee7e9052eb3f97e5d0dfcfbe8dcf48 b2deec4fd0f1510a66a61565f9f3f71394ac6bb0 db82ffa65fe7193674430ba62870145e3637005f59077b7dea606d39cf4b0091 Loading...

	edevlet-giris-aidatsorgu-islemler.app/assets/js/script.js	166 kB	2023-05-01	2024-05-03
Pretty URL edevlet-giris-aidatsorgu-islemler.app/assets/js/script.js IP 145.239.120.141 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-01 12:55:36 Last Seen2024-05-03 08:18:37 Times Seen323 Hash 5aa332b5891e11ec6c0ceef84e83ba21 6199b80de81251c61234c9532c4fd6f55a44e148 9ea5de183cb4e7bbfd327d5d5283553f323e60e149bd3ebee310e81c5eda500e Loading...

	unknown	34 B	2023-04-11	2024-05-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-03 17:39:47 Times Seen76012 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

		Size	First Seen	Last Seen
	#1 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11	2024-05-03
Pretty Observations First Seen2023-03-11 11:15:57 Last Seen2024-05-03 17:30:07 Times Seen2127 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

HTTP Transactions (17)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/5.0.7/inputmask.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/5.0.7/inputmask.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65366)
Size
27 kB (26905 bytes)
Hash
3cee7e9052eb3f97e5d0dfcfbe8dcf48
b2deec4fd0f1510a66a61565f9f3f71394ac6bb0
db82ffa65fe7193674430ba62870145e3637005f59077b7dea606d39cf4b0091

HTTP Headers

GET /ajax/libs/jquery.inputmask/5.0.7/inputmask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edevlet-giris-aidatsorgu-islemler.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 26905
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61ce34d0-6919"
last-modified: Thu, 30 Dec 2021 22:38:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 238181
expires: Thu, 10 Apr 2025 14:07:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zVaeZCzfCaol9q%2F6PC4WQpClGUOcpmShaKiiFghfpuXOJxjtdNDyYBx5ljJgE8xWkFm988IbIjnHJnHqxTbI2S6ki29waGoh%2BrO3wtpyv%2Fh6E0UTHAzkysFHPqIhPwtnaK%2Baac9E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8775b2d60ece56a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/images/transparent/akbank-transformed.png

145.239.120.141

200 OK

29 kB

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/images/transparent/akbank-transformed.png
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
PNG image data, 500 x 200, 8-bit/color RGBA, non-interlaced
Size
29 kB (29112 bytes)
Hash
dfb26238240ffdae249b1c251b63869d
5d95c6481b393a96311c60c36499a01147b4b51a
c77a18f206b7f2824e885e82e1b6dddb4639f94ae022514e1974fd3b4f789cbb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/images/transparent/akbank-transformed.png HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: image/png
content-length: 29112
last-modified: Fri, 10 Mar 2023 21:27:30 GMT
etag: "640ba0c2-71b8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/images/form-progress.svg

145.239.120.141

200 OK

1.1 kB

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/images/form-progress.svg
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1068 bytes)
Hash
d57db381e336134adc11990f2f6863f5
67cfcefdf4c388118a149ad1749274419d1aa553
ff7498da718b1f50faeefae71e24ceadf4575da0692b84c9a1ad359daa1f2ff2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/images/form-progress.svg HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: image/svg+xml
content-length: 1068
last-modified: Fri, 10 Mar 2023 18:57:04 GMT
etag: "640b7d80-42c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto+Slab:wght@100;200;300;400;500;600;700;800;900&display=swap

142.250.74.74

200 OK

9.6 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto+Slab:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
9.6 kB (9643 bytes)
Hash
cc460612386168fd671c9e4847db9353
e71b4774ba02b97f384e823e3b8aaa5cd7940a40
a56bd2428380c448452db41c06ff767809341cc811fb6cba5db493713f20c305

HTTP Headers

GET /css2?family=Roboto+Slab:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 14:07:04 GMT
date: Sat, 20 Apr 2024 14:07:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap

142.250.74.74

200 OK

2.9 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
2.9 kB (2880 bytes)
Hash
9970fb6e1bec19fb093b5015c90617b4
7be2dde9151191385d2dd9d7bf8c0e1e1a8e8443
7946424e08f62c561af8e638162ad0f3e2df6c7878c3dafc2de913b6516527fd

HTTP Headers

GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 14:07:04 GMT
date: Sat, 20 Apr 2024 14:07:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/images/arrow-left.126.svg

145.239.120.141

200 OK

393 B

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/images/arrow-left.126.svg
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
SVG Scalable Vector Graphics image
Size
393 B (393 bytes)
Hash
5a1bb1e91af3b4c72eb2a509af3fe4ce
8b6218cd141ce0b85da3f2b7e09693267711eb10
945f7d25e8f885da3c77668f74ecacefa894dc535ac048f57a56e2b2fc2560df

