Report - cmut.uat.dashboard.fanvoice.com

Report Overview

Submitted URL
cmut.uat.dashboard.fanvoice.com
IP
5.135.98.239
ASN
#16276 OVH SAS
Submitted
2024-04-17 09:13:46
Access
public
Website Title
Fanvoice Dashboard
Final URL
cmut.uat.dashboard.fanvoice.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
94

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-17	572 B	49 kB	142.251.209.131
use.fontawesome.com	942	2012-10-18	2017-01-30	2024-04-16	2.5 kB	1.3 MB	104.21.27.152
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-17	463 B	17 kB	142.250.74.106
cmut.uat.dashboard.fanvoice.com	unknown	unknown	No data	No data	25 kB	3.5 MB	5.135.98.239
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-04-16	471 B	54 kB	104.18.11.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel
2024-04-15	medium	cmut.uat.dashboard.fanvoice.com/	Credit Mutuel

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/export-data.js	11 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/export-data.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 9d533822c52a0dfd63cb42d20982918d 424d97946ea9deda9d65569521b230883117d8d8 1cdbb4cf5413f7327c5e42fc9f9ce99f4d6e53cc8aa32b1cc3c369afabef6f67 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/accessibility.js	126 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/accessibility.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 84a85edc51464809c891151578d1cfaa dfe0fde9d73260f80bf4eaca2a5c3d7bbfc784ce b77458a1aaee9681ed8412ef3ed7236f8798cd965682100dd128401ea945bc35 Loading...

	cmut.uat.dashboard.fanvoice.com/	4.9 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/ IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:54 Times Seen1 Hash 4f5c29e1cc385f68604afe22e90c258e 4564a718e77b53b455c6065c87e6c00de30ea082 d6fd9921bead77b25ab1187bc0ac931f1344693e5d16a5beb62fd04ca14fce1f Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/dataTables.bootstrap4.min.js	3.3 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/dataTables.bootstrap4.min.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 0cc0294a4c42518875048b449889d2d8 56e42563e216c6a0c884e72b9e691263bc64cb71 82008b5ee81d1f836302725334a84fb77d57e50db228d7b447d9b93e6f0f378a Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/ckeditor/ckeditor.js	624 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/ckeditor/ckeditor.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:54 Times Seen1 Hash 21f00227de46d1f6915752d47cdb48ee a77af4f2533f947837c8e50e503a57f7e2163d8b d85c9916c264e89fb461585bc43f2b36d9eadedd123c02b830411605a23d5bc6 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/fanvoiceLib_v2.0.js	28 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/fanvoiceLib_v2.0.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 1ab408d80549bad0d2a0465de1dab26f 5fb2c5eb4667773834424f7c238bd1c638d60d7d 33eaed4edab50821bb7c795dcea66a349d3d7456b7caaae53254c21f2b0b381d Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/main_v2.2.js	4.0 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/main_v2.2.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 7f4162f76ef614986630fb00dcebe917 6d8fd19830897a513eba0d2dbaeee8197358640c 3f4d733133c6ae1c8da24d5adbc7daca9720b3a780910dea19e9f8971271d131 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/bootstrap-select.min.js	33 kB	2023-03-29	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/bootstrap-select.min.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:42:45 Last Seen2024-04-17 11:13:56 Times Seen12 Hash 61a1ebd9f32cd4a0630dd94b806a6e7b b30001d23e441fa4569826e8885ee6eba76afc0a f34edef76953e6df0941754387dd3d4694952ec9dc428d557fb6ec8d1568aac6 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/popper.min.js	20 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/popper.min.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash cf6c33709cd816cddd361ff67f6e4415 0bfe8f231456727253ca718f45fc51a4072328b2 afc58cc213ed73402e7f1f854f5a93821ade831b6c641060b1adb07be94dadf7 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.validate.min.js	24 kB	2023-04-06	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.validate.min.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 10:18:41 Last Seen2024-04-17 11:13:54 Times Seen47 Hash 161437e6bba9f0eb5288c1772697125a 50c48978230c9ae8bff251475e899f4c60bdc2eb f1db7f1a0de6de70db59c069c2ab3058138a602cc2fdd16a6be72645b6dff031 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/sessionManagement_v2.2.js	11 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/sessionManagement_v2.2.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 2dfc4eb662cdfb3bdd9bc4204fd8b6a1 d97d73a507dd7fa230313fabbbe1df14fbecd9fe f22aec0f03c4a89df8bfc79984e03b30e7ea225137d22c28d931974598359579 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/highcharts.js	300 kB	2023-11-01	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/highcharts.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 08:39:13 Last Seen2024-04-17 11:13:56 Times Seen4 Hash b8716e837961a8052cc71188e6edebc9 b0b9a8af2bc7c8684ee0519e74c87548a2c8ccaa ed684d7568fa3d54602d038b32ed75ceebd7b5150f119a33c600551578200c81 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery-ui.js	540 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery-ui.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:54 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 2859819bd5c5a3b4a3ffda06840cce1e 87bb94a9e00a2285035fe730a8f8f036dd2de2c5 d99871c8849fe0951dc6d5cb58ceb75fc4c2a90d21591e8ab20c3ece1fc4ace7 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/scrollIt.js	4.8 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/scrollIt.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 1f7aaeacf54bd0a129ee4ca3a4b63935 9cba52b7e42fe622dfdbeb796fcb6ba92d4fc36d d218004e99462f05a950b40bfcafae02cc039afe5eda1c189fb525928756c92d Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.circliful.min.js	9.3 kB	2023-03-14	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.circliful.min.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:27:48 Last Seen2024-04-17 11:13:56 Times Seen9 Hash bb3dc0dc90c0a91477e955c6cc609edd da742e4f65707c4d48378e1583b9c893fb510ea0 7c691fd13d73d6d1d0ac5bedf0e55de7296a11e4de1a8d78dbd202ccaa7b1fb6 Loading...

