| code.jquery.com/jquery-3.0.0.min.js | 151.101.66.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.0.0.min.js IP151.101.66.137:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32034) Hashd0212568ce69457081dacf84e327fa5c d6702a1af0378b2342f6a0692e77c169f580aed7 266bcea0bb58b26aa5b16c5aee60d22ccc1ae9d67daeb21db6bad56119c3447d
GET /jquery-3.0.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15145"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 May 2024 17:38:11 GMT
age: 20387692
x-served-by: cache-lga13625-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 8, 3921
x-timer: S1715189892.626480,VS0,VE0
vary: Accept-Encoding
content-length: 29995
X-Firefox-Spdy: h2
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-09.svg | 172.67.141.200 | 200 OK | 405 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-09.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hasha2171d6842b1a491f0e736a4c19b4b76 777224a21d672678519b3ea8eecd37447bede373 e4adf0b3b468c545952c8cae79eaea033f0e2f124c6c035dc71341a44478dcdd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-09.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"ea6a64a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BTNZ7l63lXqW9PM34CvU8A7sJjZvzXeYrZj17EdIqgCzPgnSFDv%2BPTDyZnq809zhg3IoWBkfslQSSzEnwkQRYHIGIin8cowjaC1UV6uFWeVj6upMaXIv2%2BvUaEamLY%2BZgIUJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5f97b0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff | 172.67.141.200 | 200 OK | 59 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format, TrueType, length 58690, version 1.0 Hasha6e2d3921c9ea0fd81897d9ae7a33ba4 bc31969f2fb1926a15cd678b3e573c37a44e5421 f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/loding_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: application/x-woff
content-length: 58690
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "8a7d96a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7020
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DzeiI5dAkr4VnjNO7pLM2Axwgyv3QxingIM7zSaSnlzHxfZk43t0FeSlkoE7ivn0EZqlS2PkUkIlo0FGmV5NO6gV4dLxRzvCmgD7rIsn66z%2BjkoAn8UB%2FcmQSI3AmlObhesW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d85d2f0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff | 172.67.141.200 | 200 OK | 47 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format, TrueType, length 46657, version 1.0 Hash3beb1cf49dc702cd4de8618eeb344dd4 080e1b4dc8b43ddb06961a3490857cdb936a8c2a ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/loding_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: application/x-woff
content-length: 46657
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "67b288a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7019
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Ml834snx1aZid264A1jYeXNtZkz%2FlSKIs0QUZFpIj3hlhabcW1yPyTYa%2BCguj3RwN3PfvpBzwb6cp7z9FdyPRd5pZ8BFpXkQfnl8KlrwjuuX9hQDzD%2BCev3JAQ8HPUOXRBb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d85d3a0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/favicon.ico | 172.67.141.200 | 200 OK | 6.4 kB |
URL GET HTTP/3usph.aqjoxf.cyou/favicon.ico IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash3f0f72ed57a54b97cda500bcf0545efb 2f252619c18e729d98e16b96d37cd7cd567b38eb 67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /favicon.ico HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/x-icon
last-modified: Thu, 30 Nov 2023 12:13:25 GMT
etag: W/"8d495b9e8623da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7019
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1ka5giqJj%2FOMTA5VlbJWHaYqSebgxrJus%2BvK9wSi1ITyTUt8Ch49F12ihRVXmVyRQWNoyjiYBS7kN16Evz2ZIzbk3nAWuXE%2FOLHvAcnkTvG8ej0rrnHJ4sZek3cqDtpze%2B%2FD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d8cdcd0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/Information.css | 172.67.141.200 | 200 OK | 20 kB |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/Information.css IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash8e3ed9106163dbc1484bbddc651d505a e8503df37c2a844076a9b43f4eb443cb5cefd853 8009effdd85ae4640ab0c8458c356b009b9f118d024dc9baf151c3c20efae958
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/Information.css HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: text/css
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"805560a3dc22da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zPjqA%2F9Xzqppmv9c1tRLpUIwOKp9Po8Y6LuUUUJ9%2FlhKWehXHkdBWNldzdOyYdsGP0QCzV%2BQaMQ%2B5iurtTb4QII2vAVX%2FqFQk0UOCU3IB54WoZHvoG%2B2bV2o3vNQmsXgC141"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38d5d94d0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information | 172.67.141.200 | 200 OK | 45 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash37374a11124b77989c6797e94e99c7dd 2487acaf5f582a07eaa7f74f4e77f798b5d23dae 5f745dbb8f110f10bd0249f39cce6355e18e7892277f5c4f5f7adb7e0b353357
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:14 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BJaSiEBJExNeOJ8xNOJtZKDp9LNZK4lT%2ByKT0wLqS2ew78rVMWgOvIR%2Bt8bKLYa9zNO9dqzDS7dzX4wn7Nk92LR1N62qb%2B%2F5QUWZSMdI0Q2n2Jme2NiwVtw%2F8jZPdRSAqL%2BC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38e518190b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/social-facebook_1.png | 172.67.141.200 | 200 OK | 1.9 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/social-facebook_1.png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hash5d1fed200f7befa569074a293cf2abed 11bacbc9debe99986d9a6e974e9a819aaa74be29 9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/social-facebook_1.png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 1873
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "a7ccf638723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1NC11%2F6JpT5V7GBstaCcqf38GYUQviyB6jzFkx70XKTUK0lKS4p%2FCj0Bir3Wzo%2FVA478hp2NucavNNi1MB%2FpQhei31MS03cifc7pTm4oNy7I77ve1bHSBX3RNF4v2I7y873p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea98c70b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/social-youtube_3.png | 172.67.141.200 | 200 OK | 2.5 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/social-youtube_3.png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced Hashe38ff6af4b8ff088fcb2dc92410b759b 529c88413dbc330fa05a0629b2084ca7931f453e c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/social-youtube_3.png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 2461
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "4779f838723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LxNzEUB9pDiFyhMxAIr%2BeoucuvI9R3bolhbGlCfSF2kdZUUbyj8y%2FcHtFoFSE67L3XJYEFd0yMfCDl3J69D6NeJOev1P3pbtOjE%2FcByb7odT57UPXp2yL%2FyjSrdEdEEj5L9G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38eaa8ed0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/social-pinterest_6.png | 172.67.141.200 | 200 OK | 2.3 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/social-pinterest_6.png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hash010bf7d7901ccaa3905cfe4b7c1cb50d 9c174f76a3ed50a173637d44793d6bc15a818112 67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/social-pinterest_6.png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 2325
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "7d68f738723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JAhS1JgTfnJ6re6EahmCHlacIsE55AYrCibUOcfZYRnGFbI1qGhbKvLIL%2FnXK0PN9TPRJM42IEY1VMTKOrVKttWL2Q2Pq4zx3Qh59fAVZExeiywrO%2Fp019NKZqdQkf3Sx9DW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38eaa8e40b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/social-twitter_2.png | 172.67.141.200 | 200 OK | 1.8 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/social-twitter_2.png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced Hash4f6b06552f2054fecb5a3ab3956d7a79 c1257b76200738ad53147be110920f84efd479b3 248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/social-twitter_2.png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 1842
