Report - intern.kemmler.de-files.de/wiki/Betriebsversammlung.doc?3f5b0247-8f40-46b2-a874-5535cf167d4a

Report Overview

Submitted URL
intern.kemmler.de-files.de/wiki/Betriebsversammlung.doc?3f5b0247-8f40-46b2-a874-5535cf167d4a
IP
94.100.132.71
ASN
#25394 MK Netzdienste GmbH & Co. KG
Submitted
2024-04-17 09:16:04
Access
public
Website Title
That was lucky! This could have been a phishing email. | IT-Seal
Final URL
phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-17	512 B	1.2 kB	35.244.181.201
intern.kemmler.de-files.de	unknown	unknown	2023-08-08	2024-01-09	462 B	643 B	94.100.132.71
cdn.it-seal.de	unknown	unknown	2019-07-31	2024-04-10	5.7 kB	367 kB	94.100.132.57
phishing-training.it-seal.de	unknown	unknown	2020-07-15	2024-03-28	7.5 kB	795 kB	94.100.132.71

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	phishing-training.it-seal.de/_nuxt/b0acbaf.js	2.4 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/_nuxt/b0acbaf.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:45:31 Last Seen2024-04-18 08:20:03 Times Seen5 Hash e31c7629d704080018fccb96e8c9c885 b0acec67289b90b310eb4b0310e9055577295ab6 a1c22231992ec3b0062248b4618e6d64b712c0ac1a1a42bb47350844e01eb0e7 Loading...

	phishing-training.it-seal.de/_nuxt/1217fb2.js	215 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/_nuxt/1217fb2.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:45:31 Last Seen2024-04-18 08:20:03 Times Seen5 Hash 061c2ad590c1ee03bb8eb3a0f3c21ed8 bad8697923d26fd1e8eede081265b7cabefe98d7 3d1a376d916bd66b9ac3fb1d66498e18d16faf998e8ce79bbbac63f3b8e096d7 Loading...

	phishing-training.it-seal.de/vendor/intro.js/minified/intro.min.js	29 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/vendor/intro.js/minified/intro.min.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:02:24 Last Seen2024-04-18 08:20:03 Times Seen60 Hash 9ab141137c5a3184abdc009c3eb1f036 875ea1ad86494376dc05e24070fdca541012a1f9 7ce3c799a6a6aa41cfbf84181b192248a9bb3bfdc6009e39e78a505d895ea0ba Loading...

	phishing-training.it-seal.de/_nuxt/38ea98a.js	5.4 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/_nuxt/38ea98a.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:45:31 Last Seen2024-04-18 08:20:03 Times Seen5 Hash 5c1ea76810791a75ff0e50fa6dd29e04 b72d133cea80bd56ecc3adb0b1770675b12b9f97 4221d9fd168b19766e8ada422d145917193025090c3f66a4fadea1261f5bfdaf Loading...

	phishing-training.it-seal.de/_nuxt/a393ceb.js	189 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/_nuxt/a393ceb.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:45:31 Last Seen2024-04-18 08:20:03 Times Seen5 Hash 962c9d84b0b4b191f9c1d2ecb2c98018 ec48a86122b75d24f6d2172d8f684c42248390be fa49c353b06c13b37cc7dd044f1154c7c61c1b1e4c1cb7484dca2e76d553d806 Loading...

	phishing-training.it-seal.de/_nuxt/d23f7a3.js	137 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/_nuxt/d23f7a3.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:45:31 Last Seen2024-04-18 08:20:03 Times Seen5 Hash 69ee0a0dd278ea8aa1d49ccdd097c9dc 2aa16a0270b5ddb80c9742952f86daf3ea257a41 0e35ce613d8a5aa0cbae07eb5f89d19e04d49c01d76e4c1ccca5d53cc8c008cb Loading...

	phishing-training.it-seal.de/_nuxt/07896ce.js	21 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/_nuxt/07896ce.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:45:31 Last Seen2024-04-18 08:20:03 Times Seen8 Hash 9741130d282269170d2316378477b937 8eb6a00f8580deb2375070d23cc4eee52c7e0037 51bf86ea5655401d95f2e4e9951304b836e39f02e32442f1145573e25747a5fc Loading...

	phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a	38 kB	2024-04-17	2024-04-17
Pretty URL phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 11:16:05 Last Seen2024-04-17 11:16:05 Times Seen1 Hash 11c02ecb874e79f4b6a4ebdb36869e9d 96def0f7e031fd9b30a4936cd186a8da6f4d3fa0 4ec24e9f0fd9ca5f19cc4571e3bf7232037f4184c936398dc0aa88ad8dd69080 Loading...

	phishing-training.it-seal.de/vendor/polyfill.min.js	79 kB	2023-03-07	2024-04-18
Pretty URL phishing-training.it-seal.de/vendor/polyfill.min.js IP 94.100.132.71 ASN #25394 MK Netzdienste GmbH & Co. KG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:45:31 Last Seen2024-04-18 08:20:03 Times Seen20 Hash d78fcc33f93e44c5c5371a6d329a8da6 ba7cfe20d8a0d3131c08c8006e3afd0450f4c03c 5761a48021c0a264f22d81c2fbd81e0679e02a17ee6ade0d187c093ac2a92318 Loading...

HTTP Transactions (27)

	URL	IP	Response	Size
	intern.kemmler.de-files.de/wiki/Betriebsversammlung.doc?3f5b0247-8f40-46b2-a874-5535cf167d4a	94.100.132.71	301 Moved Permanently	365 B
URL User Request GET HTTP/1.1 intern.kemmler.de-files.de/wiki/Betriebsversammlung.doc?3f5b0247-8f40-46b2-a874-5535cf167d4a IP 94.100.132.71:80 ASN #25394 MK Netzdienste GmbH & Co. KG File type HTML document, ASCII text Size 365 B (365 bytes) Hash 4c64a81d1e4b8016af02ee57d6818c5f 23a42cc8112aeba3c972a91da20a78a35691bccd 3bf4688197972968c305a5d008d5813b4a411028584e01e8638e1363f46ddb46 HTTP Headers `GET /wiki/Betriebsversammlung.doc?3f5b0247-8f40-46b2-a874-5535cf167d4a HTTP/1.1 Host: intern.kemmler.de-files.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Access-Control-Allow-Origin: * Content-Length: 365 Content-Type: text/html; charset=utf-8 Date: Wed, 17 Apr 2024 09:15:38 GMT Location: https://phishing-training.it-seal.de?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Server: Caddy, gunicorn`

