| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/apple_store.jpg | 141.164.54.122 | 200 OK | 11 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/apple_store.jpg IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 250x82, components 3 Hash498c4a8cc089ec2fc0b87f460924b9b4 324b0ef1cf07829216653bf3fca04add4ebf553f 509066150aa1da2b163e681cff62f67f0becd0bb65cded95be964371835798f6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/apple_store.jpg HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: image/jpeg
content-length: 11255
last-modified: Mon, 23 May 2022 11:59:06 GMT
etag: "628b770a-2bf7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/google_play.jpg | 141.164.54.122 | 200 OK | 12 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/google_play.jpg IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 270x80, components 3 Hash71405560fcf941f01e531e8564ad9e3f a970b8084d6e7cdd714dbd1add272ac630cd9fe9 bda17ffead5e3809b288330e7aa2d2b689c45cfadcef8249416d07afe34477a7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/google_play.jpg HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: image/jpeg
content-length: 11827
last-modified: Mon, 23 May 2022 11:59:06 GMT
etag: "628b770a-2e33"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/pic_image/package.jpg | 141.164.54.122 | 200 OK | 80 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/pic_image/package.jpg IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1440x960, components 3 Hashc8f62200abc0901f82eb57cfd63f11da b57afb6c671cc84aff03656945c36af57ec0c68d 0e343f72b8fe95c764a97e83ec0b5f47910e7615045487174fb48e1ce6075372
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/pic_image/package.jpg HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: image/jpeg
content-length: 79701
last-modified: Mon, 23 May 2022 11:59:06 GMT
etag: "628b770a-13755"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2 | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2 IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (933) Hash213d40bf448e8cac57d964d095370cc4 d6f36c5c02235168c988a9971c12612df5542294 4a9e2d5225b40af835215586529b6ac2ae265ecb10d9d0e14c8f43806f4cabfd
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2 HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2 | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2 IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (933) Hash213d40bf448e8cac57d964d095370cc4 d6f36c5c02235168c988a9971c12612df5542294 4a9e2d5225b40af835215586529b6ac2ae265ecb10d9d0e14c8f43806f4cabfd
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2 HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2 | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2 IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (933) Hash213d40bf448e8cac57d964d095370cc4 d6f36c5c02235168c988a9971c12612df5542294 4a9e2d5225b40af835215586529b6ac2ae265ecb10d9d0e14c8f43806f4cabfd
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2 HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/clientlib-provider-correosid.js | 141.164.54.122 | 200 OK | 2.0 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/clientlib-provider-correosid.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash380361ef07e740897e954668c0d3b984 cebab82c2cdfd300887a661435dcf4bd9b15ae72 c27a034989f6dd3b7b9b6acb784b59a51cab7e11ef8f04b13a7791769f0f608a
GET /es/assets/recibir_paquete_files/clientlib-provider-correosid.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-471"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (933) Hash213d40bf448e8cac57d964d095370cc4 d6f36c5c02235168c988a9971c12612df5542294 4a9e2d5225b40af835215586529b6ac2ae265ecb10d9d0e14c8f43806f4cabfd
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:18 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (933) Hash213d40bf448e8cac57d964d095370cc4 d6f36c5c02235168c988a9971c12612df5542294 4a9e2d5225b40af835215586529b6ac2ae265ecb10d9d0e14c8f43806f4cabfd
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:18 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (933) Hash213d40bf448e8cac57d964d095370cc4 d6f36c5c02235168c988a9971c12612df5542294 4a9e2d5225b40af835215586529b6ac2ae265ecb10d9d0e14c8f43806f4cabfd
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:18 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (933) Hash213d40bf448e8cac57d964d095370cc4 d6f36c5c02235168c988a9971c12612df5542294 4a9e2d5225b40af835215586529b6ac2ae265ecb10d9d0e14c8f43806f4cabfd
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:18 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.ttf | 141.164.54.122 | 404 Not Found | 6.0 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.ttf IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash11963f1d4f27fdd4e1706421e87b2219 689097f25800f31a9ab8af3efc65ac7a430987f3 25add8ea2ebe20b161fbebc61647c116ebb7a6ace59d5dadc3abb1ae90472358
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.ttf HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
etag: W/"66213f0f-68a"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1_002.js | 141.164.54.122 | 200 OK | 94 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1_002.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1_002.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-16eac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/deco_triangles.svg | 141.164.54.122 | 200 OK | 1.2 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/deco_triangles.svg IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashb08e055dfbbe00594cc43d7183589af8 e868a1f3753f2a4b0d3719001346bd1d82e3e88b cb1a04de8b8780e5e8c6791474fb16db22cc559e8c6d3610b4f0bf8b450ecd54
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/deco_triangles.svg HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: image/svg+xml
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-4bb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-ui-1.js | 141.164.54.122 | 200 OK | 211 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-ui-1.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18557) Size211 kB (210902 bytes) Hash0cd3f4fce2e0fe4a3826df5e2b5cc9bf a4a80afd87d6d3a986defb2741d5b76d18a96125 794bf1ff4b8bbc981cb280b4efeb6e5b040afb34b85f6e3cd2546ace15910301
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-ui-1.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-337d6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/CORREOS-favicon.ico | 141.164.54.122 | 200 OK | 110 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/CORREOS-favicon.ico IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel Size110 kB (110021 bytes) Hash349246ee336d8b2986e584a4fa436128 598b9f95458a2426bf1688d616c4f6f3fea3580e 68554c17c00a589c2b29e1f74ac5efbcd8d30252792626f5fff81955e4d89ae7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/CORREOS-favicon.ico HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:18 GMT