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "684f838723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VjLbgXUnalWvbMTT0uIV5ks5RyvDpJ8eXLeMzazc1fjUSxZPp78ktflpoa9wjL3koKdP%2FQHh1qpVE31DQx7gQVEg6dhCaf4c9SgH20%2FJBae7iSvD3C5GZLjdY7eWgKuk8UZs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea98ce0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/go-now(1).png | 172.67.141.200 | 200 OK | 8.0 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/go-now(1).png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced Hash49754396635190a6532dd376acc76ee1 526df243e2adbf5719b082c5e04190ed40209ccd 0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/go-now(1).png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 8026
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "fc89048723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DucxaOG3UsFCuiXWgZAekAXHRVGIj3%2FT5ysI2veF5PSXnt%2Bqox8utX0gZ03RmIEdKYQMucXAyCVTt7In3hcOTLzeRfOjUDTkiNQlW6ji3%2BHwey2tfVrPQzXU2mwq%2FM6OZjsi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea88a50b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/go-now(3).png | 172.67.141.200 | 200 OK | 20 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/go-now(3).png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced Hash6311ef7a60f86d77aa48fcc48a675a31 96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c 70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/go-now(3).png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 19969
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "9dfeeb38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8M2Ke8%2BH3ei7BC4XvBa1iIac%2F3Kfbu3K5aRvyDgTrpDBVew6PoYStb0lLdatV%2BDjIduXbrywHTOQVGtKDtfCenJ%2BdmLxfVJAtsoesbptNMURjkbpaBK2%2Ba%2FhZUfdLZ%2Bq6uV0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea98b60b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/go-now(2).png | 172.67.141.200 | 200 OK | 38 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/go-now(2).png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 195 x 167, 8-bit/color RGBA, non-interlaced Hash9f377d3a52a7bed993f8e939c692f412 8adb6e6922e2f2da11c345ee370b71cbaa986c3b c33ed13837634b5dd468a0c80e72a9079fe3ece4a6960fe59510cdcad18deef5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/go-now(2).png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 38353
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "f425148723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pYO%2BfHlfYsVkGp3wDMw%2BWiPvs1ocoo5FpWasYtTyIovgxFIqlkY9YH0aET8F17IgIF7fR43pCGAeFvb5t0wEV5n2ahnGopskORO7imtedo9W3QQkMFUed73uohqM9aMQ3OhD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea98ac0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/go-now(4).png | 172.67.141.200 | 200 OK | 22 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/go-now(4).png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced Hash22ab573e325c944450873345437b0887 0446e4d20c824d38ef4d427cf7e025c8f034f11a d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/go-now(4).png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 22133
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "8073ec38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k7oC%2F7%2FGQ%2BfyqTwZDIzyJEcYGqJxHLeWLX1y1k8pMtjFTJldivoQU1waUNewhetXDgivn2fGaXaDmeJAPF5mlduMfPKAXnvMvCZnDxTVhUap5PZTuqQGoSw8S%2FYiK8C4x%2BIH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea98bb0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/go-now.png | 172.67.141.200 | 200 OK | 20 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/go-now.png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced Hashd0dad9004bae0df70b06b75557b1df62 4a080764de6b97902413f5c836432a30da348517 2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/go-now.png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/png
content-length: 20334
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: "5fe8ec38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8%2FhP%2FgXmxy%2FWvHCj%2F43nrhLf%2BzPgtpca%2Buz3WnBoSIq6OerkATTKONe8QX1ExVtZwFtiLfJgwljTAfr1JWpv0c%2BVqGsou9R8lD%2BwYb5LprDENFChjYm4Zk564oJgCFhHye1x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea88a00b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff | 172.67.141.200 | 200 OK | 59 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format, TrueType, length 58690, version 1.0 Hasha6e2d3921c9ea0fd81897d9ae7a33ba4 bc31969f2fb1926a15cd678b3e573c37a44e5421 f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: application/x-woff
content-length: 58690
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "8a7d96a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7025
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yyEisgD6hSCm3fQS67k9mzOZ6La%2FHX4IJyhtZY43ZI2QOZ7uwXTGPVV4P%2FxI0P2pR7d1uqDcHXKpYFHYarLZ8W2wBNef%2B%2B7MG1fkREuBNzfd0MrsPhj4yWgQAOCgmHM%2F0u6c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2eecc0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff | 172.67.141.200 | 200 OK | 47 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format, TrueType, length 46657, version 1.0 Hash3beb1cf49dc702cd4de8618eeb344dd4 080e1b4dc8b43ddb06961a3490857cdb936a8c2a ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: application/x-woff
content-length: 46657
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "67b288a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7024
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CEf9u%2FAzb6EM6%2FptFCMGvIuI%2FOqxvu8o6bpKaTDyOgRQMoFt4Fepns3H%2FAvmnScxo8tCxOzF97gb77cXtAwTWZIqOg%2FcYeN8ybNE1efOdMzxqhoFEh%2BSzvuHsIalKF4n%2FrkU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2eed30b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/tracking.svg | 172.67.141.200 | 200 OK | 6.2 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/tracking.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash2fb7b372aea93502ca192e5a633d1aa1 ce358703cce32b2176cf6ec94e17341cb6f93f03 58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/tracking.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"57d2fb38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l%2FmIL26VKUP6135VA5agRmidF%2BFBe7xXhPf54g5LnlIT2HNhHW%2BloZQrdM4iptlpoUQ6WFfyQszdao9r1qYFfC1YRrkALndtOI2RT0vZN12n3OerBVbfYYX%2F9aEhXi6epNro"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea78680b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/fontello.woff2?25542004 | 172.67.141.200 | 200 OK | 7.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/fontello.woff2?25542004 IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7056, version 1.0 Hashc2f69149d34302967cb855cb8771d78c 95da68f827f59b0433f555e31f3a2fcad53d5cc1 a376e85271d734105aa539b278decd23dd8fd190bbf1e4915aacd4613ee3553c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service |
GET /assets/fontello.woff2?25542004 HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: application/x-font-woff
content-length: 7056
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "531997a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lVyde57pJpzVJFzvT14bi5xvy1Okwz%2BF2%2ByDrdMenNXwO%2F6aktWDTHLxXcv2%2FGKC8ndXzOV5LJyUNZfy6Yxmmam%2BV15AnJB6k%2F%2F%2B3%2Fg305g0yp0TTOxkZeCCJjd%2FXvPV%2FofW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f32f0d0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 | 172.67.141.200 | 200 OK | 40 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 40372, version 2.655 Hash9bb1ce2aa7fed31792aa1750d0306831 6a538f9d945eaa6f7e8f97b4530183347d20bee5 5e284133b1b11165e7354b29cfabb5f214c473f0ca18198a49c052d8df3f172f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: application/x-font-woff