	cdn.it-seal.de/it-seal/fonts/open-sans/open-sans.css	94.100.132.57	200 OK	232 B
URL GET HTTP/2 cdn.it-seal.de/it-seal/fonts/open-sans/open-sans.css IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type ASCII text Size 232 B (232 bytes) Hash 028ffcd6058cbe2f653ba89e13c8fd02 76b39c460f945c98fc191ea4365a085c3b694e0c 9e4e6c2df64525d687f13933f2109a8cd7cb25447d87d0e199d61222f794ee19 HTTP Headers `GET /it-seal/fonts/open-sans/open-sans.css HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-encoding: gzip content-type: text/css; charset=utf-8 etag: "s4gua3q4" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Accept-Encoding content-length: 232 date: Wed, 17 Apr 2024 09:15:40 GMT X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/fonts/courier-prime-sans/courier-prime-sans.css	94.100.132.57	200 OK	352 B
URL GET HTTP/2 cdn.it-seal.de/it-seal/fonts/courier-prime-sans/courier-prime-sans.css IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type ASCII text Size 352 B (352 bytes) Hash 162afa31a8c949ecc60bd448e3c76501 df56daa9a2da510ba642e326fc02d212f575ea5f 12b2e42645843eb7ecc36dd17c63550529d8706818c6789b5da55b6985eee613 HTTP Headers `GET /it-seal/fonts/courier-prime-sans/courier-prime-sans.css HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: text/css; charset=utf-8 etag: "s4gua39s" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 content-length: 352 date: Wed, 17 Apr 2024 09:15:40 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/_nuxt/1217fb2.js	94.100.132.71	200 OK	116 kB
URL GET HTTP/2 phishing-training.it-seal.de/_nuxt/1217fb2.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type gzip compressed data, from Unix Size 116 kB (116138 bytes) Hash 26dff2564116f846208f3514002dbc5b 7a4962c1ad3aed28ceb6e8ca3f5e3ebc3527b8fd a2ff8ff72aa89dd43ac874147d2a3147bfa081321c721007b53f6e53d964a595 HTTP Headers GET /_nuxt/1217fb2.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=31536000 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"348c7-18e570eb9c3" last-modified: Tue, 19 Mar 2024 14:12:46 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/fonts/open-sans/OpenSans-Bold.woff2	94.100.132.57	200 OK	46 kB
URL GET HTTP/2 cdn.it-seal.de/it-seal/fonts/open-sans/OpenSans-Bold.woff2 IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type Web Open Font Format (Version 2), TrueType, length 46460, version 1.0 Size 46 kB (46460 bytes) Hash 93fe8f3415688d16bb947e2c96ea380e 378bc943c1802f00e734dbe7abc455af61485376 46b518780343f2262e168bea5146d1ff30a6253191cc61b486657c76a58fb2bb HTTP Headers GET /it-seal/fonts/open-sans/OpenSans-Bold.woff2 HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://phishing-training.it-seal.de DNT: 1 Connection: keep-alive Referer: https://cdn.it-seal.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK accept-ranges: bytes access-control-allow-headers: content-type, x-requested-with access-control-allow-origin: https://phishing-training.it-seal.de content-type: font/woff2 etag: "s4gua3zuk" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Origin content-length: 46460 date: Wed, 17 Apr 2024 09:15:40 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/vendor/polyfill.min.js	94.100.132.71	200 OK	69 kB
URL GET HTTP/2 phishing-training.it-seal.de/vendor/polyfill.min.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type gzip compressed data, from Unix Size 69 kB (68693 bytes) Hash c260d029265006e9467734179f7771b0 b6c0496282cd2db39ef95360fbc215dfc81d8d46 5ebc893f9cb1ae000df441660cd473746e025e3ce41271325940d37e1df4970b HTTP Headers GET /vendor/polyfill.min.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=0 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"1333a-181cf16f448" last-modified: Tue, 05 Jul 2022 15:59:57 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/Logo_IT-Seal_2019_negativ.png	94.100.132.57	200 OK	16 kB
URL GET HTTP/2 cdn.it-seal.de/it-seal/Logo_IT-Seal_2019_negativ.png IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type PNG image data, 1080 x 320, 8-bit colormap, non-interlaced Size 16 kB (16040 bytes) Hash 0ddbf95e425f416443711fc10ada7e88 ba162ac1b5f2ef37c65dc21708195479ce54763a 418f6c57f6e7817ce67804d1db74d4cddd0dd033879b724fd097c670c0eea6c9 HTTP Headers `GET /it-seal/Logo_IT-Seal_2019_negativ.png HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/png etag: "s4gua3cdk" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 content-length: 16040 date: Wed, 17 Apr 2024 09:15:41 GMT X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/icons/favicon-256x256.png	94.100.132.57	200 OK	35 kB
URL GET HTTP/2 cdn.it-seal.de/it-seal/icons/favicon-256x256.png IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type PNG image data, 256 x 256, 8-bit/color RGB, non-interlaced Size 35 kB (35038 bytes) Hash dcb6dab687da17991edfb820e2484129 7e41f91b1abf22e9d5e9fc9a4f07295dc2a6f8cb 181171e423a46c201e9be2f6114617092f69091dd386fe5ca1b5c17fcef901f4 HTTP Headers `GET /it-seal/icons/favicon-256x256.png HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/png etag: "s4gua3r1a" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 content-length: 35038 date: Wed, 17 Apr 2024 09:15:41 GMT X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/icons/favicon-16x16.png	94.100.132.57	200 OK	884 B
URL GET HTTP/2 cdn.it-seal.de/it-seal/icons/favicon-16x16.png IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced Size 884 B (884 bytes) Hash af4c9d7cd828b2f49636b240809bfb83 4ff2b162029537604b6a9334fd93b348c4f60510 bb0c7ac5b45e8a51675486a9318d2dde9c447933a1f95320b951916eb0a7080d HTTP Headers `GET /it-seal/icons/favicon-16x16.png HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/png etag: "s4gua3ok" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 content-length: 884 date: Wed, 17 Apr 2024 09:15:41 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/_nuxt/07896ce.js	94.100.132.71	200 OK	10 kB
URL GET HTTP/2 phishing-training.it-seal.de/_nuxt/07896ce.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type gzip compressed data, from Unix Size 10 kB (10030 bytes) Hash f6343900998c77ac041a041edfe3ab7d 56fc476f052011d0e285b15c42bb7fbf0d043dc6 e41d09b70e6205aedef4317f1e8513cf0cee2036607519a4d516274462814199 HTTP Headers GET /_nuxt/07896ce.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=31536000 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:41 GMT etag: W/"5207-18e570eb9c3" last-modified: Tue, 19 Mar 2024 14:12:46 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml	35.244.181.201		444 B
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP 35.244.181.201:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type XML 1.0 document, ASCII text, with very long lines (332) Size 444 B (444 bytes) Hash 3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463 HTTP Headers `GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1 Host: aus5.mozilla.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Cache-Control: no-cache Pragma: no-cache Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx rule-id: unknown rule-data-version: unknown content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=t1LtVzWK1XPWgNkRCNZ0-hCl2Tn3-hSqjlhFJioU25Q5CDYW6WBYpuYC6uFDmO4urfHjgEwbsTiszGsEsZeQry0Di22jHz9lbFwEkDAPL-dePoE-pEKNyRtrO4qzBbrj strict-transport-security: max-age=31536000; x-content-type-options: nosniff content-security-policy: default-src 'none'; frame-ancestors 'none' x-proxy-cache-status: EXPIRED content-encoding: gzip via: 1.1 google date: Wed, 17 Apr 2024 09:15:27 GMT content-type: text/xml; charset=utf-8 vary: Accept-Encoding content-length: 444 age: 30 cache-control: public,max-age=90 alt-svc: clear X-Firefox-Spdy: h2