	cmut.uat.dashboard.fanvoice.com/	101 B	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/ IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:55 Times Seen1 Hash 64e3e7eb53d74a3df85b7acad5884e55 950556ffc588a0d497ea1b463f3673f643306344 47f1a1d59a588cedadea590d32e0e4dc54ac3b45ef3c9ed9b8aef0277a75d9b1 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/legalDocsManagement_v2.0.js	20 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/legalDocsManagement_v2.0.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 94a29d457744b170e5d9e6a360c05830 fb33273fed2bf44a5a2670146f6d15ceee452532 3696d7ccd568e5612548530559d2640ff5228058d9c1a8f8bb9100a9c2824704 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/bootstrap.min.js	58 kB	2023-03-07	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/bootstrap.min.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:13 Last Seen2024-04-17 11:13:56 Times Seen69 Hash 3cc8a317db464159cc9d0af00f96d862 6ff5f386790699f03f973fb81ea05762a152b552 a7a0c4ae9907b4e395bcaf2d071a13b065f61ed882cf06c4ab27b9066d91e0f1 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/utils_v2.0.js	7.3 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/utils_v2.0.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash e3bcbce07c426cb472978be8cef9cf6d 656524c6d0f5ecfa315a97888d070ae72a463bc4 8189c108a5403cd750eb8bb5f692f1292423cd0c5972a5354e6d4d71154e15b4 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/dashboard.js	6.4 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/dashboard.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash c2c9b9029adab4b3bd86ad86b632c6bb b95c5d2271bdba91bc0ed24ce7ab03e9a42156c4 43517f80683a0c7b417b0754d970c095e78527e4f98662db6bc50b141ba6f645 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/dashboard/fr.js	39 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/dashboard/fr.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:55 Times Seen1 Hash 06b00a14f2298be06ed168f96a9a2ec2 565f677bb9914585c33e7bb1847305cb49cda6f3 c5dfbe168f8e5b66b3734c1d8bbfc97914fadddf4a3009a731d27019915f38db Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/exporting.js	19 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/exporting.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 92ad41a742e6fb44996e36f98082c027 13eb8824ae79d0dffcc23367dda511785b6d329f 64996ce45a92685530baa0638150bf4c8d0b9a8c6fda102a4a02fa4c6ba2e928 Loading...

	cmut.uat.dashboard.fanvoice.com/	945 B	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/ IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:55 Times Seen1 Hash 44619741c2ba492f28c0e009191334fa 2d6f286a8bd3dccf490266cbe64e8a764b1f89c6 ebfab3e6e5aea86277934e1092b109a2fcbbff03cb8883c71f2c1037451319b9 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/login/login_v2.0.8.js	41 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/login/login_v2.0.8.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 61bbbc6ea8b4021ab42b08adb2e5455c c4a44406c8f880bea5df6310450fe23ba3c0ac70 700560df6cae3918d068e039359987d82aa547cd7b4b33b1e1c1668a5221b2b8 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/jquery.dataTables.js	449 kB	2023-06-21	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/jquery.dataTables.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-21 04:42:17 Last Seen2024-04-17 11:13:55 Times Seen7 Hash b7a8d4365cd19bfd66270670ebb81c33 9d7ba9755f1a4463df08b1e6e88d9a81e54929d6 288cf9acf431e71081469cc022cfc81517795f3d192660266d02e01175bd2866 Loading...

	use.fontawesome.com/releases/v5.0.13/js/fontawesome.js	28 kB	2023-03-07	2024-04-17
Pretty URL use.fontawesome.com/releases/v5.0.13/js/fontawesome.js IP 104.21.27.152 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:36:46 Last Seen2024-04-17 11:13:56 Times Seen39 Hash 4c5c317d4c931a8433301ce316233f30 a868492160ab3c64157981f04b25e958596d025e dc95e73cf623a2cdf21ecc979ad38a1c8408b95034b9ed6d5898e9b56eaffc79 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/common.js	5.0 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/common.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash 2ac23cde85cbc6590e1d50f41a8ad344 8a17184e73ab77c750708c183e4a73d77d9c4bf9 afe723bfc27f8da3b9a86ac7fce6111a36315434dff7ff6590325cd238902403 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/base64.js	3.0 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/base64.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash ae841aa3319e750d821f41d09d84be5b 891c7848d8d69955cbc74556a67a3c4886cb02f2 a02b64b6d02ada8f0dee45c8e879f79585301182c9712a3eeec8d1a4c5c5f9e6 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/fr.js	68 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/fr.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:55 Times Seen1 Hash 228be031c3a99734cc0a7b6d7f941613 5512b2e0b5386fdfe2e3ff90df64f8c66b527145 01c37a94a2d6745db836b5bc04e6fbddf2863f5e756875e879b32cc0d99d5ce5 Loading...

	cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.min.js	88 kB	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.min.js IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:56 Times Seen2 Hash a6ec331b5cd16f287dcb7a788c54c3f3 fdb1b6bd07721a133bee8e345325084d84b0023f 9b1165a9469fbbba81102b06428c39d32346b5b9571c22abb56fa5cdb3cd1fa5 Loading...

	cmut.uat.dashboard.fanvoice.com/	95 B	2024-02-02	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/ IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-02 15:23:09 Last Seen2024-04-17 11:13:55 Times Seen2 Hash 45cd7c1af881c7b1559df7024fbcf0f4 718e8b6abc90f18436cfada69224355eb78a67de 39cb3c207ec169f7be21b154127e61610a6fc1f7d0697eb4e163987777c6f70c Loading...

	cmut.uat.dashboard.fanvoice.com/	27 B	2024-04-17	2024-04-17
Pretty URL cmut.uat.dashboard.fanvoice.com/ IP 5.135.98.239 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 11:13:55 Last Seen2024-04-17 11:13:55 Times Seen1 Hash 96b82f65837fecb49d64bf5af19e4b56 fc47f49948aa6f4c966f2565a00bad0fd211dd27 7da84da7835c85c00df0c3b31e56ce311401ddacbc825258efb2251ee685d14e Loading...

HTTP Transactions (55)

URL IP Response Size

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/jqueryDataTables.min.css

5.135.98.239

200 OK

14 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/jqueryDataTables.min.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with very long lines (13891)
Size
14 kB (13894 bytes)
Hash
5ec0451cf6fa5a0c648773a0be04476e
a587c9b3670a6816f489b19e86cdc454b7c67a1b
891938ff02a056f1d3cf46b827585f0af6cafff83bc43579a8a98e7c8ac4c085

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/css/jqueryDataTables.min.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 13894
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/jqueryDataTables.bootstrap4.min.css

5.135.98.239

200 OK

5.4 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/jqueryDataTables.bootstrap4.min.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with very long lines (5394)
Size
5.4 kB (5396 bytes)
Hash
3f63be0102299dbfa782e3190a874570
b321fe60228ad0a9ef5d56129878782605c955c8
3cc9b9193be55af9070a9f9ccbc09d020ea09cf78a5e11dae7e02eae6fc04ba9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/css/jqueryDataTables.bootstrap4.min.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 5396
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/jquery-ui.css

5.135.98.239

200 OK

36 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/jquery-ui.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with very long lines (2363)
Size
36 kB (35974 bytes)
Hash
b34dd1105b25661926a64c6764b56026
19a9bd7c8294e5cfb9f19eb847725bbe9e7e38d7
64e033dd870716087a733600340f392b05143808d85efd374fb9d5eac67c9551

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/css/jquery-ui.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 35974
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/bootstrap-select.min.css

5.135.98.239

200 OK

6.7 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/bootstrap-select.min.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with very long lines (6433)
Size
6.7 kB (6651 bytes)
Hash
806df6df209b49ec427949727e69ee38
59ee2bf655b28a0e6089000ab1f664b440145fc1
cb319e4333beece23cb7c1ec5d72ec0932af6724b855fe5030e9e10300abae1f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/css/bootstrap-select.min.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 6651
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonLAB/css/style.css

5.135.98.239

200 OK

185 B

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonLAB/css/style.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with CRLF line terminators
Size
185 B (185 bytes)
Hash
02c207e7e256da07ade1743da0d717fc
b1d32d3bd31531d4db268280d918843c3c7e0147
c0967cbd388f94713e574f89faac8796392dd7c9f4ce5652c64cf54718ea50df

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonLAB/css/style.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 185
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/css/dashboard-form.css

5.135.98.239

200 OK

4.3 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/css/dashboard-form.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
assembler source, ASCII text, with very long lines (306)
Size
4.3 kB (4345 bytes)
Hash
11e16cba3d52a54e0c510019aac4b042
bb8f9d9d9abd7cfdf6bba57c048dbe1bdecc2572
96c4d45652b2fb65b7231089872c2d8cd9080f5572bcb6c140c97e31a87b171d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/css/dashboard-form.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 4345
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/css/jquery.circliful.css

5.135.98.239

200 OK

1.1 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/css/jquery.circliful.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text
Size
1.1 kB (1081 bytes)
Hash
63abc4df6f7a669a3bf00da012f55e57
248fa707743cbdb8993f600621a5a22b7b4244ed
7b81d99d6219d5c428a80d0d500f4fc45d92f4e5894dc88847beb5bbb66b8f85

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/css/jquery.circliful.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 1081
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/

5.135.98.239

200 OK

47 kB

URL User Request GET HTTP/2
cmut.uat.dashboard.fanvoice.com/
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (4748), with CRLF, LF line terminators
Size
47 kB (47147 bytes)
Hash
dfaf1adeaa8af46d675a360cbdb4628d
8f9efb5a5c0c6d405c00d3eab5a51112206c9581
f0dbfad0e51952a80899e63af1814f1a0d9c3039054644bb757a3a1b5e6b923e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET / HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:17 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=pjh29ugitrqlj54n0of256rk1v; path=/; secure; HttpOnly
context=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
PHPSESSID=s6pfifjniecodh6mhn9jckjjv8; path=/; secure; HttpOnly
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonLAB/css/custom-lab.css