content-length: 40372
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "d4c88ea3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sAWCL%2FPUdMs4GtiwSi8V7ooixwet5CElwoazQ6vESBKE56jO1aU9O%2B%2B0EAzMVhqa%2B0qdyngo9lFen0%2Fi0qLb%2FVYV%2FfQef88y3x08dC9xxgMbHxhlmO79QFRcJ1f42UVv%2FIok"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f30ef60b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 | 172.67.141.200 | 200 OK | 32 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31696, version 2.655 Hash10290cd4148c956fa2287d2ab5c71631 0186c7c5f9e12701022362effcab5c7f08ef0a29 0419465d8b720ca4a1a4307e1aaf37c9c1fda715473e458a9e7d1a94854c68e3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: application/x-font-woff
content-length: 31696
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "a99684a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j3cz6TYLjBvVRVVlhYpbi6liGij4TcbLogkxhUPI5YS0Mf2Olhntpxi%2B%2BEqA1TQqJoBeDSTMO%2BpSD0AaOUqE5QWfoqhuY1svtpMprPSALj71kkPVwIJe1e09hrjDKLEcPZmR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f30ef20b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/5b4a262e-3342-44e2-8ad7-719998a68134.woff | 172.67.141.200 | 200 OK | 52 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/5b4a262e-3342-44e2-8ad7-719998a68134.woff IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeWeb Open Font Format, TrueType, length 51685, version 1.0 Hasha93e96be336c174933e68ef61d56e0d3 48f7a75a367904ff4a9a79689a508e29edda462c cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:17 GMT
content-type: application/x-woff
content-length: 51685
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "b3968ba3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cVaObau4JBVesZGsutANJ8NABlpvd%2BsyB40vtAcSM4sjNUgjkTjm8taERedRNPr7J9P01iROqjUsAe1VA6wsoG0rAW1Y4sxb1b5ErAJkUHDFpO3lYcXamYgMZZuIEh4wDf7Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f34f2f0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/location.svg | 172.67.141.200 | 200 OK | 2.6 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/location.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash2b06f7a382ea90d910403786f60f9d81 9f10825ebeb9516e451a6077b1d0049a352b48e3 a0e33a0b87e479cf85c9df62303b3952357a0645e6c7c36627a43fccaafad182
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/location.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"e93bf238723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AT8gfqKFrKE5twxwfuEmjYCIumTPWM%2F4AJmXNSxSMb5Gus18pivPO7KP69RLjPOyLV17zWa3jbG54gzHd%2F7c8QX9TIQEvYkT2LUxVIl%2FNacHg5dDcS0ovFD8auwGg6iN7brr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea786d0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/5.svg | 172.67.141.200 | 200 OK | 1.2 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/5.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash6908931641755e0439879badd7d60325 bb620d016ac952020b5a234e5cc1448c11d0fce7 db9835eb4a5a2c0a97c5dc0982f7be2281e727322699d8a1df3b2a4155ea0f37
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/5.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"642789a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fiGe%2Ba2Vc%2FXnivPRU5V7RVAVOYnOXe9aVBf5tCcxZ6JK3Yg4UswldwWilM6FgDfO%2F1GOkQeGi45G1c2UqbXn4dwM2rfkRkUR3u%2BttaBttDBKEGfeKBQIJnKz%2Fj8k0kCGP7qa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2be880b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/40.svg | 172.67.141.200 | 200 OK | 2.4 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/40.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashc6abeba68f9f1fa28702dab2f96bb6b8 64791c82998f05e0803d64bf688b594297b965d8 ac8121048bf3dc65e8e60b5e14014077ce4c2198b4b7e2d7195a25828201e4d0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/40.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"58a785a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0R3M4zL5CQeVIA3ldNqzO%2F%2BvuR4M1gXvGBSyJuoDaYANolhrit5FSvYaarSXh0fC5FYdouqBjEtW8gBjg3rXmLVTj%2F6Gqq%2F3mYHa5K4CTf9aX3YxuWc17dFkoQhY%2F0A%2B2DPE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2ce920b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 | 104.16.40.28 | 200 OK | 0 B |
URL GET HTTP/2fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 IP104.16.40.28:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectfonts.net Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57 ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: ki65sQC1HlYAvAwzpIlg68BKJDoZiZ/BwbN/hDH5RUfm7vMSBZqfat1D29ePjiEs20YJy+049dY=
x-amz-request-id: 4MWDSXH8MPCQQMJM
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 599867
accept-ranges: bytes
set-cookie: __cf_bm=0.8f_QlEsm1TwCdLqR_uLmKV0Qob7MfldAS8_dCwpfQ-1715189891-1.0.1.1-l4ObA1qeRsBnnBVxbTjh5CroQuzmVmXURBpiHHTWkhCOrU8FI8DAbxaMlVkae0rI2Q3QqOIxqpHhL2Sj8dNgRA; path=/; expires=Wed, 08-May-24 18:08:11 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d71f10abde-CPH
X-Firefox-Spdy: h2
|
|
| usph.aqjoxf.cyou/information_files/Information.css | 172.67.141.200 | 200 OK | 100 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/Information.css IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash8e3ed9106163dbc1484bbddc651d505a e8503df37c2a844076a9b43f4eb443cb5cefd853 8009effdd85ae4640ab0c8458c356b009b9f118d024dc9baf151c3c20efae958
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/Information.css HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: text/css
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"3079f138723da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uH684NSVd0gwaVU1pUu6cAVy2yUC7IcbGxTjWlLrA3pvXw3sbkxuQSFw81VDzpSFiq%2FAWbSpM21mn%2B1C%2FVe9vXN6HNv4ghozAMrtetGLLqNI3YnAiFk9jbTIURq1WP0jYK6%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38ea480b0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/change_address.svg | 172.67.141.200 | 200 OK | 1.9 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/change_address.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashba4d97e788e337701dae39405dc2f442 7e0d950d83c7e7eb6102ee1b5175b1db8ce56551 38ff1ba4f58c85e428e833b6bfa50ce3ddba6b350b3aa68779325f1afaa13b5c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/change_address.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"cca5fd38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BCBUZJ4zj9U6wrpuAOqRBIaOxDdRw0uMc17X8Zxg9kDJx%2FTQV7OlPtaNyeEwDo45nRm99auDJ1EH5ETLjOtA7r9tGv%2Fx%2BVQ5qvaw5vxas3SV54swS3Z%2B4YGKq1HKoXMcHDNY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea888c0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/67.svg | 172.67.141.200 | 200 OK | 1.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/67.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashaa929e4b4109978bc993e27357aae805 90fa6376d480e4b223c10365a264147417064271 2734c778268298b5302a62fb13085c40eff83b394ccfcfbc0bc70918589f45f7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/67.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"1e6a8da3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2xG5XookwbH%2FZKAZmWXkjr9aDDT3nLnXTYXMYQMl3XkjiSXXnVVIe163Aq3qnW%2BbA2d27mPqDdRkkdRhpTV6%2FwfCqRch4ex1gR6YXZB0Es74qTGxlzFVq1biwyAIY1CeOMiS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f28e270b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/index.css | 172.67.141.200 | 200 OK | 310 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/index.css IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeASCII text, with very long lines (65275) Size310 kB (310286 bytes) Hash3b8fd6f9a4f47abcd5587844dd3aea48 9dfecc12393c9c87c76059a8506f8e073e07cf3d 5a0d71ead8b996efb89a6ec99e93d2a79ed647b890838bbaf890dc238ab87303