	cdn.it-seal.de/teachable-moment/bg-underwater.svg	94.100.132.57	200 OK	68 kB
URL GET HTTP/2 cdn.it-seal.de/teachable-moment/bg-underwater.svg IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type SVG Scalable Vector Graphics image Size 68 kB (67903 bytes) Hash cd18c7caf309b5e3a5b85b470125a48b 68292531993a8afab96e0dce02da7e1434fbf1c4 6f65d0ecadf2bb898d032c624bef9b7f02cd112e99f6bb29705796f3678e8e9d HTTP Headers `GET /teachable-moment/bg-underwater.svg HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-encoding: gzip content-type: image/svg+xml etag: "s4gua31ge7" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Accept-Encoding date: Wed, 17 Apr 2024 09:15:40 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a	94.100.132.71	200 OK	111 kB
URL User Request GET HTTP/2 phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type Size 111 kB (110790 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: i18n_redirected=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: none content-encoding: gzip content-type: text/html; charset=utf-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: "1b0c6-KxS2LZ2Qr3dv76MpbNtmDwtM1rk" server: Caddy set-cookie: i18n_redirected=en; Path=/; Expires=Thu, 17 Apr 2025 09:15:40 GMT; SameSite=Lax token=3f5b0247-8f40-46b2-a874-5535cf167d4a; Max-Age=172800; Path=/ vary: Accept-Encoding X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/_nuxt/img/phishing-mail.3825c8d.svg	94.100.132.71	200 OK	2.5 kB
URL GET HTTP/2 phishing-training.it-seal.de/_nuxt/img/phishing-mail.3825c8d.svg IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type SVG Scalable Vector Graphics image Size 2.5 kB (2455 bytes) Hash e35de6fe326402ed495eb457607d083a ae12a46ce528d6b5ed6dc5f804fa5034bb786fc3 1b17eef164638cabac00001d70561f187d4af4b56009390cdb79f36733ee7ec1 HTTP Headers GET /_nuxt/img/phishing-mail.3825c8d.svg HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=31536000 content-encoding: gzip content-type: image/svg+xml date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"997-18e570eb9c3" last-modified: Tue, 19 Mar 2024 14:12:46 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/?token=3f5b0247-8f40-46b2-a874-5535cf167d4a	94.100.132.71	302 Found	111 kB
URL User Request GET HTTP/2 phishing-training.it-seal.de/?token=3f5b0247-8f40-46b2-a874-5535cf167d4a IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type Size 111 kB (110790 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?token=3f5b0247-8f40-46b2-a874-5535cf167d4a HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found date: Wed, 17 Apr 2024 09:15:40 GMT location: /en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a server: Caddy set-cookie: i18n_redirected=en; Path=/; Expires=Thu, 17 Apr 2025 09:15:40 GMT; SameSite=Lax X-Firefox-Spdy: h2`