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/images/arrow-left.126.svg HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/assets/css/style.css
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: image/svg+xml
content-length: 393
x-accel-version: 0.01
last-modified: Fri, 10 Mar 2023 18:56:58 GMT
etag: "189-5f690535ed280"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35328, version 1.0
Size
35 kB (35328 bytes)
Hash
7670dba29aa2a1560c5d711ea6f6b369
6a2a620d2972f139c804c5a8363c91eb1a7595f6
adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://edevlet-giris-aidatsorgu-islemler.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:26:46 GMT
expires: Wed, 16 Apr 2025 07:26:46 GMT
cache-control: public, max-age=31536000
age: 369618
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://edevlet-giris-aidatsorgu-islemler.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 214324
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://edevlet-giris-aidatsorgu-islemler.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 214324
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/js/script.js

145.239.120.141

200 OK

94 kB

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/js/script.js
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size
94 kB (94092 bytes)
Hash
5aa332b5891e11ec6c0ceef84e83ba21
6199b80de81251c61234c9532c4fd6f55a44e148
9ea5de183cb4e7bbfd327d5d5283553f323e60e149bd3ebee310e81c5eda500e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/js/script.js HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 17:59:18 GMT
etag: W/"644c0976-28671"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35328, version 1.0
Size
35 kB (35328 bytes)
Hash
7670dba29aa2a1560c5d711ea6f6b369
6a2a620d2972f139c804c5a8363c91eb1a7595f6
adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://edevlet-giris-aidatsorgu-islemler.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:26:46 GMT
expires: Wed, 16 Apr 2025 07:26:46 GMT
cache-control: public, max-age=31536000
age: 369619
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://edevlet-giris-aidatsorgu-islemler.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 214325
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/css/style.css

145.239.120.141

200 OK

65 kB

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/css/style.css
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
Unicode text, UTF-8 text, with CRLF, CR line terminators
Size
65 kB (64901 bytes)
Hash
86c9289dc8a13c80f14ce626d5774002
f2fc238df4d4af5c1469046de573ad6bf32d3b5a
91df9cadde6f62d90f4d002bf15beb40c67ff55938b829956044b4524cda0773

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/css/style.css HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: text/css
last-modified: Fri, 28 Apr 2023 15:37:42 GMT
etag: W/"644be846-24804"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank

145.239.120.141

200 OK

2.5 kB

URL User Request GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.5 kB (2524 bytes)
Hash
ca21ad262c68fbae7961bcb9d873dd34
249e438a0858afb44a04a9af0af8c01a0d49dbac
0563889d271d731e81d75189411ddbb311b21514ac412643540e032512375f53

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /login.php?bank=akbank HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:03 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi; path=/
x-powered-by: PHP/8.0.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/images/favicon-196x196.png

145.239.120.141

200 OK

39 kB

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/images/favicon-196x196.png
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
PNG image data, 196 x 196, 8-bit/color RGBA, interlaced
Size
39 kB (38550 bytes)
Hash
3290deb61511eee631e455d4d4c421cd
44c7b59e98a30682100ece6c8672715f3cfde979
cb0374314e49be2700c9f7c6c59be3248d2658cc0f426faed041928712b26475

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/images/favicon-196x196.png HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:05 GMT
content-type: image/png
content-length: 38550
last-modified: Fri, 10 Mar 2023 19:18:36 GMT
etag: "640b828c-9696"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/images/edkkds.svg

145.239.120.141

200 OK

8.7 kB

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/images/edkkds.svg
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
SVG Scalable Vector Graphics image
Size
8.7 kB (8746 bytes)
Hash
8e64c3f3a7c9d6ae7fc5b160ae557f46
a4e60b7e03393e230f7d6091d831f1c0878c659b
0e8c563883ec41151b10ec8b533b02f289531175e5ca2a816bc495edd38a6114

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/images/edkkds.svg HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/assets/css/style.css
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: image/svg+xml
content-length: 8746
last-modified: Fri, 10 Mar 2023 18:57:02 GMT
etag: "640b7d7e-222a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

edevlet-giris-aidatsorgu-islemler.app/assets/images/button-right.126.svg

145.239.120.141

200 OK

448 B

URL GET HTTP/2
edevlet-giris-aidatsorgu-islemler.app/assets/images/button-right.126.svg
IP
145.239.120.141:443
ASN
#16276 OVH SAS

Requested by
https://edevlet-giris-aidatsorgu-islemler.app/login.php?bank=akbank
Certificate
IssuerLet's Encrypt
Subjectedevlet-giris-aidatsorgu-islemler.app
Fingerprint90:03:D6:A6:BB:E9:F6:0F:56:D8:D5:51:3B:30:D1:EE:92:61:6E:76
ValiditySat, 20 Apr 2024 08:54:06 GMT - Fri, 19 Jul 2024 08:54:05 GMT

File type
SVG Scalable Vector Graphics image
Size
448 B (448 bytes)
Hash
4dad94e251e95103b0c152312d3b8d6c
38d5bfa135ea373a91c8914ad96702a69f154bab
3b210a6ade6f2c1135255f233b6978b668ac87c1e4ac8725d8f189d54bdaa499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /assets/images/button-right.126.svg HTTP/1.1
Host: edevlet-giris-aidatsorgu-islemler.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edevlet-giris-aidatsorgu-islemler.app/assets/css/style.css
Cookie: PHPSESSID=ouhpkioj1kntn9j9a32q2jcloi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 14:07:04 GMT
content-type: image/svg+xml
content-length: 448
x-accel-version: 0.01
last-modified: Fri, 10 Mar 2023 18:57:12 GMT
etag: "1c0-5f69054347200"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (17)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size