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/index.css HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: text/css
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"dce2ee38723da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=voeBCcBDh%2FNML53evEB5iOJEjV61qu0SDc9HCbchOxcQjlNbB7gyGEoEfINsg5DgFrXzQRsRUfyMjejGGBvNgedT8hJKft1FUwirqhi0aVK9NWyy20Fpzz0eRWozVUzh34qU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38ea480f0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/po_box.svg | 172.67.141.200 | 200 OK | 1.6 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/po_box.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash2cc2a9cd603e3badb3f767a4a4728f5c 40f414f0ff209023650ca7014ec2a57939229d1d e60ecbbbdfaf3944b4ec3ffdb090954b0ede6607da1cdbf9fb7d2963fdee61b6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/po_box.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"6e36f438723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HYKiJj%2B%2BPnd77uYzVKq%2F3%2BiuesDV7JK66lu4yhIbqFV%2Ft%2BNdTCmdLBo7Dke0JZatsrUH3%2FH7q3RlG5tQI0O%2BKOExo5M7iZIZuY7cBAW%2F9%2FRPgfhMHjKpZI8T%2B9yG1xe30gx5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea88910b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/57.svg | 172.67.141.200 | 200 OK | 3.8 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/57.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashcab1a9ae2b54c2e9db2bb305fed13526 b77e48cefbe7ab771603bf6cd2ae5df451f00983 0323e3701552df9371a1eac83efeffbb2b1a49f48de0ba6193037072ef86f886
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/57.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"5ad8aa3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BUWKl7OcKJ4HZn7ZHT78vIJG1p8yjIhGpW4NNGzm6Bm01sWkZlLvOq%2FPCx3%2FH6muWiuaVZKlLXeCfHMpD%2B2eK%2BW%2BfrOc8MxvZaKpNuWLrSaPtbA6iQIK91lNvHitUkoF578k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f29e3f0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/43.svg | 172.67.141.200 | 200 OK | 613 B |
URL GET HTTP/3usph.aqjoxf.cyou/assets/43.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash1dcd0e47543aed278dbb38883f10fb10 0860c2c72a7f89b292e61cd9254a3b3ed2011d34 2e091041d47dc2eade4e4e63660cc92dc76d3909f5a18091fdd362e9cd23c771
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/43.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"189186a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eL%2FzZ9JDVpSSFFyrm4TLlpU2UXKfoaaUYZnMj63CKeJ3lNoWi26%2B3MyHMxvHMaiCW0Zw75Z7gdYKNgkLJkc3uReywOhY2gY7m3L0aO5cStNbjZ5yM689BYNvMsUqnX8VEdh2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2deaa0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-01.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-01.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hasha9d58df74ad04f4e21a594c854079f65 c6b14b149e8e414be4c3a8ede905db7578f1be7a 77dc133b142f0dc2091940244a362cc544a19077eec86fe2b30f8a10eb86e76c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-01.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"744962a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GWgm0LqvsCYkKRUrdzawzQUiVqiy0VZtRoMFHKGh3dDTtpUc0p%2F22j39lcpsMHy1TCd5RG7WZoGCt%2B7F2L%2F7aQQ29st%2FlyTajYcEXqph%2FqvrJb1Nuilk2XBxkilpRHlqQv%2FB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5e95e0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/find_zip.svg | 172.67.141.200 | 200 OK | 1.5 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/find_zip.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash947f73db1be85b62c0a78fd947ea8f48 4b7cdd980fc356f9afc040ceaa1e4eff64eccdb6 65633c2f9e1f520fcb432d8f51929e8d0872964d876ff9d19e882af7eada0166
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/find_zip.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"6b52ff38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kw49ttgq0lqCY0ncP6Gi2tT8ntXvXFkSQUJ7P1sUsYCs2vfplbLcMVBT6Egv7rBdK4h1S4DiOTmCouad0Dmr4%2FIUSeEgxaWyETHbWUtn9jfb73Ua6d7VZay1ckFhXkm6xMhf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea78850b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/15.svg | 172.67.141.200 | 200 OK | 1.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/15.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash4554cbdb5e84baf194db7efa63951371 66719fafdb1a0a831b647addd645607f0449adef 7e7cf980806d79cc11f61e846573b77d601c9eca47cbf1b760a072c66288e8ef
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/15.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"201c7fa3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oo%2BkufGRXd5QSGluR10oEv%2B9dUxpho3qfat9Q34khEjkhcrwfctzpo6BNB%2FEJhC6YXBZOmB1dwjXDaie2KBsr0oY5mMBpibgVHWq%2BPCHd%2B8fXyAGBkryI4B5i%2Bs6xTvd9vqV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2be780b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/Areas/Admin/Content/LaxJquery.js | 172.67.141.200 | 200 OK | 64 kB |
URL GET HTTP/3usph.aqjoxf.cyou/Areas/Admin/Content/LaxJquery.js IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /Areas/Admin/Content/LaxJquery.js HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:14 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 15:41:49 GMT
etag: W/"805c87a7ee60da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7024
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=guo47klm8i5vQRz70AtN92BAqKRk%2BCP93PdM8X1vJsVNL5gqFDFm15zK%2BrOwGZNfWF6kVwMd2sxicXYuZCroNcejGeRYfD%2B1ynj6eqK2JCn4WJTguCN55vmCbqTBRO7gm0%2FW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38ea48060b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/logo_mobile.svg | 172.67.141.200 | 200 OK | 2.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/logo_mobile.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashe2168d4dc7567ef926b7623237981a82 e316de76563718e76dca3496358cd6364e283f94 bea15c662f2670c57110879e989f6312ce35fe454a22a7b46b2b63e908337784
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/logo_mobile.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"deb0f238723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FbUZ6paGIBEMF70JV%2FSUKxHM7GjV%2F7GwrkdvsdsUfg3jPRlaRkujNX4aK49Zs1HSS2fUw4excnYE79cbLXlFBEda4PF7J3kwagtDQswFIXA8NiKbF4HyKnRscu4kE7f0eCsF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea78610b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/search.svg | 172.67.141.200 | 200 OK | 1.5 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/search.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash72686f982dfebbd9157958b01f2ce9e6 525eb380721cdc53b170b7ed00d9a87f6ab71167 92f4f127afbc23dba0b9a8edd2b7baf572c6f2abec350a4d992e372b000e674c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/search.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"d430f638723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gjKWbiruGstkP7nk3pCGSamfGpHxk60z8k%2B1qxy0I6K6ITRsaQ4SBLqmNRr2GcotTw776BHUDEss7tuaMxP%2FENOb9yiQ6s%2BnkJlDq4ugwR3R98Feyy%2Bq4Q3jSrjokE%2BBgyN0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea78640b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/pg?do=information | 172.67.141.200 | 200 OK | 6.1 kB |
URL User Request GET HTTP/2usph.aqjoxf.cyou/pg?do=information IP172.67.141.200:443
CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (6470), with no line terminators Hash2f04e982cbdaf5873fdf9f590c6ac5d4 6da053a8764d59501a4b71d9de9d2e1b7cf1a182 84a31331b101f6558444d576c7886d3a35efdd09cb70bee1b1e79c5c01425c88
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /pg?do=information HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1; path=/; HttpOnly