5.135.98.239

200 OK

24 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonLAB/css/custom-lab.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text
Size
24 kB (24163 bytes)
Hash
baa2a8ff65279087046329eb1942ea9b
416a6be135055244326e0191b80c2e7f49ccb39f
f6f49efce0eb60f6f6e1380fbb606a74f71ccd9e83c7e3620818365771c14a0f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonLAB/css/custom-lab.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 24163
last-modified: Wed, 22 Nov 2023 10:00:13 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/bootstrap.min.css

5.135.98.239

200 OK

156 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/bootstrap.min.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with very long lines (65324)
Size
156 kB (155759 bytes)
Hash
92af3981f10606ab3532f7ab30c68c52
6d5f3de53fc7e644b7cc967d2e12b6f2bfdbcab5
c2f351631f19a94a51c59c1d56abf5f8c29e4254bb15c2cb31d9c406cde48b11

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/css/bootstrap.min.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 155759
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/css/paper-dashboard.css

5.135.98.239

200 OK

147 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/css/paper-dashboard.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text
Size
147 kB (146590 bytes)
Hash
0aa32df427e1b37aa174a5cb996b0679
b103664eebbbaba27cac89a14cca61115b11ec46
9d9af5651f919e8f943ff1dc7eac7e3df29a7c91722cc28545677e13cab3c473

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/css/paper-dashboard.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 146590
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonLAB/css/ui-bootsrap.css

5.135.98.239

200 OK

214 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonLAB/css/ui-bootsrap.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with very long lines (340)
Size
214 kB (214044 bytes)
Hash
e73766e9b193c74337800606f3ee40e7
ac3c8506887c0043e93952a6641d86b8d402f5f5
33f9943827823517fa9072ce6602f5781a1a94a5182c8e09cbdcc0c3809c5a1d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonLAB/css/ui-bootsrap.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 214044
last-modified: Wed, 22 Nov 2023 10:00:13 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/css/desktop.css

5.135.98.239

200 OK

659 B

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/css/desktop.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with CRLF line terminators
Size
659 B (659 bytes)
Hash
b362d1620ba6732dc8584f3686fe4d33
5409868edcf07bb931d186fdd4dd190232974a99
e45e524069b74e786fc791a0ca9af02cd3fddb79d475fa0768fe3b00ececa226

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/css/desktop.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/commonLAB/css/style.css
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 659
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/css/tablette.css

5.135.98.239

200 OK

4.7 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/css/tablette.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with CRLF line terminators
Size
4.7 kB (4723 bytes)
Hash
f5dd4a5a21dab82d61242666515fc0ed
040756e9593552041a0cc7e14efbb1df5125ec65
8ccfab3d6c78d70237376651355687184c9abd068b7720ce74da7bf3779edbde

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/css/tablette.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/commonLAB/css/style.css
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 4723
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/css/mobile.css

5.135.98.239

200 OK

50 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/css/mobile.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text
Size
50 kB (50183 bytes)
Hash
c5f88ab59cad8b4a63135454073a1a5e
cd76837b707d1cda2a5179b94be6d489167dfc10
e841df55d13d001ecc6ac37c535bd937f8c9649a430825b59a7a38818ef020e7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/css/mobile.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/commonLAB/css/style.css
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 50183
last-modified: Fri, 02 Feb 2024 15:25:39 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/css/common.css

5.135.98.239

200 OK

153 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/css/common.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text
Size
153 kB (152856 bytes)
Hash
ef7c9a47c1c95f48d6b9f185e4d91777
2f056998033a13ee7a5fdcea64122995cb9f68b6
769afae387d60e911e17476d02fb741a4435003d242d62ad0e04616d03498c65

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/css/common.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/commonLAB/css/style.css
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 152856
last-modified: Fri, 12 Apr 2024 11:12:53 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/popper.min.js

5.135.98.239

200 OK

20 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/popper.min.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (20322)
Size
20 kB (20496 bytes)
Hash
cf6c33709cd816cddd361ff67f6e4415
0bfe8f231456727253ca718f45fc51a4072328b2
afc58cc213ed73402e7f1f854f5a93821ade831b6c641060b1adb07be94dadf7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/popper.min.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 20496
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/common.js

5.135.98.239

200 OK

5.0 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/common.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text
Size
5.0 kB (4980 bytes)
Hash
2ac23cde85cbc6590e1d50f41a8ad344
8a17184e73ab77c750708c183e4a73d77d9c4bf9
afe723bfc27f8da3b9a86ac7fce6111a36315434dff7ff6590325cd238902403

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/common.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 4980
last-modified: Thu, 21 Mar 2024 11:57:01 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/base64.js

5.135.98.239

200 OK

3.0 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/base64.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with CRLF line terminators
Size
3.0 kB (2982 bytes)
Hash
ae841aa3319e750d821f41d09d84be5b
891c7848d8d69955cbc74556a67a3c4886cb02f2
a02b64b6d02ada8f0dee45c8e879f79585301182c9712a3eeec8d1a4c5c5f9e6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/base64.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 2982
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/fr.js

5.135.98.239

200 OK

68 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/fr.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
Unicode text, UTF-8 text, with very long lines (64461), with no line terminators
Size
68 kB (67769 bytes)
Hash
69730f8a86a3653bd0f7740f5730da39
34dbab3023ab8b1eec8f3d43a69ec7d0a4f18683
c950f5823ad88d5cb9f70567f24645f326e4271a4a9bc82e609674443a471474

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/langs/fr.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 67769
last-modified: Thu, 21 Mar 2024 11:59:27 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.min.js

5.135.98.239

200 OK

88 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.min.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (2187)
Size
88 kB (88498 bytes)
Hash
a6ec331b5cd16f287dcb7a788c54c3f3
fdb1b6bd07721a133bee8e345325084d84b0023f
9b1165a9469fbbba81102b06428c39d32346b5b9571c22abb56fa5cdb3cd1fa5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/jquery.min.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 88498
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.validate.min.js

5.135.98.239

200 OK

24 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.validate.min.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (24237), with CRLF line terminators
Size
24 kB (24379 bytes)
Hash
5b068e334357c04ff2f13a5134cf5057
2b6c52d82109128184b293fc95b196c8fefb722d
ea335e1de5f7b3743ec647c1f18cd6bebfa0c5bcc82028f0470ab3cea213bbc4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/jquery.validate.min.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 24379
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/dashboard.js

5.135.98.239

200 OK

6.4 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/dashboard.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
6.4 kB (6381 bytes)
Hash
c2c9b9029adab4b3bd86ad86b632c6bb
b95c5d2271bdba91bc0ed24ce7ab03e9a42156c4
43517f80683a0c7b417b0754d970c095e78527e4f98662db6bc50b141ba6f645

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/dashboard.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 6381
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/scrollIt.js

5.135.98.239

200 OK

4.8 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/scrollIt.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
4.8 kB (4786 bytes)
Hash
1f7aaeacf54bd0a129ee4ca3a4b63935
9cba52b7e42fe622dfdbeb796fcb6ba92d4fc36d
d218004e99462f05a950b40bfcafae02cc039afe5eda1c189fb525928756c92d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/scrollIt.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 4786
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/dashboard/fr.js

5.135.98.239

200 OK

39 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/langs/dashboard/fr.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
Unicode text, UTF-8 text, with very long lines (38181), with no line terminators
Size
39 kB (38868 bytes)
Hash
fa555a953285239ea2803f4c92868d92
6cf8f9041839b20d2015523f5af2b3cae4f118a9
11c0f42d52941ed5543a746c2b1fd6b07510724be067a72424b47c304ebc1f2a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/langs/dashboard/fr.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 38868
last-modified: Thu, 04 Apr 2024 13:53:43 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/bootstrap.min.js

5.135.98.239

200 OK

58 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/bootstrap.min.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (57792), with CRLF line terminators
Size
58 kB (58080 bytes)
Hash
3cc8a317db464159cc9d0af00f96d862
6ff5f386790699f03f973fb81ea05762a152b552
a7a0c4ae9907b4e395bcaf2d071a13b065f61ed882cf06c4ab27b9066d91e0f1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/bootstrap.min.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 58080
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/utils_v2.0.js

5.135.98.239

200 OK

7.3 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/utils_v2.0.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (2013)
Size
7.3 kB (7324 bytes)
Hash
e3bcbce07c426cb472978be8cef9cf6d
656524c6d0f5ecfa315a97888d070ae72a463bc4
8189c108a5403cd750eb8bb5f692f1292423cd0c5972a5354e6d4d71154e15b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/widgets/common/utils_v2.0.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 7324
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/legalDocsManagement_v2.0.js

5.135.98.239

200 OK

20 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/legalDocsManagement_v2.0.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text
Size
20 kB (20288 bytes)
Hash
94a29d457744b170e5d9e6a360c05830
fb33273fed2bf44a5a2670146f6d15ceee452532
3696d7ccd568e5612548530559d2640ff5228058d9c1a8f8bb9100a9c2824704

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/widgets/common/legalDocsManagement_v2.0.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 20288
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/sessionManagement_v2.2.js

5.135.98.239

200 OK

11 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/sessionManagement_v2.2.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text
Size
11 kB (10958 bytes)
Hash
2dfc4eb662cdfb3bdd9bc4204fd8b6a1
d97d73a507dd7fa230313fabbbe1df14fbecd9fe
f22aec0f03c4a89df8bfc79984e03b30e7ea225137d22c28d931974598359579

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/widgets/common/sessionManagement_v2.2.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 10958
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/fanvoiceLib_v2.0.js

5.135.98.239

200 OK

28 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/fanvoiceLib_v2.0.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (318)
Size
28 kB (27714 bytes)
Hash
1ab408d80549bad0d2a0465de1dab26f
5fb2c5eb4667773834424f7c238bd1c638d60d7d
33eaed4edab50821bb7c795dcea66a349d3d7456b7caaae53254c21f2b0b381d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/widgets/common/fanvoiceLib_v2.0.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 27714
last-modified: Tue, 16 Apr 2024 11:41:38 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/main_v2.2.js

5.135.98.239

200 OK

4.0 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/common/main_v2.2.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
4.0 kB (4042 bytes)
Hash
7f4162f76ef614986630fb00dcebe917
6d8fd19830897a513eba0d2dbaeee8197358640c
3f4d733133c6ae1c8da24d5adbc7daca9720b3a780910dea19e9f8971271d131

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/widgets/common/main_v2.2.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 4042
last-modified: Thu, 25 Jan 2024 08:55:54 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/login/login_v2.0.8.js

5.135.98.239

200 OK

41 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/widgets/widgets/login/login_v2.0.8.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
41 kB (40730 bytes)
Hash
61bbbc6ea8b4021ab42b08adb2e5455c
c4a44406c8f880bea5df6310450fe23ba3c0ac70
700560df6cae3918d068e039359987d82aa547cd7b4b33b1e1c1668a5221b2b8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/widgets/widgets/login/login_v2.0.8.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 40730
last-modified: Thu, 04 Apr 2024 09:38:38 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/bootstrap-select.min.js