	cdn.it-seal.de/teachable-moment/angelschnur_haken_login.svg	94.100.132.57	200 OK	16 kB
URL GET HTTP/2 cdn.it-seal.de/teachable-moment/angelschnur_haken_login.svg IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type SVG Scalable Vector Graphics image Size 16 kB (15930 bytes) Hash 3d52d77ec3bc6392fb5a777454d9f50b a1eab898b2bef4d4eaa76c9643740441ea2d1925 3d7781bd605e21c1e3d7c4a20c157eab083f2b288d72f2f9671457933d9403a0 HTTP Headers `GET /teachable-moment/angelschnur_haken_login.svg HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Moz: prefetch DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-encoding: gzip content-type: image/svg+xml etag: "s4gua3cai" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Accept-Encoding date: Wed, 17 Apr 2024 09:15:41 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/api/v1/tracking?token=3f5b0247-8f40-46b2-a874-5535cf167d4a	94.100.132.71	200 OK	19 B
URL POST HTTP/2 phishing-training.it-seal.de/api/v1/tracking?token=3f5b0247-8f40-46b2-a874-5535cf167d4a IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type ASCII text, with no line terminators Size 19 B (19 bytes) Hash 5fb4f38d69d9d7f2c96641ec3a1adeb0 bf3f8c344d0b2a9ed27d43dec1a6427b16128e32 fc470f1fa405297441ef32131ddcfbd8d20c832a0d24ec2d28fd9c351eea04d6 HTTP Headers POST /api/v1/tracking?token=3f5b0247-8f40-46b2-a874-5535cf167d4a HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=utf-8 Content-Length: 74 Origin: https://phishing-training.it-seal.de DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Wed, 17 Apr 2024 09:15:41 GMT server: Caddy X-Firefox-Spdy: h2`