content-type: image/x-icon
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-1adc5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/Recibir_paquete.php | 141.164.54.122 | 200 OK | 598 kB |
URL User Request GET HTTP/2correos-esxpress.tempurl.host/es/Recibir_paquete.php IP141.164.54.122:443
CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
Size598 kB (597783 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Anti-debugging code |
GET /es/Recibir_paquete.php HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:16 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-robots-tag: noindex, nofollow, nosnippet, noarchive
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/clientlib-site.js | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/clientlib-site.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1767), with no line terminators Hash433220840e1ed3ccb81a6466a3eb2aec 6270d28f6a2f4074b3497fb16af91099333fcd0a db73c710a0c7ccc522263dfd6f15b70f2121d2fc24e6039251c4174fb3084da5
GET /es/assets/recibir_paquete_files/clientlib-site.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
etag: W/"66213f0f-68a"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1.js | 141.164.54.122 | 200 OK | 248 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Size248 kB (248235 bytes) Hash273e017fd0bef143258516bdee173a1e b47730ffaec4272a8a01756af2ef13ecea1c4e92 9fcc241093405946885039df428cfa7f0051a1f2bdbcc5a313a177a9e35f8806
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-3c9ab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff2 | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff2 IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1767), with no line terminators Hash433220840e1ed3ccb81a6466a3eb2aec 6270d28f6a2f4074b3497fb16af91099333fcd0a db73c710a0c7ccc522263dfd6f15b70f2121d2fc24e6039251c4174fb3084da5
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff2 HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/html; charset=UTF-8
content-length: 1674
vary: Accept-Encoding
etag: "66213f0f-68a"
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/clientlib-base.js | 141.164.54.122 | 200 OK | 129 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/clientlib-base.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
Size129 kB (128839 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /es/assets/recibir_paquete_files/clientlib-base.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-1f747"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/deco_bars.svg | 141.164.54.122 | 200 OK | 913 B |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/deco_bars.svg IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash5e2e64c3b1e75bfdd35960b8981e4eab 1f573efee61d928abdf6d44ceaa193b5153d7bf0 be86cea889070d2e4a05f251927b6ecbdcaab2659124016d34605dfda00622d2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/deco_bars.svg HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: image/svg+xml
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-391"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css | 141.164.54.122 | 200 OK | 129 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/correos-ui-kit.css IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
Size129 kB (128571 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /es/assets/recibir_paquete_files/correos-ui-kit.css HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/css
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-1f63b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/gtm.js | 141.164.54.122 | 200 OK | 80 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/gtm.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1555) Hashbd9368eb37645cdf268345f880851e03 2b3d6120eb736e9f218f48f9056b64860d0ae619 f60fb122312d6f897d7ed61b9ee0a89b6551649fdd3a6be513c50bb73b7d2654
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/gtm.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-1367b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/container.js | 141.164.54.122 | 200 OK | 752 B |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/container.js IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (755), with no line terminators Hashf1e1b5df33d403a259a97f11212c23b4 18777dc94048804c2d75e7fcf05c33859ae90b0b e02521ad04fe43dc502424669dab2d7f7ef67804c3f7f9a54c01706a9db726d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/container.js HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-2f0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/libs/granite/csrf/token.json | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/libs/granite/csrf/token.json IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1767), with no line terminators Hash433220840e1ed3ccb81a6466a3eb2aec 6270d28f6a2f4074b3497fb16af91099333fcd0a db73c710a0c7ccc522263dfd6f15b70f2121d2fc24e6039251c4174fb3084da5
GET /libs/granite/csrf/token.json HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
etag: W/"66213f0f-68a"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/CORREOS-favicon.ico | 141.164.54.122 | 200 OK | 110 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/assets/recibir_paquete_files/CORREOS-favicon.ico IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel Size110 kB (110021 bytes) Hash349246ee336d8b2986e584a4fa436128 598b9f95458a2426bf1688d616c4f6f3fea3580e 68554c17c00a589c2b29e1f74ac5efbcd8d30252792626f5fff81955e4d89ae7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Correos |
GET /es/assets/recibir_paquete_files/CORREOS-favicon.ico HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:36:18 GMT
content-type: image/x-icon
last-modified: Mon, 23 May 2022 11:59:06 GMT
vary: Accept-Encoding
etag: W/"628b770a-1adc5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| correos-esxpress.tempurl.host/es/Seleccione%20medio%20de%20pago_fichiers/main.css | 141.164.54.122 | 404 Not Found | 1.7 kB |
URL GET HTTP/2correos-esxpress.tempurl.host/es/Seleccione%20medio%20de%20pago_fichiers/main.css IP141.164.54.122:443
Requested byhttps://correos-esxpress.tempurl.host/es/Recibir_paquete.php CertificateIssuerDigiCert Inc Subject*.tempurl.host Fingerprint9E:9A:38:39:92:C6:0E:CE:3A:C2:ED:11:0F:88:3D:D8:62:B5:9B:42 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1767), with no line terminators Hash433220840e1ed3ccb81a6466a3eb2aec 6270d28f6a2f4074b3497fb16af91099333fcd0a db73c710a0c7ccc522263dfd6f15b70f2121d2fc24e6039251c4174fb3084da5
GET /es/Seleccione%20medio%20de%20pago_fichiers/main.css HTTP/1.1
Host: correos-esxpress.tempurl.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://correos-esxpress.tempurl.host/es/Recibir_paquete.php
Cookie: PHPSESSID=9fc1c40b4c69a224d44ccc673163c059
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Fri, 26 Apr 2024 15:36:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
etag: W/"66213f0f-68a"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|