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HyaEMN3H0YgoWYB1L9Hy9FS4buKiH4sxS0zIoMSRgYqS3giJI6u%2FbR6kVI6%2B%2FlXccQBb5QPxLNWoETTU65qnprV5KlZ2Rzb6iJ2OHDNq4%2FdFlnrYnlv2LnvPKnHeqojLIKxV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38d1489db51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-04.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-04.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashb95ebaaff76a13c383a17b881a9d9f0a 2fecc56fd80d06dc612387a2fa9e76dae78ea886 9404eaeab45cdd2a7a5dbaacbe99e81809ab5d2ebda4d2b1fe295e0e3b3dbbe7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-04.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"3a3363a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z32skPFKEKCSLauoEALYNKKHFpF6w7t%2FUEEfXv0Nli2wS6HwBjEYST83DIvAL8aUDaRQtYh77kYe%2FUgI1gAYVBT46ZM%2FKrLPrekoYkmpIRjopOsB3ALlTfqwYW31QV%2B2IF0o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5e9660b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/holdmail.svg | 172.67.141.200 | 200 OK | 1.4 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/holdmail.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash798a735992c99ecdc76454f1c093261a 89058df9342a184b64cdff41a11798ba07628829 cd9c59aa1822c5bf50b3250455ca1d6a7aceded7ad9d92c1e5072367384c1652
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/holdmail.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"17f9ed38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rk5qYw7Am8q4rhrHSwZyjhhPH%2BSCAxWDQ%2FUbXCGwhwxRpehpDAt9ZDJOoSpB0dFiBMe4lHQdGK%2Bi0D%2B3AG8mtJKzyHgkxDTLw7Dreu3mSHk61sEWUlcaNHgLQ0AZmHB1gDdb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea88890b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/6.svg | 172.67.141.200 | 200 OK | 2.3 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/6.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash431fb89252e46304ea7f6f956146f2b7 bd1018ec7dfa59258d8b81a2f914291ede34f27f be94cb1ae2d86c4a1e0b79e6dcea5decd7f5ab1e96e171946de72117094b13a1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/6.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"71328ca3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BA%2BfNg2uWyQ0IjNQkbIcBu45IdrVbdS4IgeqCkTEJMoPSrE%2BMKITlnb%2BSjOwcI98y%2FgQdVdPNX3wOgaxboMbRiSXcV43fgHczoB6jAPoYY5qywwDdaT7AqB5gvjEhAYEraLz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f28e2f0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-06.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-06.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashbfbbd52343371cd43b75bfe2f9861e15 e0288e43de5a8ba36675a07fa046dbf4a2326cfa f9324fa484a50e8472ff5b9fc6f0bdbd2ec84b8a13e58451ad3e3498620d3a19
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-06.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"20a863a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9OTqUOX5e%2B8VC8EN1cXSKY%2FJnwJDoA1pcsw%2FMNc3u%2BMrBjqkbQsnV144A04JCikZ4k%2FaU9bsZQlaExuDRkSEdULLVYuf2NXSu9WJaLqB%2BbQmtO17Nz13EgY6eZPzLZk700c6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5e96c0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/16.svg | 172.67.141.200 | 200 OK | 2.3 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/16.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashec6b19914bcae7e5aaa9e0da7aeeb4f8 71735d5378f04872cf200a0aaa097ffc0283e1fb ead1505a77858d6bb8f1cd12d824b392f94af5cd170ad411bd7868a7ea014a51
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/16.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"4917fa3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wD9qOHCGGfTFZA%2FQVresnfehd9Qqk2wEoQRTAv7F6KOSZL147kOIw%2FCd6RfxhBoFuPQDlnu4W9DXMjfS7HbTN4WgwWgb8GzPHmSCA%2FbdOKzKm8eOTNtq%2BKwHdaD%2FNMHrFFWk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2eeb20b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/22.png | 172.67.141.200 | 200 OK | 5.4 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/22.png IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typePNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced Hashccd62119eaa0e3697f60599487c51ad5 8e44d3123b4ce2005c76a2b8dcf7870058d2a82d 1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/22.png HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/png
content-length: 5390
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "a01681a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uR6FvoJIAG%2FSFtYVc6b1pT%2B%2Fyw%2BCpG7YHQ3qnv%2FNiOJ33JT69DRWLgKWmlpsUqWWp46TyuTSOoaqR7rt1dBNoL6VXDF2r%2FeIbjak0rYAOpXPwqaUzI%2BljRakeDwq6gdRiC4N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2eec10b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/logo-sb.svg | 172.67.141.200 | 200 OK | 3.6 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/logo-sb.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashbd8c973ec0b53678ec2e4dc5134fa653 e643657e09913383e36bfb797352a7223e202f15 3c24c49690aa84ba6ff95c560fb35c92ea3b7b7f6d7a4355f8628b19b3e1f97d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/logo-sb.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"b525f338723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KM%2BILVzNya3JWDakU8LMDlcPVmIRV1wlKWtoeUnu1M8bZw1Jpwcc4m%2BDV289eKsJF8JmeEyZccefHkAvs6t88EeoyQQ8RAsyHKK%2BZzXBIwlpWMcDXgW3MiimtB4c4XmtClMV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea684b0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/featured_clicknship.svg | 172.67.141.200 | 200 OK | 1.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/featured_clicknship.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash4eaba35653e775df78f96942d040dcc3 f5fd90e8f32041520795f0c82a1652124a02f93c 08f3c04fe589387977fca30dc02a87bf42ce3c066fc28c1071be412aaf9cf852
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/featured_clicknship.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"9b8ffe38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HT4BPzME%2BzxoxsIn%2B9ML4IWM6tjk7ya43v2u0jkH0LSjfrE0XFeZoknomiIb0KYqUwbJKSdyPT1pAJnWh2tcLDO22mY4rTufMp8fHjqBBk3k7dOdOUToDlgCd345kgqh1kM8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea889e0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/50.svg | 172.67.141.200 | 200 OK | 1.6 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/50.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash2cc2a9cd603e3badb3f767a4a4728f5c 40f414f0ff209023650ca7014ec2a57939229d1d e60ecbbbdfaf3944b4ec3ffdb090954b0ede6607da1cdbf9fb7d2963fdee61b6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/50.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"2b9c89a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=puKs59dcqyM6W4ZPzw740Mw9eb9pTWe5eTJWPmlNgAv3KqQBrIXmVAtWG%2FWLj213%2F9JLKlxLI2pKm7KcrtdbV0wtLswb85HI%2BP8A0Kn0fezLjPEGCRDLPf%2FgA6MzugYGEucv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2ae600b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/24.svg | 172.67.141.200 | 200 OK | 1.0 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/24.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashd5e000eef8dcaa68cd64f751ed58bbe1 ea5f010cf037aa26788ee74d0b93431f769c99c5 bd96da0c1c77a63e3eb4d350d786cb53debebe069efd91879f62ae24362fc53a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/24.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"868b81a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xtdZ36Ei8MJhn%2Fnw4KznY6EfFkl21OHH%2BY6cQkcTI8gLG8N5%2FGWT8quAMjT8SizRpmFZnfquYLVLbZt79bZnjf%2B4VL7wIGxAlCDSQBN0E5QwWV0yH%2BD753t6HGggkKvTSFfW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2be800b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/11.svg | 172.67.141.200 | 200 OK | 1.9 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/11.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashba4d97e788e337701dae39405dc2f442 7e0d950d83c7e7eb6102ee1b5175b1db8ce56551 38ff1ba4f58c85e428e833b6bfa50ce3ddba6b350b3aa68779325f1afaa13b5c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/11.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"43a77ea3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GhtH3bVfO29PyhMfYLBwHtyB%2FnOgj3hrWoKROp0liKKYVQcg2StgimP%2Fkqsee49ocQOH1ukKWZjRJg%2Bv%2FibWBM5TgupKStCV%2BYZYSmWCVwekzaLRNtcaRggSlgaMeSZOJELD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2ae570b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/Areas/Admin/Content/libjs/Layer/layer.2.1.js | 172.67.141.200 | 200 OK | 18 kB |