	cdn.it-seal.de/teachable-moment/bg-underwater.svg	94.100.132.57	200 OK	68 kB
URL GET HTTP/2 cdn.it-seal.de/teachable-moment/bg-underwater.svg IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type SVG Scalable Vector Graphics image Size 68 kB (67903 bytes) Hash cd18c7caf309b5e3a5b85b470125a48b 68292531993a8afab96e0dce02da7e1434fbf1c4 6f65d0ecadf2bb898d032c624bef9b7f02cd112e99f6bb29705796f3678e8e9d HTTP Headers `GET /teachable-moment/bg-underwater.svg HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Moz: prefetch DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-encoding: gzip content-type: image/svg+xml etag: "s4gua31ge7" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Accept-Encoding date: Wed, 17 Apr 2024 09:15:41 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/_nuxt/b0acbaf.js	94.100.132.71	200 OK	2.4 kB
URL GET HTTP/2 phishing-training.it-seal.de/_nuxt/b0acbaf.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type JavaScript source, ASCII text, with very long lines (2435), with no line terminators Size 2.4 kB (2384 bytes) Hash 72bc6388ded7d72893195a875da2e32d fb1d1fb65b1cea803d70e141780340da38485b9b 0dcd82a820d90b5e927129698f3577c8c819a4dc5333512b972ecca675ce4f09 HTTP Headers GET /_nuxt/b0acbaf.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=31536000 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"950-18e570eb9c3" last-modified: Tue, 19 Mar 2024 14:12:46 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/_nuxt/a393ceb.js	94.100.132.71	200 OK	189 kB
URL GET HTTP/2 phishing-training.it-seal.de/_nuxt/a393ceb.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type Size 189 kB (189378 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /_nuxt/a393ceb.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=31536000 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"2e3c2-18e570eb9c3" last-modified: Tue, 19 Mar 2024 14:12:46 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/fonts/open-sans/OpenSans-Regular.woff2	94.100.132.57	200 OK	45 kB
URL GET HTTP/2 cdn.it-seal.de/it-seal/fonts/open-sans/OpenSans-Regular.woff2 IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type Web Open Font Format (Version 2), TrueType, length 44648, version 1.0 Size 45 kB (44648 bytes) Hash 5d5735e57127db2f7a2ad879fc6056b8 1e55dbe4e381353b147bf963e97bb60a43b0f28c 408fe165dff48eb2f8cb3a2fcbc1dd92b94d56b4ab11813be55c776871c691cf HTTP Headers GET /it-seal/fonts/open-sans/OpenSans-Regular.woff2 HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://phishing-training.it-seal.de DNT: 1 Connection: keep-alive Referer: https://cdn.it-seal.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes access-control-allow-headers: content-type, x-requested-with access-control-allow-origin: https://phishing-training.it-seal.de content-type: font/woff2 etag: "s4gua3yg8" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Origin content-length: 44648 date: Wed, 17 Apr 2024 09:15:40 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/_nuxt/d23f7a3.js	94.100.132.71	200 OK	137 kB
URL GET HTTP/2 phishing-training.it-seal.de/_nuxt/d23f7a3.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type Size 137 kB (136839 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /_nuxt/d23f7a3.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=31536000 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"21687-18e570eb9c3" last-modified: Tue, 19 Mar 2024 14:12:46 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/fonts/open-sans/OpenSans-Light.woff2	94.100.132.57	200 OK	46 kB
URL GET HTTP/2 cdn.it-seal.de/it-seal/fonts/open-sans/OpenSans-Light.woff2 IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type Web Open Font Format (Version 2), TrueType, length 45812, version 1.0 Size 46 kB (45812 bytes) Hash 559e978f49dc58dbe4213c714d308483 70fbcba4e78b189d7b14a007deb674f68c07949d c42014995e3763f5fd8d42a07ddc4f2d12486017484f2324f3e6afb46029df82 HTTP Headers GET /it-seal/fonts/open-sans/OpenSans-Light.woff2 HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://phishing-training.it-seal.de DNT: 1 Connection: keep-alive Referer: https://cdn.it-seal.de/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes access-control-allow-headers: content-type, x-requested-with access-control-allow-origin: https://phishing-training.it-seal.de content-type: font/woff2 etag: "s4gua3zck" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Origin content-length: 45812 date: Wed, 17 Apr 2024 09:15:40 GMT X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/vendor/intro.js/minified/intro.min.js	94.100.132.71	200 OK	29 kB
URL GET HTTP/2 phishing-training.it-seal.de/vendor/intro.js/minified/intro.min.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type JavaScript source, ASCII text, with very long lines (28925) Size 29 kB (28926 bytes) Hash 9ab141137c5a3184abdc009c3eb1f036 875ea1ad86494376dc05e24070fdca541012a1f9 7ce3c799a6a6aa41cfbf84181b192248a9bb3bfdc6009e39e78a505d895ea0ba HTTP Headers GET /vendor/intro.js/minified/intro.min.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=0 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"70fe-17583ab8368" last-modified: Sun, 01 Nov 2020 11:57:37 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/vendor/intro.js/minified/introjs.min.css	94.100.132.71	200 OK	9.2 kB
URL GET HTTP/2 phishing-training.it-seal.de/vendor/intro.js/minified/introjs.min.css IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type ASCII text, with very long lines (9171), with no line terminators Size 9.2 kB (9170 bytes) Hash c01a3daeb73e532de0e9b5dcdc7df449 5e02f7f086f07e95c0979f3691554a6d7bd39fb7 27f9b72495bf564c43cda3cb40f0cf23d5143c91bb3c37227dd74cccc67a6c0c HTTP Headers GET /vendor/intro.js/minified/introjs.min.css HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=0 content-encoding: gzip content-type: text/css; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"23d2-17583ab8368" last-modified: Sun, 01 Nov 2020 11:57:37 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	phishing-training.it-seal.de/_nuxt/38ea98a.js	94.100.132.71	200 OK	5.4 kB
URL GET HTTP/2 phishing-training.it-seal.de/_nuxt/38ea98a.js IP 94.100.132.71:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectphishing-training.it-seal.de Fingerprint30:B9:67:F5:06:AC:92:DC:9C:F8:BA:BB:95:2E:AC:9B:FA:80:E6:83 ValidityTue, 19 Mar 2024 13:09:45 GMT - Mon, 17 Jun 2024 13:09:44 GMT File type JavaScript source, ASCII text, with very long lines (5594), with no line terminators Size 5.4 kB (5400 bytes) Hash 8da01885344db824b553cc21d1d0c9b7 a10a1b03a4aa229b27b6bf587ed5aaa09b0946ff f402af0ca8fca6322b8799e21e7a990cc3f2c487684b2251fd03cc19a3c275a9 HTTP Headers GET /_nuxt/38ea98a.js HTTP/1.1 Host: phishing-training.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Cookie: i18n_redirected=en; token=3f5b0247-8f40-46b2-a874-5535cf167d4a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes cache-control: public, max-age=31536000 content-encoding: gzip content-type: application/javascript; charset=UTF-8 date: Wed, 17 Apr 2024 09:15:40 GMT etag: W/"1518-18e570eb9c3" last-modified: Tue, 19 Mar 2024 14:12:46 GMT server: Caddy vary: Accept-Encoding X-Firefox-Spdy: h2`