5.135.98.239

200 OK

33 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/bootstrap-select.min.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (32004)
Size
33 kB (33380 bytes)
Hash
61a1ebd9f32cd4a0630dd94b806a6e7b
b30001d23e441fa4569826e8885ee6eba76afc0a
f34edef76953e6df0941754387dd3d4694952ec9dc428d557fb6ec8d1568aac6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/bootstrap-select.min.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 33380
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.circliful.min.js

5.135.98.239

200 OK

9.3 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery.circliful.min.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (9321), with no line terminators
Size
9.3 kB (9321 bytes)
Hash
bb3dc0dc90c0a91477e955c6cc609edd
da742e4f65707c4d48378e1583b9c893fb510ea0
7c691fd13d73d6d1d0ac5bedf0e55de7296a11e4de1a8d78dbd202ccaa7b1fb6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/jquery.circliful.min.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 9321
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/dataTables.bootstrap4.min.js

5.135.98.239

200 OK

3.3 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/dataTables.bootstrap4.min.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (510)
Size
3.3 kB (3279 bytes)
Hash
0cc0294a4c42518875048b449889d2d8
56e42563e216c6a0c884e72b9e691263bc64cb71
82008b5ee81d1f836302725334a84fb77d57e50db228d7b447d9b93e6f0f378a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/dataTables.bootstrap4.min.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 3279
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/exporting.js

5.135.98.239

200 OK

19 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/exporting.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (536)
Size
19 kB (19195 bytes)
Hash
92ad41a742e6fb44996e36f98082c027
13eb8824ae79d0dffcc23367dda511785b6d329f
64996ce45a92685530baa0638150bf4c8d0b9a8c6fda102a4a02fa4c6ba2e928

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/exporting.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 19195
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/export-data.js

5.135.98.239

200 OK

11 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/export-data.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (1048)
Size
11 kB (10681 bytes)
Hash
9d533822c52a0dfd63cb42d20982918d
424d97946ea9deda9d65569521b230883117d8d8
1cdbb4cf5413f7327c5e42fc9f9ce99f4d6e53cc8aa32b1cc3c369afabef6f67

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/export-data.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 10681
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/accessibility.js

5.135.98.239

200 OK

126 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/accessibility.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (566)
Size
126 kB (126363 bytes)
Hash
84a85edc51464809c891151578d1cfaa
dfe0fde9d73260f80bf4eaca2a5c3d7bbfc784ce
b77458a1aaee9681ed8412ef3ed7236f8798cd965682100dd128401ea945bc35

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/accessibility.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 126363
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/img/account.svg

5.135.98.239

200 OK

954 B

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/img/account.svg
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
SVG XML document
Size
954 B (954 bytes)
Hash
c7bbdd24481c366b414e2c6534031532
f95fb9b286dc3ec3a28f55e7dc7dffe7652aed1b
9b7d5ee3ec79221c3f12034993603a7340c523ac557231efb96f7943b511358d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/img/account.svg HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: image/svg+xml
content-length: 954
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/highcharts.js

5.135.98.239

200 OK

300 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/highcharts.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, ASCII text, with very long lines (808)
Size
300 kB (300349 bytes)
Hash
b8716e837961a8052cc71188e6edebc9
b0b9a8af2bc7c8684ee0519e74c87548a2c8ccaa
ed684d7568fa3d54602d038b32ed75ceebd7b5150f119a33c600551578200c81

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/highcharts.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 300349
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery-ui.js

5.135.98.239

200 OK

540 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/js/jquery-ui.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (1002), with CRLF line terminators
Size
540 kB (540362 bytes)
Hash
2859819bd5c5a3b4a3ffda06840cce1e
87bb94a9e00a2285035fe730a8f8f036dd2de2c5
d99871c8849fe0951dc6d5cb58ceb75fc4c2a90d21591e8ab20c3ece1fc4ace7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/js/jquery-ui.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 540362
last-modified: Thu, 21 Mar 2024 11:47:21 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/ckeditor/ckeditor.js

5.135.98.239

200 OK

624 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/ckeditor/ckeditor.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Size
624 kB (624340 bytes)
Hash
6b7cccbc630971c15a52ec7d51a51128
d6f7e3abc82ac027c09d6e273490fa38c65851b5
5fd82b00c0ba64670e28d909e45ece9d6248b111a5916befcc5cfa5e68f681a5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/ckeditor/ckeditor.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 624340
last-modified: Fri, 08 Mar 2024 14:35:34 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/jquery.dataTables.js

5.135.98.239

200 OK

449 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/js/jquery.dataTables.js
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (1716)
Size
449 kB (449246 bytes)
Hash
0cf021acee8640c5d9e2a3648089e5c7
052bccf16e92b145114b9acc300b3a1756dfa49f
6bb9095dce61e1264b6b88165d43ba50570da2e0e8586b0bba7e016918d3b407

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/js/jquery.dataTables.js HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
content-length: 449246
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css

104.18.11.207

200 OK

54 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (23577)
Size
54 kB (53606 bytes)
Hash
04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd

HTTP Headers

GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cmut.uat.dashboard.fanvoice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 21:08:57
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e6a55b08fe5091f45c9e99ce9e9f98c2
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 3448427
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 875b4c60cdac9986-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonLAB/img/logo-lab.png