URL GET HTTP/3usph.aqjoxf.cyou/Areas/Admin/Content/libjs/Layer/layer.2.1.js IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /Areas/Admin/Content/libjs/Layer/layer.2.1.js HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: application/javascript
last-modified: Sat, 10 Oct 2020 08:10:28 GMT
etag: W/"1e2df1d0dc9ed61:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mjyNMoVlgfv%2Fl6kcq2O%2BJ4onDZBsBhEuUL5fIyX9kQfG9viefjrmI8n%2BZQNPOyI1q4DtjK8Jrvnrs43rWANuMNqiRPftfbrSDNTeUIY%2B6oAg5jTq0yLJ6oYC%2BbVTqK0p79Ko"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38ea38030b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/mailman.svg | 172.67.141.200 | 200 OK | 1.8 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/mailman.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash7e63b1510cfe1e7b2e2c00dbe7b48f49 7b13f782d0ea7d101e612cab914da1574180fa76 3bfb113a66658cfbfb3238b0210f43d4e564d7fce174ee72f3ab8d3b8b3cff41
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/mailman.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"90c1f338723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c%2BaKIbFB9o43EN5hfKAkZejJX0%2FB4wc%2FLrIczHh5439FmJ5DzjbCYudfZEL1aHO1kHcvcY13%2BS%2FBtiPyCpFvLNTGhHKChSdWmr1qs%2Fd0XrW21w08m1Y6Qm%2FGyDp3EsIET2um"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea786c0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/61.svg | 172.67.141.200 | 200 OK | 2.6 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/61.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashab67d7e569a64be0744cb3d179612d50 65e256ede2d7bc4297f7497f4430182c04b627e9 b3b380736b4280b27e829b17a7fb722f88c100d77bea94909c9b110e2a4a691e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/61.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"47ce8ca3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kFxRfIsOx42DR62%2Bl4NMD1Jbz%2FvmZr2koxItp6Kvs2y9SGWVHNyZVvu92UKZi5mDfx3CPqk3fxQ1VTg32HFc1oWaTaf2DZZct1Woguc5TIsmFdXD7LACXYPFGYRWaIFJ%2BBAn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2ae610b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/56.svg | 172.67.141.200 | 200 OK | 1.8 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/56.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashc523f85f9a06acc80cd618f10c18063a d385730a45e237ac82907718aa3c7d78f2dd74b2 7ea8f48894b1b43539d09fa9328a76470d7642525b20477bd5c43105f7baaf86
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/56.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"ff378aa3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aJsCiK68d9MS9SErjIwljfVMR82CwrrhGCIBnPz%2FCJOJyQhBU%2BPSkfJsI3wLBpwQmTF25EkQhfWtdQcGc%2FZN5HK4f0kN2JHBjJdvKqlNINd0Og2eenmM7Z%2Ff%2BizdK3SIq9fv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f29e340b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-03.svg | 172.67.141.200 | 200 OK | 888 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-03.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash0555a4029ac23b798a91b205430abbc4 7c8b8a46a3c78b43db86c18162a7be265d9b8eb1 b076344043e8d78616c4e12841bf4bf12609429ea88354bd24101502884f2706
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-03.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"53e562a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ih10cdnJCjQGKzvVdhpXyoiJiARQFr3OqjJ2mmtaiVugFQ6hT%2B7vNMlmtY1RnH%2F2w6njTY%2BT3mdyh5F9DzIe1RSB8EUDtiHSAtmFCKVQw1KDDHffdpcAuDNTHgY8VKVTx7Ea"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5e9650b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/20.svg | 172.67.141.200 | 200 OK | 1.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/20.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash4eaba35653e775df78f96942d040dcc3 f5fd90e8f32041520795f0c82a1652124a02f93c 08f3c04fe589387977fca30dc02a87bf42ce3c066fc28c1071be412aaf9cf852
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/20.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"e52c80a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HV1pB144N4R%2B1S6WoVkmL7q0PxA2tnkEDxlDRtCfDEzuSU%2B0S3dqTkT8Y4AJ6diVQqYxLecL3Q2hZJy%2BvLJcMr9Cyo5ba8ldEIm8kNgVKSUZPRiE8l8kyJsEr3L9AeswoLiN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f28e210b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-07.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-07.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashe00cc2f4af11fdb292df12413ea8e367 6b882ff6e0e5e240f883e1aff33f9c3458255d12 c87a43546280f15adce3a2c32507ae766bc601ad327c3a1fc3ab8dba4465fa03
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-07.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"7f663a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yh4pHd%2FGflyJonPbA0vXP4UP0fsF54ZzUF%2FPalTE4t3PkMF9YYTQ86jQ0pzne89EPhLzZDQa36vvmF1LWBb9T8cV82rT2xLZAK3nn1E%2BUa8gu%2BM2R4LxZUFMuUf%2BddssXqf1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5f9750b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/idxs-icon.svg | 172.67.141.200 | 200 OK | 1.9 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/idxs-icon.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash583ef52bd60e417556db5f135ccde412 95657d33aff9e4378ebe4d23588822e15decf037 5a5fd0aafb20d9cb95bf9e3e7110d8877c7bfe8a990e6b5d4ba59148da355bf2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/idxs-icon.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"f36dee38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ESxFZ7Uf0uVxuIRoZusilJpZRbyIeLmaijTyHZABIJiS0H578unBi3kNxFdfXzfhfh9HMAJNSC8sof2b3ci8B42kyUfePzMeVaZjVTICiM41TQTWhsoQmcc%2BncFmmqA6JIsq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea98c10b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/calculate_price.svg | 172.67.141.200 | 200 OK | 2.3 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/calculate_price.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash431fb89252e46304ea7f6f956146f2b7 bd1018ec7dfa59258d8b81a2f914291ede34f27f be94cb1ae2d86c4a1e0b79e6dcea5decd7f5ab1e96e171946de72117094b13a1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/calculate_price.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"356efc38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HAzwfAuYI4owl8BfZaYD4%2BNKWQjnYS7T8bDG6UJctXGXhTwuFHEbhq%2FaHknnDHRx8kTKMeFccHa2n68avmazwkYZHeQ7O6YPMzdtmgAgVONLPBdW0z7vi8aVunsN9mRy3RRW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea78830b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/35.svg | 172.67.141.200 | 200 OK | 2.6 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/35.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash2b06f7a382ea90d910403786f60f9d81 9f10825ebeb9516e451a6077b1d0049a352b48e3 a0e33a0b87e479cf85c9df62303b3952357a0645e6c7c36627a43fccaafad182
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/35.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"d28583a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kDknt6BYWQO4oPN2BsLkYntJU%2FbGz1XGLACaJkLxdZ9L76W8eqqAkiANZAklffzNWeOxLXh8zDNvhmQN%2FXx%2Flwn72QULyi7dYW6GmhxoJD5KmdpIQS3V1UHQow2VjYW1xVtp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f27dff0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/69.svg | 172.67.141.200 | 200 OK | 1.6 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/69.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash51e3139d76e5dc032ee585cca0dc7fa3 25f66b3ef42009851954f22e6d6f4904f506c0b8 dfd96cdbd5e0b4bd7f31c68d620874a37ec2c3f4e5d2716d7227057d2e66d264
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/69.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"fbde8da3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fTV6k8Lg6U%2F0geD70Y%2FusAFvPYiVAnfJSHhW8ygRUW5QQfLK%2ByBsfuoX4WHBgdQLbLLgi%2FVq6A31ceQXErqwl%2FtshVDs5GJ0iTW3VJJXbylNU6ijYWOJ3puKIm5DUWgevQFz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f29e360b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/Areas/Admin/Content/LaxJquery.js | 172.67.141.200 | 200 OK | 64 kB |
URL GET HTTP/3usph.aqjoxf.cyou/Areas/Admin/Content/LaxJquery.js IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /Areas/Admin/Content/LaxJquery.js HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 15:41:49 GMT
etag: W/"805c87a7ee60da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sh6dVop619Mah9HeNJv7mQOepdijSEzWBPJsM0IIJQ6Bg6DDvZM%2FL5ZzIF3eP8ua7OR9msAgJouxBOFo34AQ0Us6%2FMP09oo0qq7sUynAf5ISjkxcAfTDLKh%2BmH2c5cEpQ52z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38d5d9550b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-05.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-05.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashf522a3b48b414883e3b7db198f3bd00c 917f240bb68191bc716b01c74c5d459be0537ae3 02e7684bda1f90f191d82f60e8a98ea236ac3205749dcd1a5cf82a959f968e7d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-05.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"1f5a63a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VpLWg7IaH8x3YjPc%2FKf%2BUqKWupTBRmlOQ8bKaNW17wDHb5WswQdztim8uWtydcXT6dEDN%2Fd9iRKyiZjvtGXTH8ISIPq4VGxVKyz0SiaDnKxlkpxfkEe48Rwi%2BJ9DOhc0ocUa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5e9690b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-10.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-10.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash12c33aa5635a5b67467879cbc4a827bc 68f7d99e29977ba3f02b3abc20d71d286ea3c2ac 8ade823e71fe766a87bdd9955c10127197aed2912cc98126e069bff98deec08f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-10.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"d6b864a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=juNJq92buRylidD6pjPP%2Bki7oWF0mKD9xNk3EukPrzCHdrK0SK3zh%2BaWo9l44t%2BUq%2F4rZGZhGlXnHXnfXQgIR0A4CKk5cLuVkZ1d%2BJVE%2B0aV5MWSx7yrQtfkPs3mbgLejwPa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5f97d0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/46.svg | 172.67.141.200 | 200 OK | 2.3 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/46.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashb0f4620f8bad87c3d6539e062a051e2b 5b4cd2436145c4df21c70adb0ded58732340516b 008fd90eed6241429dcda45567c33b8e42dda08cadc4ee37c32b829578fb3d5d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/46.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"cea187a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jo2bvwWiqLrqTcYd7at8VPvLTXKNBMsrGhpB74hvs5RnjVHc3X%2F%2BubqOzzHaRE0irV0ZhcQdLEk7pkHQ31uU7q3CBx1Omerz%2FoYnUROiGyjfhvh9sqPMIE75sOgcL0pLmAxJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f29e3d0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-08.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-08.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hasha03b45de0c6979251ef4e887df547705 e3bf574cf824b82d63fba45881e9b79643606ecb 0a41d8ed27c6bd7a7121900e6e4605670500428f90ff2658474abcbb0ec9bb9c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-08.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"f61c64a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DKhxtGuFicvKXsAG4A1vuxsec1NGqWKL%2FdDoUVoKJwbvqYvkPBGlEKBjpOvlFwJb0RzavKZP5AKLagrDc40rpggb2HBeH9cK6hFVW5MxaaIiUvIl%2FY%2Fe3fUW3Vh%2FjvMX9iTi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5f9760b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/schedule_pickup.svg | 172.67.141.200 | 200 OK | 1.8 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/schedule_pickup.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashc523f85f9a06acc80cd618f10c18063a d385730a45e237ac82907718aa3c7d78f2dd74b2 7ea8f48894b1b43539d09fa9328a76470d7642525b20477bd5c43105f7baaf86
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/schedule_pickup.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"1c95f538723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lZM5EZyeVMLNu3XDUGwx%2BIASLcWtgB%2FTxqJ4qGhC9jvLHf7zNPEfnMuH0Lt0v35vkQSMqzeyJGD1FhOsCb5pP5eGK%2FAtMY3HrIzUsjzqCzOXHVQpS0hi1PI3nnAZ%2BbcDF6nq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea787a0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/44.svg | 172.67.141.200 | 200 OK | 1.8 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/44.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash7e63b1510cfe1e7b2e2c00dbe7b48f49 7b13f782d0ea7d101e612cab914da1574180fa76 3bfb113a66658cfbfb3238b0210f43d4e564d7fce174ee72f3ab8d3b8b3cff41
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/44.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"df587a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9YGYPSsUIkiP1BeKNhyplHbW1lthN5qivoKL1N2DWmiSAXc3qlwWbUCqXc9rHyq%2FXZ1ysxOWEDng6EElkuedJWnHzlXa%2Bdi24WSiataseFFdhFUrSFDHviMpgueuepNQagaT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f27e020b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/27.svg | 172.67.141.200 | 200 OK | 1.4 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/27.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash798a735992c99ecdc76454f1c093261a 89058df9342a184b64cdff41a11798ba07628829 cd9c59aa1822c5bf50b3250455ca1d6a7aceded7ad9d92c1e5072367384c1652
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/27.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"57082a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tKfaC0VariNAVPtJAOGAuKxXmkxq7uPK24R8Cj8x6mTFEaCelhJEbniXfxWM5FbpnbYbY%2BciCx41cB0M%2FDjf2Ed%2BVww68%2F%2FZk8nUJtiyjFP68%2Fvcwtj5peMbwfIRxbwNY4hO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f29e480b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/index.css | 172.67.141.200 | 200 OK | 310 kB |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/index.css IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeASCII text, with very long lines (65275) Size310 kB (310286 bytes) Hash3b8fd6f9a4f47abcd5587844dd3aea48 9dfecc12393c9c87c76059a8506f8e073e07cf3d 5a0d71ead8b996efb89a6ec99e93d2a79ed647b890838bbaf890dc238ab87303
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/index.css HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: text/css
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"805560a3dc22da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7020
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RQSM%2B1hPox8mPlyRblnh8Ef6r559HV6Ckk9k4FNLWrA2qCYmYeu%2BNBFBvx7jUSsVyJuK4woFqLfl%2Fa7YHZtX8nFbS4T7alME%2FX5vKLGBeTbLaKkUOAdel%2FQ%2B4QcGoBfS8q9t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b38d5d95a0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/hamburger.svg | 172.67.141.200 | 200 OK | 546 B |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/hamburger.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash877d4644f0a505bf30be77169524e441 d85faf0831fb39673ad3733ad6ecf1d8bac778cd 2336a119dddc7aa4b6d54a4ecd251f5a30cf0572816db55b92e9f0b43ee63ecf
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/hamburger.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"4584ed38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1rf%2FolEVY3Kr8U9eCO0h%2BchuC15JRqGG8ZElZ76yWzTPvYjLfhzvoC6Sv7N08gymbvwNIGti63l%2BghIwgmUaeiBLviRJCWqr7zKtkkH9H5PfVDv9IwdFPqJr2KkV947lx4oS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea785f0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/8.svg | 172.67.141.200 | 200 OK | 2.2 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/8.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash6088261f72b5ce3642b5cec0eb113793 d132c9f520c2a5b4a724c5ecb2e8fc4f4f45fa07 2a7560f8b14ba4d21e129f29758c750aca7787cff99c49c1c05c389d22a15457
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/8.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"fe538ea3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aMes%2FRH568cmmT%2FopYhIBU5zpscbIdTKm%2FA8%2BXkeT36818ls2OLTFmTFtxGtSpO4b2GwcQgTeK%2BQgQzzFUf%2BgdlLrSs3KGvtDRbKZE1YtZLt1ZsdpjUpWZLHk2fKVN6qN6dP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2ae670b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/29.svg | 172.67.141.200 | 200 OK | 7.3 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/29.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash944c94e9337e36b2b7c635b3dc58f412 d5df68ef3a86a77bab9c04cdf0421bb318684ef4 82df13ac820703afeec658c51e401dca102af5bc99f31edc61d51f0ce7586943
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/29.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"31c382a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7trVCbWk%2F9fOLL06dXn31m1BbewDKf9qDt%2BnOBGq3LCs9svCrr31ATOr%2FMhFc0AcfTfe3WHVdvBUFiYhDs0kD2zwF49BW9SJC6kOAoo2Cag25OGzcqvsMUhj%2BsiIGRqUiDEd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2be730b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-02.svg | 172.67.141.200 | 200 OK | 843 B |
URL GET HTTP/3usph.aqjoxf.cyou/loding_files/blue-spinner-processing-step-02.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashde8524c756e85bd8b7a9d67f4efb28f7 ce0f875e5a41736fd400295abe57d1a50223e6c1 e3d9408477d527242be83cb6da4138a620a2605c0680e20b8ee2eded2edf53a9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /loding_files/blue-spinner-processing-step-02.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:11 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"49be62a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 7021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cdDJaupZBg6tvKBUZc9fu4ui6wDhQhTG%2BAtnrf8n%2FVKV9aVTZ2fO%2FpgE98NrmJ0Vz%2FcYlNvwfB07H4dW8l7SxyranPVl2yJ7oeO3tKPZutIn4OD1ltM9nOzLV0YRD2AV40Ce"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38d5e9610b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/free_boxes.svg | 172.67.141.200 | 200 OK | 1.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/free_boxes.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashe7462fb4ef0723c03ebac6aa9526541d 72952a4ed5e25022fe16dd1fa5584c7c76706894 281fbdd399ccac84f423007a4262f191dc0637eb8e04583d85c2e01395085314
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/free_boxes.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"27eeff38723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FfjiiEVR4etrIrw3FpoiRBpAlF67pSJGQ8Vb5HHwprUMFgEm8FBCa8lqw5bycDYoKujXSAiP9m%2BGxFZYZsoK7va2JasVc9DH04w5I0COe32cxRHij8A9SGthDXoh7ODhiXcA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea88960b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/4.svg | 172.67.141.200 | 200 OK | 562 B |
URL GET HTTP/3usph.aqjoxf.cyou/assets/4.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash7f889c652170f7793a91504f27aba316 3eacf246be1add280459483324bab29c7b56fda9 726c77691e476a796aed8bf45b1ed98c2e9d2845d2963c792917e9f06befc66a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/4.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/Information.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"7f3285a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fDYzwQCixrUFtblwMaYAc6CXRpu0LKYj9yIzycty9QnIiqxvYzE4ja10akNLLmRDCmRhcVTSkFOMXKN%2FLFeOEBUDTGXo8RQJXCeWZjsOKSU2yjEgROaNApPj7haTcd8y%2FeKN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f10bae0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/21.svg | 172.67.141.200 | 200 OK | 1.5 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/21.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash947f73db1be85b62c0a78fd947ea8f48 4b7cdd980fc356f9afc040ceaa1e4eff64eccdb6 65633c2f9e1f520fcb432d8f51929e8d0872964d876ff9d19e882af7eada0166
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/21.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"baa180a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5JYrc0V2KN%2BS9IA9FsBt0P7ogJgI2mY6Q3ma%2FXS86r%2FLK2cpWHZjH1LsVm95mOWz%2BL7r%2BTATctu8JLSVyv81L9WPSJYTQkj%2BwU7K9NoeedpkXyvIWwV5Sk%2FkOlPqElczgxau"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f28e2d0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/58.svg | 172.67.141.200 | 200 OK | 1.5 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/58.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash72686f982dfebbd9157958b01f2ce9e6 525eb380721cdc53b170b7ed00d9a87f6ab71167 92f4f127afbc23dba0b9a8edd2b7baf572c6f2abec350a4d992e372b000e674c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/58.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"e3218ba3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SaBCmCPyjP1F3l1AjSd2cUm7DwCcvWCCV2%2BFGdDqIL0F8jHWGCNJ2WGd6WQtRHwc4%2BVWsgxW%2FE1JEbn973nr3WfISnvcJ413HlDVl%2F5q8R3x3ehfsVgF6MQg6yOBaQYpViu6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f29e390b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/information_files/stamps.svg | 172.67.141.200 | 200 OK | 1.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/information_files/stamps.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hashaa929e4b4109978bc993e27357aae805 90fa6376d480e4b223c10365a264147417064271 2734c778268298b5302a62fb13085c40eff83b394ccfcfbc0bc70918589f45f7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /information_files/stamps.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/pg?do=information
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:15 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Nov 2023 12:16:15 GMT
etag: W/"a15f938723da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=21uVBHDcDf3ZtEz5S3YqqoFp8M%2F%2FrjAehEzdEiqwoKPpME5G5Xyazq7EyPtgsWVjSdWo0mZms0qcby3nCtEvf4SF8tvNftpBg%2BOVhGM25FB0j5rD8R6YYwONlXHCtRJcKJja"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38ea78730b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usph.aqjoxf.cyou/assets/31.svg | 172.67.141.200 | 200 OK | 5.1 kB |
URL GET HTTP/3usph.aqjoxf.cyou/assets/31.svg IP172.67.141.200:443
Requested byhttps://usph.aqjoxf.cyou/pg?do=information CertificateIssuerGoogle Trust Services LLC Subjectaqjoxf.cyou Fingerprint13:47:4C:FE:6B:4B:80:A2:86:A6:DC:77:33:1A:98:11:42:09:58:FB ValidityFri, 26 Apr 2024 15:38:51 GMT - Thu, 25 Jul 2024 15:38:50 GMT
File typeSVG Scalable Vector Graphics image Hash0c3c1f3a7f65ad2d5a91fb82408ee42e bcefbb1e7451d6cd7981db3a4b28d944fd9e5256 3e34020657f9af3f0d9737cb5efd4eade4aadc853dc4f367d93c01419a606116
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /assets/31.svg HTTP/1.1
Host: usph.aqjoxf.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usph.aqjoxf.cyou/information_files/index.css
Cookie: ASP.NET_SessionId=kcuzfxxllds1ieh5rrymtqd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:38:16 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"e1183a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=suGIymffNwo2dvUzGbeI53XfdbsrfAxRCvPeJmXYuUKTyc5AP0uXPfHJD0ftuG1ir%2BVMII1KXVTj3limRt4FKk8xXcAO%2B%2Fkc5jyfKQ4JqmKeeqh5rLV%2FxgciD654Y6PaLBZ8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b38f2eebe0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|