	cdn.it-seal.de/it-seal/AATM/AATM.svg	94.100.132.57	200 OK	22 kB
URL GET HTTP/2 cdn.it-seal.de/it-seal/AATM/AATM.svg IP 94.100.132.57:443 ASN #25394 MK Netzdienste GmbH & Co. KG Requested by https://phishing-training.it-seal.de/en?token=3f5b0247-8f40-46b2-a874-5535cf167d4a Certificate IssuerLet's Encrypt Subjectcdn.it-seal.de Fingerprint5C:63:B7:CB:F7:5D:63:6A:60:41:79:A2:AA:E9:CF:78:EC:24:58:0E ValidityTue, 20 Feb 2024 17:31:43 GMT - Mon, 20 May 2024 17:31:42 GMT File type SVG Scalable Vector Graphics image Size 22 kB (22017 bytes) Hash 8d14c518e609cc759371398b8e698cf1 279e09fb40b58fa0f7789f4e600152b949487421 641e04d73f274eeeb89ac5bb9e75d62a164384207e1f0218cdbdd80d7dd96bfd HTTP Headers `GET /it-seal/AATM/AATM.svg HTTP/1.1 Host: cdn.it-seal.de User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://phishing-training.it-seal.de/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-encoding: gzip content-type: image/svg+xml etag: "s4gua3gzl" last-modified: Tue, 21 Nov 2023 08:58:51 GMT server: Caddy strict-transport-security: max-age=31536000 vary: Accept-Encoding date: Wed, 17 Apr 2024 09:15:40 GMT X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML