Report - xn--maliyeebakaniadekredikart1-j6d.com/sms.php

Report Overview

Submitted URL
xn--maliyeebakaniadekredikart1-j6d.com/sms.php
IP
92.205.172.254
ASN
#21499 Host Europe GmbH
Submitted
2024-03-29 06:07:01
Access
public
Website Title
e-Devlet | Aidat İade Sistemi
Final URL
xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Tags
e-devlet phishing government turkey
urlquery detections
Phishing - e-Devlet

Detections

urlquery
16
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
xn--maliyeebakaniadekredikart1-j6d.com	unknown	unknown	No data	No data	7.4 kB	394 kB	92.205.172.254
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-03-28	443 B	1.9 kB	142.250.74.168
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-03-29	3.4 kB	84 kB	142.250.74.67
aidatiadeniz.com	unknown	2022-12-07	2022-12-11	2024-03-24	455 B	340 B	77.247.183.155

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	xn--maliyeebakaniadekredikart1-j6d.com/sms.php	373 B	2023-04-20	2024-04-28
Pretty URL xn--maliyeebakaniadekredikart1-j6d.com/sms.php IP 92.205.172.254 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-20 04:25:56 Last Seen2024-04-28 19:42:26 Times Seen161 Hash 6221c43165cc0f8bb5de551f4ffb490c 22d6829f471d969704d1cdd4896459a6dd77efd5 0172e77fce20473f7798041796a583743312b7b2282b855914caf0d8c63a24e1 Loading...

HTTP Transactions (23)

URL IP Response Size

xn--maliyeebakaniadekredikart1-j6d.com/sms.php

92.205.172.254

200 OK

1.4 kB

URL User Request GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms.php
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
1.4 kB (1369 bytes)
Hash
4c51f442ce235564efc1ad51b162f556
231bd67e5f82ed18a2afa8940c77099946c1de85
dc8d6b815049852b636455d168b8de9cca268f88235b075adc9309b30c5fa7d3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms.php HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
vary: Accept-Encoding
content-encoding: br
content-length: 1369
content-type: text/html; charset=UTF-8
date: Fri, 29 Mar 2024 06:06:35 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/bootstrap.min.css

92.205.172.254

404 Not Found

315 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/bootstrap.min.css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/bootstrap.min.css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/gtm.js.indir

92.205.172.254

404 Not Found

315 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/gtm.js.indir
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/gtm.js.indir HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/font-awesome.min.css

92.205.172.254

404 Not Found

315 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/font-awesome.min.css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/font-awesome.min.css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/flaticon.css

92.205.172.254

404 Not Found

315 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/flaticon.css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/flaticon.css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/style.css

92.205.172.254

404 Not Found

315 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/style.css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/style.css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/default.css

92.205.172.254

404 Not Found

315 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/default.css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/default.css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/css

92.205.172.254

200 OK

1.4 kB

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
ASCII text
Size
1.4 kB (1372 bytes)
Hash
0890f8a23adc054984f3e112a9384932
b3837ff5722506450f070794fb20b943bff0bb53
608ff39d81bf3098a9db9aaea1c56c59773d04db4bdb4567500842cc9f1431cb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:44:08 GMT
etag: "53612f2-7ac8-58bf8dc510200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1372
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/bootstrap.min(1).css

92.205.172.254

200 OK

20 kB

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/bootstrap.min(1).css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
ASCII text, with very long lines (748)
Size
20 kB (19613 bytes)
Hash
854bcadf8912e3c6a07e2d3c05f89935
3f5bf45f2c5d8410558e7746770e596a17f207b1
0a0a376dc5ee222a63ee133b4ae1dc75a8655ae493139aa478d7a0dc64755a39

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/bootstrap.min(1).css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:44:08 GMT
etag: "53612f3-28cf2-58bf8dc510200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 19613
content-type: text/css
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/font-awesome.min(1).css

92.205.172.254

200 OK

6.9 kB

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/font-awesome.min(1).css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (308)
Size
6.9 kB (6866 bytes)
Hash
7f71f41cf0d1818f3ad2b7607a1037e0
a7c9fcc50b9f437429bfbfee38ffddcb7b5e82ce
2f499490b865ea22b5a1efdeade6d8b977073b0642238b51109cd202167d173e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/font-awesome.min(1).css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:44:08 GMT
etag: "53612f5-96ea-58bf8dc510200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6866
content-type: text/css
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/flaticon(1).css

92.205.172.254

200 OK

437 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/flaticon(1).css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
ASCII text
Size
437 B (437 bytes)
Hash
7b8de67ceb7cb981d858ff6a6ade4e2a
770d081371cb474ecae14e35428042324a91366c
b86d0b93e4e11cf1a09e3a7efe97c0faa07a335bd100b85f2ce7655942da1894

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/flaticon(1).css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:44:08 GMT
etag: "53612f6-666-58bf8dc510200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 437
content-type: text/css
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/logo-2.png

92.205.172.254

200 OK

11 kB

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/logo-2.png
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
PNG image data, 577 x 204, 8-bit/color RGBA, non-interlaced
Size
11 kB (10879 bytes)
Hash
6ca8c4f645ecbd51c1bf5511aac67e8a
706d4cc0050ea14cd580018dc2716df54f2d38c2
257461ed4d440311ffc7147309e879bc3ea33dc97c7f7cd15e17bc5ab0dd538e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/logo-2.png HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:44:08 GMT
etag: "53612f7-2a7f-58bf8dc510200"
accept-ranges: bytes
content-length: 10879
content-type: image/png
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/default(1).css

92.205.172.254

200 OK

93 B

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/default(1).css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
ASCII text
Size
93 B (93 bytes)
Hash
e9f75c016866eee7ce7fbc02d56d63de
4e82101ccd454c610b3a1d8f6c75bffe709532b2
cbb81f38ee322ed3d62af6bb700def6a6be839b1edafcb6261fc2a78ed4ffdb3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/default(1).css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:44:08 GMT
etag: "53612f4-9a-58bf8dc510200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 93
content-type: text/css
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/sms_files/style(1).css

92.205.172.254

200 OK

6.1 kB

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/sms_files/style(1).css
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
ASCII text
Size
6.1 kB (6128 bytes)
Hash
71965f114e5d9959d83cf148f625ad8c
596c5d3f621902d1982a677304a5581b575f508c
cb409ca7227f6ea8937b56b2c90284afe4f0596944940317b3fb7bb8444a69b2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /sms_files/style(1).css HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:44:08 GMT
etag: "53612f8-1074b-58bf8dc510200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6128
content-type: text/css
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-TAGCODE

142.250.74.168

404 Not Found

1.6 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-TAGCODE
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintDE:42:E4:CC:E5:66:70:09:F3:E6:6E:57:B7:5E:22:0A:A3:03:C2:7C
ValidityMon, 26 Feb 2024 08:03:40 GMT - Mon, 20 May 2024 08:03:39 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1582 bytes)
Hash
09c60d84b4894f149afdea17e37d1973
90c2200e9e9853e70a039263a6809f1016e387bb
b1aaac089cc6a2b2db157520685d4e01508653a6f78bdd9dc141206232b2ff71

HTTP Headers

GET /gtm.js?id=GTM-TAGCODE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
date: Fri, 29 Mar 2024 06:06:36 GMT
content-type: text/html; charset=UTF-8
server: Google Tag Manager
content-length: 1582
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

xn--maliyeebakaniadekredikart1-j6d.com/img/bg-image.jpeg

92.205.172.254

200 OK

342 kB

URL GET HTTP/2
xn--maliyeebakaniadekredikart1-j6d.com/img/bg-image.jpeg
IP
92.205.172.254:443
ASN
#21499 Host Europe GmbH

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectxn--maliyeebakaniadekredikart1-j6d.com
FingerprintB4:2E:86:B5:9A:0E:33:3C:22:CF:95:71:D4:07:38:90:9D:9F:89:2E
ValidityThu, 28 Mar 2024 20:11:22 GMT - Wed, 26 Jun 2024 20:11:21 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1280, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x1280, components 3
Size
342 kB (342468 bytes)
Hash
e1cf3b3e4f1a701e377b58b68525dea0
f74654fe07fff25cc61e89a7979d878d9caa17f9
09187608a5398d067af1e1ce53a11bdddbaf297ae4b3fd888aa2e6f5b808aafe

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - e-Devlet

HTTP Headers

GET /img/bg-image.jpeg HTTP/1.1
Host: xn--maliyeebakaniadekredikart1-j6d.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/sms_files/style(1).css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Jun 2019 07:42:54 GMT
etag: "53612ee-539c4-58bf8d7e7db80"
accept-ranges: bytes
content-length: 342468
content-type: image/jpeg
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v16/mem8YaGs126MiZpBA-UFVZ0b.woff2

142.250.74.67

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v16/mem8YaGs126MiZpBA-UFVZ0b.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14380, version 1.0
Size
14 kB (14380 bytes)
Hash
33543c5cc5d88f5695dd08c87d280dfd
600db9374e47e4f73a59ccc0a99bcc42f4a3e02a
9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52

HTTP Headers

GET /s/opensans/v16/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--maliyeebakaniadekredikart1-j6d.com
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:25:28 GMT
expires: Fri, 28 Mar 2025 17:25:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:11:29 GMT
content-type: font/woff2
age: 45668
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UN7rgOXOhpOqc.woff2

142.250.74.67

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UN7rgOXOhpOqc.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11708, version 1.0
Size
12 kB (11708 bytes)
Hash
63f785f075cfde69c82083dfed7415b2
48d7da82ec7146b7296c3c6ccbea087b9d809a3b
cdd3f533cbb03aa426012b4b7b2a2a0b3e6d474733891f74e225bbd58538c145

HTTP Headers

GET /s/opensans/v16/mem5YaGs126MiZpBA-UN7rgOXOhpOqc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--maliyeebakaniadekredikart1-j6d.com
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:46:26 GMT
expires: Fri, 28 Mar 2025 02:46:26 GMT
cache-control: public, max-age=31536000
age: 98410
last-modified: Mon, 25 Mar 2019 20:12:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UNirkOUuhp.woff2

142.250.74.67

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14880, version 1.0
Size
15 kB (14880 bytes)
Hash
819af3d3abdc9f135d49b80a91e2ff4c
0fd9f29faa386a9c8de328f799d2698948ed3d25
1491de1b31182d38593bcf660c99bc6018af8e192d91663f67ec9d045a3b5ccc

HTTP Headers

GET /s/opensans/v16/mem5YaGs126MiZpBA-UNirkOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--maliyeebakaniadekredikart1-j6d.com
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14880
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:36:03 GMT
expires: Fri, 28 Mar 2025 02:36:03 GMT
cache-control: public, max-age=31536000
age: 99033
last-modified: Mon, 25 Mar 2019 20:12:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UNirkOXOhpOqc.woff2

142.250.74.67

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UNirkOXOhpOqc.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11724, version 1.0
Size
12 kB (11724 bytes)
Hash
f5f8ba179f4e80e00e371c32d88f8353
b808657b465df8a3193e5da23cadce5542c1b84c
b9d8ea031a330add9781fc795e3eb65238b4f3501647ea40558035d5d5fad268

HTTP Headers

GET /s/opensans/v16/mem5YaGs126MiZpBA-UNirkOXOhpOqc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--maliyeebakaniadekredikart1-j6d.com
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:36:40 GMT
expires: Fri, 28 Mar 2025 17:36:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:12:09 GMT
content-type: font/woff2
age: 44996
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v16/mem8YaGs126MiZpBA-UFW50bbck.woff2

142.250.74.67

200 OK

11 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v16/mem8YaGs126MiZpBA-UFW50bbck.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11316, version 1.0
Size
11 kB (11316 bytes)
Hash
6923b1967484e2b12e1016fb33061791
9d448e528df62ea568b6a1657b8c3e64fac760f8
28e9420a6d03a70b837b51c9fbe1bb1f819a3d4aa71bffa07f7c3e79d7dcf878

HTTP Headers

GET /s/opensans/v16/mem8YaGs126MiZpBA-UFW50bbck.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--maliyeebakaniadekredikart1-j6d.com
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:23:22 GMT
expires: Fri, 28 Mar 2025 17:23:22 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:13:03 GMT
content-type: font/woff2
age: 45794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2

142.250.74.67

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v16/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15056, version 1.0
Size
15 kB (15056 bytes)
Hash
0edb76284a7a0f8db4665b560ee2b48f
02496387a5f7bf7b79df52c7b76ece4ebc7a0710
74201a4b97ec1d5e86252dd0180eafd8c5378a9235864dbcd682f3575b41c85b

HTTP Headers

GET /s/opensans/v16/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--maliyeebakaniadekredikart1-j6d.com
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:27:14 GMT
expires: Fri, 28 Mar 2025 17:27:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:12:24 GMT
content-type: font/woff2
age: 45562
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aidatiadeniz.com/tema/img/favicon.ico

77.247.183.155

404 Not Found

9 B

URL GET HTTP/2
aidatiadeniz.com/tema/img/favicon.ico
IP
77.247.183.155:443
ASN
#43350 NForce Entertainment B.V.

Requested by
https://xn--maliyeebakaniadekredikart1-j6d.com/sms.php
Certificate
IssuerLet's Encrypt
Subjectaidatiadeniz.com
FingerprintD8:05:CB:27:77:9D:CD:BA:4D:EF:45:F5:AD:EE:9F:C4:6A:E1:B2:9A
ValidityFri, 22 Mar 2024 10:51:22 GMT - Thu, 20 Jun 2024 10:51:21 GMT

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9

HTTP Headers

GET /tema/img/favicon.ico HTTP/1.1
Host: aidatiadeniz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--maliyeebakaniadekredikart1-j6d.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: max-age=0, private, must-revalidate
content-length: 9
date: Fri, 29 Mar 2024 06:06:36 GMT
server: Cowboy
set-cookie: sid=80361f57-ed92-11ee-a4e6-261bbc42ff83; path=/; domain=.aidatiadeniz.com; expires=Wed, 16 Apr 2092 09:20:43 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (23)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size