5.135.98.239

200 OK

16 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonLAB/img/logo-lab.png
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 277x57, components 3
Size
16 kB (15955 bytes)
Hash
53ec0d7f9d76355d93f86b34b661b45f
8325eaba361e53755ef97531d22ab24ff7cb71ac
9889ab10918d1ece7b6eb8145e1c82420c1c00e606013526befdf8ae7d4d6cbe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonLAB/img/logo-lab.png HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/commonGlobal/css/common.css
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:19 GMT
content-type: image/png
content-length: 15955
last-modified: Wed, 22 Nov 2023 10:00:13 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/postPHPPage.php?serviceName=makeUserTrace&csrfToken=

5.135.98.239

200 OK

16 B

URL POST HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/postPHPPage.php?serviceName=makeUserTrace&csrfToken=
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
JSON text data
Size
16 B (16 bytes)
Hash
c76c651abf4f1e588abadc6681ab7c33
9ffad3b44398f54a9ecbb62616ba44ac20fbdc8f
bd7750fb6c50c1b483389640bb34928b7dc7da24fb1c3e90652e1e7e6dc15759

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

POST /commonGlobal/postPHPPage.php?serviceName=makeUserTrace&csrfToken= HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
Content-Type: application/json;charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 140
Origin: https://cmut.uat.dashboard.fanvoice.com
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:19 GMT
content-type: application/json;charset=UTF-8
content-length: 16
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.251.209.131

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.251.209.131:443
ASN
#15169 GOOGLE

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cmut.uat.dashboard.fanvoice.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:59:57 GMT
expires: Fri, 11 Apr 2025 02:59:57 GMT
cache-control: public, max-age=31536000
age: 540802
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonLAB/img/favicon.ico

5.135.98.239

200 OK

1.8 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonLAB/img/favicon.ico
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced
Size
1.8 kB (1809 bytes)
Hash
7a4d60accc2180efcb2f9c394caf0a35
a5c08d001a5f395c2aa9ff00e2de0f2c21281b9f
2d7e2e61297cd7ff54172cc7ca22b0e61510584c500dabdac9caacd7a1800adb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonLAB/img/favicon.ico HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:19 GMT
content-type: image/vnd.microsoft.icon
content-length: 1809
last-modified: Wed, 22 Nov 2023 10:00:13 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.10.2/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

75 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.10.2/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 75408, version 330.15859
Size
75 kB (75408 bytes)
Hash
d6d8d5da9214dc7d46b297672a602d55
9991033ce701c9a3d092ba2263a6a89c4d7e21da
80fe90cb559538158bc235f4e539d9bcae203e19fab7c6970aad37b0154348ff

HTTP Headers

GET /releases/v5.10.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cmut.uat.dashboard.fanvoice.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 Apr 2024 09:13:19 GMT
content-type: font/woff2
content-length: 75408
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "d6d8d5da9214dc7d46b297672a602d55"
last-modified: Fri, 22 Sep 2023 01:44:56 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tYZoMW8E85o1n%2FSnRWA45yfUqfV4Zv%2FrZdFtxlploF1A%2BKVY3uD%2BpoUglHnDB8JXYuLTLJu3yG78Kayg9sU3S93F8OfJDX%2FdPvCGL53Fsh26yenJ%2F%2BngcZQlcBIRnqSIoJhd2zsn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875b4c666f299308-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.10.1/js/solid.js

104.21.27.152

200 OK

571 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.10.1/js/solid.js
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65350)
Size
571 kB (570868 bytes)
Hash
f6a5bda742b8d8c27aa209abd253ea1f
ada87c803b6bb45c01064950c3b044f9e524fba7
de285f1b368730e1a9fb9f8b086851c2afcbc48c7651700cf0f1043526c91466

HTTP Headers

GET /releases/v5.10.1/js/solid.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cmut.uat.dashboard.fanvoice.com
DNT: 1
Connection: keep-alive
Referer: https://cmut.uat.dashboard.fanvoice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"f6a5bda742b8d8c27aa209abd253ea1f"
last-modified: Fri, 22 Sep 2023 01:44:52 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2NULFJJBRA5oCmKUTUSXsP7aLZu9QI1%2BM9bWlE2TMni1wO54cmmMXehXUREvlRevL1Btk6Wa%2BF2DmBCchgtaZzBva9m%2BcA7jNNZB%2BQF0yNJBCsJEfN9QJI8n90jE%2FYS4Mjgxn0ph"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875b4c616d779308-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:200,400,600,800

142.250.74.106

200 OK

17 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:200,400,600,800
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (1572)
Size
17 kB (16791 bytes)
Hash
9a09574f1e6e18142075b1ed55b4a7de
2b608a4e16c5966a247b40b8db869e1cb3dae64f
cf2c18896cd0f42d618f079e4be271d6e4cb7760288a6b7519f0006f1f39eca1

HTTP Headers

GET /css?family=Open+Sans:200,400,600,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cmut.uat.dashboard.fanvoice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 09:13:18 GMT
date: Wed, 17 Apr 2024 09:13:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.10.1/js/solid.js

104.21.27.152

200 OK

571 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.10.1/js/solid.js
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65350)
Size
571 kB (570868 bytes)
Hash
f6a5bda742b8d8c27aa209abd253ea1f
ada87c803b6bb45c01064950c3b044f9e524fba7
de285f1b368730e1a9fb9f8b086851c2afcbc48c7651700cf0f1043526c91466

HTTP Headers

GET /releases/v5.10.1/js/solid.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cmut.uat.dashboard.fanvoice.com
DNT: 1
Connection: keep-alive
Referer: https://cmut.uat.dashboard.fanvoice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"f6a5bda742b8d8c27aa209abd253ea1f"
last-modified: Fri, 22 Sep 2023 01:44:52 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=61DO3gTMPgL8hFeCW3MAnxvA1py%2FqysbxDtjKfLvLLGUEB1k1AnnLwfDrq2Koosj9w5gCXULSxQjTKjgUcJlIvE0r09JhHDjSTmnWE%2BXOmPb4TuQ7skMNzC5kh%2BMHyAt16R35zyL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875b4c654d159308-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.0.13/js/fontawesome.js

104.21.27.152

200 OK

28 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.0.13/js/fontawesome.js
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (27341)
Size
28 kB (27522 bytes)
Hash
4c5c317d4c931a8433301ce316233f30
a868492160ab3c64157981f04b25e958596d025e
dc95e73cf623a2cdf21ecc979ad38a1c8408b95034b9ed6d5898e9b56eaffc79

HTTP Headers

GET /releases/v5.0.13/js/fontawesome.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cmut.uat.dashboard.fanvoice.com
DNT: 1
Connection: keep-alive
Referer: https://cmut.uat.dashboard.fanvoice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"4c5c317d4c931a8433301ce316233f30"
last-modified: Fri, 22 Sep 2023 01:44:10 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BgPUCxbo36uaPM4K3UJvUkOgKjjCEQp24X1JHURpPSTjrHkiyhsuNZiLjUDYeIxPpspJ6JCsjgpnJeQt%2BKU06fuK95gI14%2FUofePL90GfrL8ZL9ixKX074vmk9uyq%2BNarZwZXnRp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875b4c616d799308-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.10.2/css/all.css

104.21.27.152

200 OK

56 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.10.2/css/all.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (56331)
Size
56 kB (56517 bytes)
Hash
164a58dcca37a5b00c22e06ee8e2fc68
72fee61a5a92cdc35b77313f3637a117310119f5
ce67cd6665e835604c7a650ea355d41857dcd2284618b61d82d252dca0abfe5d

HTTP Headers

GET /releases/v5.10.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cmut.uat.dashboard.fanvoice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"164a58dcca37a5b00c22e06ee8e2fc68"
last-modified: Fri, 22 Sep 2023 01:44:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 672395
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nwEwqNG%2BXV%2Bp8tHGj1JtoNkzWTahXB3FLOgpgFu6kg1jMQxHf0pOnc3LVAMk0GwSh7y3HjfZG8EYZ%2BPb91rbB%2F7pFhay5QrGUjfERGUHS06lfMrKOT2QfLzSH%2Bu9qiBD8WEFsiQK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875b4c616aed10b5-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/dashboard.css

5.135.98.239

200 OK

29 kB

URL GET HTTP/2
cmut.uat.dashboard.fanvoice.com/commonGlobal/Dashboard/css/dashboard.css
IP
5.135.98.239:443
ASN
#16276 OVH SAS

Requested by
https://cmut.uat.dashboard.fanvoice.com/
Certificate
IssuerLet's Encrypt
Subjectcmut.uat.dashboard.fanvoice.com
Fingerprint9A:05:2D:3F:20:70:5E:EC:A5:D7:A9:59:28:D2:EE:33:E8:BF:F0:86
ValidityMon, 15 Apr 2024 06:31:50 GMT - Sun, 14 Jul 2024 06:31:49 GMT

File type
ASCII text, with very long lines (409)
Size
29 kB (29193 bytes)
Hash
604fc743ed1827406e6961f5c1f310c8
8c37c2d669b0ff93a446ab69cb291c428a2bdf70
1644e62068d74d1f188ea9ca478e4bc7635b4b123571855e75feda1a886f62af

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Credit Mutuel

HTTP Headers

GET /commonGlobal/Dashboard/css/dashboard.css HTTP/1.1
Host: cmut.uat.dashboard.fanvoice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cmut.uat.dashboard.fanvoice.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=s6pfifjniecodh6mhn9jckjjv8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 09:13:18 GMT
content-type: text/css
content-length: 29193
last-modified: Wed, 22 Nov 2023 10:00:15 GMT
accept-ranges: bytes
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-security-policy: script-src blob: 'self' 'unsafe-inline' 'unsafe-eval' sdo.spslab.ch googleads.g.doubleclick.net www.maleck.org cdn.rawgit.com kit.fontawesome.com d3js.org cdn.jsdelivr.net www.google-analytics.com code.highcharts.com www.math.cmu.edu cdn.datatables.net use.fontawesome.com cdnjs.cloudflare.com ajax.googleapis.com code.jquery.com stackpath.bootstrapcdn.com connect.facebook.net tag.aticdn.net www.googletagmanager.com www.google.com analytics.twitter.com static.ads-twitter.com snap.licdn.com static.ads-twitter.com platform.twitter.com pixijs.download marvelapp.com youtube.com www.youtube.com invisionapp.com assets.adobedtm.com www.sketch.com matomo.fanvoice.com financesetcreation.fr accounts.google.com unpkg.com;
allow: GET, POST, HEAD, PATCH, DELETE
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML