Report - web-interacs1.pics/get/1714079707071

Report Overview

Submitted URL
web-interacs1.pics/get/1714079707071
IP
104.21.44.154
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 23:41:13
Access
public
Website Title
Deposit your INTERAC e-Transfer
Final URL
web-interacs1.pics/get/1714079707071
Tags
interac financial phishing
urlquery detections
Phishing - Interac e-Transfer

Detections

urlquery
20
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-24	1.3 kB	54 kB	104.17.24.14
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-25	445 B	90 kB	151.101.194.137
web-interacs1.pics	unknown	unknown	No data	No data	33 kB	1.8 MB	172.67.200.233
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-25	422 B	101 kB	142.250.74.168
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-25	444 B	20 kB	151.101.1.229
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	530 B	71 kB	142.250.74.170

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	web-interacs1.pics/assets/interac/gtm.js	271 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/assets/interac/gtm.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:22 Times Seen3 Hash 6a0284b743d5c51b975207add17b8d8e 5eaf900366b3962a19a64b576f65dc2121ef864a 5e3d09fb8fb3530b9fab0b378f7671dea4221325ee7e45301579f4be67c5d8e6 Loading...

	web-interacs1.pics/assets/interac/js	281 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/assets/interac/js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:24 Times Seen4 Hash 2e59e53a78438c4a2b5b99f4d51e5507 cec2ecfa49fb95a8f7eea60f11a2f1f1e2809a78 faec807fc51028ffc481fa357fdec8441d89fa171a3dab31ff40c925739e8222 Loading...

	unknown	15 B	2023-03-08	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:23:59 Last Seen2024-04-26 01:41:23 Times Seen6 Hash 51f226589c6b6611380eb27dfb1d2a31 10354f4af4f8b431ea98ce63caf8f4ec3806d154 bdce1e6b26a919904f2dfce2138748d6adec09fe92f6756bdd25eb418a857677 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5SR238	288 kB	2024-04-26	2024-04-26
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5SR238 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 01:41:23 Last Seen2024-04-26 01:41:24 Times Seen2 Hash e8b8148efa1a5dd329dde996714daf93 b1cd30aff52f90e881a1bd90ffbe23af0db9e481 19193a1d49bab280aa6591f24362557ffad0b8ee7009204eb78bfb0194115712 Loading...

	web-interacs1.pics/assets/interac/js(1)	281 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/assets/interac/js(1) IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:24 Times Seen4 Hash 9dac8873b5e271e31493a7a5f66c5acd 75589115dcfe6fdf3143e324936cad5a13c993ed 4fbbe10bc54038870cb2f14cdbac1470775075215ab73ea9ebca6ec4e76fe7e2 Loading...

	web-interacs1.pics/get/1714079707071	91 B	2023-03-07	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 21:57:04 Last Seen2024-04-26 01:41:23 Times Seen5 Hash ed7c406908f3ea31e71279215bd67afb 6ddf1ca061df62a01feef3702176df7a3baebe13 e1affa7601359be5cfd7e54f56ad4a93a294898d68638728a0029e625bbe82f2 Loading...

	web-interacs1.pics/js/scripts.js?v=5.6	1.7 kB	2023-11-07	2024-04-29
Pretty URL web-interacs1.pics/js/scripts.js?v=5.6 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 11:46:43 Last Seen2024-04-29 01:11:27 Times Seen7 Hash d38928eb27d00f1eee32652458e96023 143417cc5d20d97f861d76f4c433d076949e235f efe1d467105388fcdc74d2ee67f757f0a251d0c986309ec418673a6e41697411 Loading...

	web-interacs1.pics/get/sandbox%20eval%20code	147 B	2023-04-11	2024-05-05
Pretty URL web-interacs1.pics/get/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-05 16:28:19 Times Seen344946 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	cdnjs.cloudflare.com/ajax/libs/axios/1.3.2/axios.min.js	32 kB	2023-03-13	2024-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/axios/1.3.2/axios.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:10:22 Last Seen2024-04-30 12:33:00 Times Seen43 Hash e56de4e2730980f20664988444c1b85f 752af60d4b09605c37e00255750b7f811c3f66e0 4d9f857d0711418287a0af5ef59a7186250e62eed5d8619a4fae0e7f697544e4 Loading...

	web-interacs1.pics/supportFrame/1714079707071	0 B	2023-03-07	2024-05-05
Pretty URL web-interacs1.pics/supportFrame/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 16:39:54 Times Seen37363361 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	code.jquery.com/jquery-3.6.3.min.js	90 kB	2023-03-10	2024-05-05
Pretty URL code.jquery.com/jquery-3.6.3.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:24:46 Last Seen2024-05-05 15:54:09 Times Seen17607 Hash cf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575 Loading...

	web-interacs1.pics/assets/interac/vendorJS.js	159 kB	2023-03-07	2024-04-30
Pretty URL web-interacs1.pics/assets/interac/vendorJS.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:26:31 Last Seen2024-04-30 18:19:29 Times Seen207 Hash 5a5877ca34034008d7f643254180fd0e a858a6c60ad07fc7fe6ca14d24eb2091e8e1c8c3 a3ee664b3de72360fba0c99ad23ab06aa48a477a4735f01c48ba1ff62d0f77f0 Loading...

	web-interacs1.pics/get/1714079707071	465 B	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:23 Times Seen2 Hash d7fbffe6fc291c627b8557d9363b5acd a72f81cac199680d81e170225d5cdbed6d489968 47bb05c1251494aa9361385d3f11bd39b0f7455234f630076ae7c3b4459d363b Loading...

	cdn.jsdelivr.net/npm/sweetalert2@11.7.1/dist/sweetalert2.all.min.js	64 kB	2023-03-13	2024-04-30
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@11.7.1/dist/sweetalert2.all.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:04:22 Last Seen2024-04-30 12:33:00 Times Seen19 Hash 3c20edbd74469f415ee1fa5b36967a68 c3e1b2a9386f9c741c7e4167a39167b4c072db62 635eaa9a4e79926e1b844ff3e9eb694ec5277c81ea87de6a4786a5dbc9003c45 Loading...

	cdnjs.cloudflare.com/ajax/libs/fslightbox/3.0.9/index.min.js	29 kB	2023-04-18	2024-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/fslightbox/3.0.9/index.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 21:14:30 Last Seen2024-04-30 12:33:00 Times Seen13 Hash 56ab10688136d78f6f3b6b02e2625a01 a05ea9121c6199615da0bbddb0277c4b7eb16a0a 972f98db2878c8c4caa1fe9df10db791941c3b287e28d570e9862f3912c89074 Loading...

	web-interacs1.pics/get/1714079707071	3.0 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:23 Times Seen2 Hash c831495dbe43cb936dc497f4f65f0d08 53e87c8e53869d76445df496bb5a29f7a256a92e 8aaf661438d7e0ccc38402418b7e66e2de382070535456806f34c587475f2644 Loading...

	web-interacs1.pics/get/1714079707071	351 B	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:23 Times Seen2 Hash 072b60b1cededb105fbcd654e01e6ced 45682d6abe435aecbcb77f0b2806a02ce6272ba0 4f09e4efc3e9a9f6ed5478b9d00d567968d88136cf038d2e7a21ce7dbf03dd5e Loading...

	unknown	32 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:58 Last Seen2024-05-05 15:14:14 Times Seen1625 Hash 16eff409565ed1d22c17d73ce417bd15 ae526f9ce16489f0ca53977b7722f56806555342 d7d8adcd29f47bcccb73dcfc9c2135200465d57df689f842a49311a5b000d7a3 Loading...

	web-interacs1.pics/assets/interac/analytics.js	53 kB	2023-06-16	2024-05-03
Pretty URL web-interacs1.pics/assets/interac/analytics.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-16 11:16:31 Last Seen2024-05-03 21:54:06 Times Seen1468 Hash 575b5480531da4d14e7453e2016fe0bc e5c5f3134fe29e60b591c87ea85951f0aea36ee1 de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd Loading...

	web-interacs1.pics/get/1714079707071	335 B	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:23 Times Seen2 Hash 941a778508d8b92bb77834dca6d3f463 56cfe2330bcfab1bf07028260c9b085f117f9390 a85e2d8f32320626f7b05d7f612439c22109de5eb56a6a13a9c2326f09ede50d Loading...

	web-interacs1.pics/assets/interac/TMHeader.js	0 B	2023-03-07	2024-05-05
Pretty URL web-interacs1.pics/assets/interac/TMHeader.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 16:39:54 Times Seen37363361 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	web-interacs1.pics/assets/interac/tags.js	97 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/assets/interac/tags.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-09 01:41:10 Last Seen2024-04-26 01:41:24 Times Seen4 Hash 3f77a8ae87c6388f3c9e2f27fb126ae8 b1b3880458bddefb2cf070dfaa96eaa25079acc7 27810850d8e33fc9629a1cc1ad89be9f5c69a4dd2f208907ce51fe2e404867c7 Loading...

	web-interacs1.pics/get/1714079707071	332 B	2023-09-18	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-18 23:27:53 Last Seen2024-04-26 01:41:23 Times Seen3 Hash 9b2ffdde1851135bbe1048796723b431 4780579b782f22427a87514edbfdaf519e5650bd 20e9d17f61dfab8d9df02914292f6680d6bd09ecbe0fa63fa65ba757b1397b2a Loading...

	web-interacs1.pics/assets/interac/allModuleJS.js	31 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/assets/interac/allModuleJS.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:24 Times Seen4 Hash 90858f0a796f894617b5057097086f62 205ebafac38bca8d6a917d6f352f8bb2518c1c51 8e963a982f57c74b12635ed9898e05f14c5930fbdca2cd51d22b8b563ae7fa25 Loading...

	web-interacs1.pics/assets/interac/gatewayInitJS.js	1.1 kB	2023-07-11	2024-04-26
Pretty URL web-interacs1.pics/assets/interac/gatewayInitJS.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-11 18:08:53 Last Seen2024-04-26 01:41:23 Times Seen43 Hash e3f8682a0138743a00ae4205532233e3 e02701e2ea473402728df576fce6e780927384eb d1edfc0790366f7ad281548a12707239fe8d54f5e5ec09e08471fc7f1e4faf65 Loading...

	web-interacs1.pics/get/1714079707071	1.6 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-09 01:41:09 Last Seen2024-04-26 01:41:23 Times Seen2 Hash 66a4eefd0b7abf48e9c518cca373c70c 28277a15f3445d97aded0b2e4df389da3dce26e4 902f122db151ee63325b90eafff628710fa544fc96525852a64d2c956dd444f9 Loading...

	web-interacs1.pics/assets/interac/navJS.js	2.2 kB	2023-12-19	2024-04-30
Pretty URL web-interacs1.pics/assets/interac/navJS.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-19 15:45:35 Last Seen2024-04-30 18:19:29 Times Seen25 Hash 49c9beeff880b0502ac8520d37c02447 dbf35793f71fd27a9d170820967cef16ac03b710 b84982b55971090be15ca1dedf42a3abc5dc60c5d8e5951d55c765c77fc2b3a0 Loading...

	web-interacs1.pics/get/1714079707071	1.3 kB	2024-01-09	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-09 01:41:10 Last Seen2024-04-26 01:41:23 Times Seen2 Hash dc0260bf7c3048c63a5d7b04ff49a408 e96d3a55c5815935e4039d24fb57022eff30b206 448c09432f803db207667452455aa04260c685deb03b1c205e72d023f5a0ac91 Loading...

	web-interacs1.pics/assets/interac/jquery-ui.min.js	13 kB	2023-03-07	2024-04-28
Pretty URL web-interacs1.pics/assets/interac/jquery-ui.min.js IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:26:31 Last Seen2024-04-28 08:13:43 Times Seen155 Hash f01666ac29a79065d56050f33a52f049 08882f5b26a67060cb1199ea7fc84423d7c20ff7 dc3d535926f878f06e73076f0df2d3a7216096108ae40bb9ef8cc2e95270b138 Loading...

	web-interacs1.pics/get/1714079707071	280 B	2024-04-26	2024-04-26
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 01:41:23 Last Seen2024-04-26 01:41:23 Times Seen1 Hash d04c83ccd91448177648508b454be9ab df49de0a21691b3757bc4095f1f5d33528a1621b 783f33c384597c2fcf8e44ea5bcdd8b88cc7d69a86e2d9a183739c01dcd94a7c Loading...

	web-interacs1.pics/get/1714079707071	365 B	2023-11-07	2024-04-30
Pretty URL web-interacs1.pics/get/1714079707071 IP 172.67.200.233 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-07 11:46:43 Last Seen2024-04-30 12:33:00 Times Seen5 Hash fcbd1aa1beb8f35532fb83dcc9db5ba5 0f04b836182af2c037af6c267ad0e0024805f12a 600b554ebe6b80a10fa806991bf89c4b5cbd9557163ca4f3eb16478ad7cbff9c Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-05
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-05 16:28:18 Times Seen344440 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ce3ddefdfa993eff10cce12bad0f161d	74 B	2023-03-07	2024-04-30
Pretty Observations First Seen2023-03-07 01:19:58 Last Seen2024-04-30 18:01:14 Times Seen1365 Hash ce3ddefdfa993eff10cce12bad0f161d f1455008ca9dcb80747f474d900994ec2cba7254 5825930e400f3c0b303a930b890dd589e3fefeb58b7a2819919a0bfbd43a958f Loading...

	#2 Eval - 55daaa2a73fd1b971676f324be974497	50 B	2023-03-07	2024-04-30
Pretty Observations First Seen2023-03-07 01:19:58 Last Seen2024-04-30 18:01:14 Times Seen1364 Hash 55daaa2a73fd1b971676f324be974497 f2e39789d9b5daa42d0e044577957b799e620b32 107abd1d4c412c9df04a22eea7a81d0ace815adf4ca7b8c2e3d6ea6c459423b5 Loading...

	#3 Eval - 5744e0540bf66845bae9a55f97057c8b	124 B	2023-10-14	2024-04-26
Pretty Observations First Seen2023-10-14 20:05:56 Last Seen2024-04-26 01:41:23 Times Seen40 Hash 5744e0540bf66845bae9a55f97057c8b 65cb156296189e74c9be88a26a38736ceb611418 190593c54cf49d8eb87f15bd990439e28d290240a8564cbe26a3335bfd18a9bb Loading...

	#4 Eval - 90eb5565a909cfb23910404b9543ac4f	61 B	2023-03-07	2024-04-30
Pretty Observations First Seen2023-03-07 01:19:58 Last Seen2024-04-30 18:01:14 Times Seen1361 Hash 90eb5565a909cfb23910404b9543ac4f 43956ffd9c2b0dbec81e659e6692a0cfb279d743 4c7434541d1c4e35e47fa7017129597be4de29d8520f8d28324360e68ee147bb Loading...

	#5 Eval - dd596de58e9840523a6a4d7fa0073de7	36 B	2023-08-17	2024-04-26
Pretty Observations First Seen2023-08-17 21:34:39 Last Seen2024-04-26 01:41:23 Times Seen247 Hash dd596de58e9840523a6a4d7fa0073de7 177ab7dfce9d4438fdae4b8bdc3c91b7a24e8fd4 726316567a4b3fd88670ed9c421b8c61981d07045b1209d3b7d24f5bb8e8cbb3 Loading...

	#6 Eval - ec77ea2c20cb05bb68fca6dd6ba3224c	61 B	2023-10-14	2024-04-26
Pretty Observations First Seen2023-10-14 20:05:56 Last Seen2024-04-26 01:41:23 Times Seen40 Hash ec77ea2c20cb05bb68fca6dd6ba3224c 7c9e01abdf50b314b472fcf93302c570893af043 70386693293c95c4c89d885dc5369bd7a707b4b8b011553e05af3c1091ed1181 Loading...

		Size	First Seen	Last Seen
	#1 Write - 01400f125051826efffb7deb3de3ca8f	11 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 01:41:23 Last Seen2024-04-26 01:41:23 Times Seen1 Hash 01400f125051826efffb7deb3de3ca8f ce4f4947b72d07538844d05aee1eca899e6ab969 fc8e4a8b56e36dbb5696c47d56e862dd3962feec7b36850cbb08fdeb3d004943 Loading...

	#2 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11	2024-05-05
Pretty Observations First Seen2023-03-11 11:15:57 Last Seen2024-05-05 16:18:30 Times Seen2155 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

HTTP Transactions (60)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/axios/1.3.2/axios.min.js

104.17.24.14

200 OK

11 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/axios/1.3.2/axios.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/supportFrame/1714079707071
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (31500)
Size
11 kB (10634 bytes)
Hash
e56de4e2730980f20664988444c1b85f
752af60d4b09605c37e00255750b7f811c3f66e0
4d9f857d0711418287a0af5ef59a7186250e62eed5d8619a4fae0e7f697544e4

HTTP Headers

GET /ajax/libs/axios/1.3.2/axios.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 23:40:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 10634
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "63dd68e5-298a"
last-modified: Fri, 03 Feb 2023 20:04:53 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3808507
expires: Tue, 15 Apr 2025 23:40:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XYA3xp61hla6yr6QdDUCq3LunjE8WEv92Cj84x8GgJPOIxBBeKCr%2BkNi4Gf7%2BeXBVsMUWrBh%2BDknXILqV2kfVSwOUVZtTbI6dHlqHzGsPGIPyXNjqRie0xNlGQcFbb6n%2Ft%2B6a1bL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a22e192c14712b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.3.min.js

151.101.194.137

200 OK

90 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.3.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://web-interacs1.pics/supportFrame/1714079707071
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89947 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /jquery-3.6.3.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-15f5b"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 23:40:46 GMT
age: 125522
x-served-by: cache-lga13623-LGA, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 19, 6481
x-timer: S1714088447.926431,VS0,VE0
vary: Accept-Encoding
content-length: 89947
X-Firefox-Spdy: h2

web-interacs1.pics/assets/interac/TMHeader.js

172.67.200.233

200 OK

0 B

URL GET HTTP/3
web-interacs1.pics/assets/interac/TMHeader.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/interac/TMHeader.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/javascript; charset=UTF-8
content-length: 0
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"0-18cba54dc20"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nGwVF2FdKXjCCNiDaXm36jL5HYrf%2F7XRprIo6Pq5WV1hGyetp1MF1JtF9ZdsNnvb7HpNXXFSIcMwtJgmSNv3V%2BLCOPUtw1zgnDtoGxHhrSSiDHJ908%2B%2FtkeLM5SkyYuZV6bYV%2Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18dec6568d-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtm.js?id=GTM-5SR238

142.250.74.168

200 OK

100 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5SR238
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (15188)
Size
100 kB (100052 bytes)
Hash
e8b8148efa1a5dd329dde996714daf93
b1cd30aff52f90e881a1bd90ffbe23af0db9e481
19193a1d49bab280aa6591f24362557ffad0b8ee7009204eb78bfb0194115712

HTTP Headers

GET /gtm.js?id=GTM-5SR238 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 23:40:48 GMT
expires: Thu, 25 Apr 2024 23:40:48 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 21:56:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100052
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

web-interacs1.pics/assets/interac/js(1)

172.67.200.233

200 OK

281 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/js(1)
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
281 kB (280962 bytes)
Hash
9dac8873b5e271e31493a7a5f66c5acd
75589115dcfe6fdf3143e324936cad5a13c993ed
4fbbe10bc54038870cb2f14cdbac1470775075215ab73ea9ebca6ec4e76fe7e2

HTTP Headers

GET /assets/interac/js(1) HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/octet-stream
content-length: 280962
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"44982-18cba54dc28"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oTQICyZ9hRUakQl7qLt1csNbhWWVk7VWmImZ%2FCeM0gkgLE9FMUTOYykzxRue8ceO92h1p7t4F3XcwwA2eDh6u8eW6PmVxPXk8wOzuwLGY8KG1d%2By%2FBouqLLdmpp2Ja7Rd8XaYvw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e18debe568d-OSL
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/websocket-alternative/undefined

172.67.200.233

403 Forbidden

9 B

URL POST HTTP/3
web-interacs1.pics/websocket-alternative/undefined
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3

HTTP Headers

POST /websocket-alternative/undefined HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 403 Forbidden
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-powered-by: Express
etag: W/"9-PatfYBLj4Um1qTm5zrukoLhNyPU"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5AKUfD0BgFbyD%2FkuhmhqQSZcbuFwE3vXZMvXBNlZx5iC%2BPwv%2FsHyyyY5a5ugmQTT2AiitBV9azEYovvdjNjaaq%2B93zGHyjG2lI%2B5jzoi5C34X%2FLgWvPzekmiAk3JoOF2EvIVLco%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e22eb5c568d-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/axios/1.3.2/axios.min.js

104.17.24.14

200 OK

11 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/axios/1.3.2/axios.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/supportFrame/1714079707071
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (31500)
Size
11 kB (10634 bytes)
Hash
e56de4e2730980f20664988444c1b85f
752af60d4b09605c37e00255750b7f811c3f66e0
4d9f857d0711418287a0af5ef59a7186250e62eed5d8619a4fae0e7f697544e4

HTTP Headers

GET /ajax/libs/axios/1.3.2/axios.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 10634
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "63dd68e5-298a"
last-modified: Fri, 03 Feb 2023 20:04:53 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3808509
expires: Tue, 15 Apr 2025 23:40:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jc1F4K3Usm2Vk97S7RDf%2F%2F5t6mvFE35GOPwMyp0fmy6hOXFtvC2J2TkIXql4l92O9SdgNajLrHVXWT0EJ%2BqKNXW58JdWxiheB6lYBNKLs0%2Bev0M%2F7AuBlCgpAS10KalmR5V0CnQe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a22e25b973712b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

web-interacs1.pics/assets/interac/jquery.mobile.structure-1.4.5.min.css

172.67.200.233

200 OK

19 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/jquery.mobile.structure-1.4.5.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with very long lines (65398)
Size
19 kB (18862 bytes)
Hash
1544ca9f803edff31be0577b9f985853
12db16f24c602523fe6610221b56928fc090da96
e1d94776078325c58b4cd50eedb8a10e8db7860d5d353618934b117057f8db8c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/jquery.mobile.structure-1.4.5.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"10c68-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kUi5APfe58JJEnakteQ%2FDeGfXFXqFI%2BSC5vnBNKP65lejcCH%2BcJzqSp4jDJbNhM7Fg%2BdKH6S7Cq82nKNFn1uynks6%2FjqAK5yw%2B%2F%2BGv0UdENV931wZ2hWqZhyDfexRH%2BvtHu23cU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18ceb3568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/interac-jqm.min.css

172.67.200.233

200 OK

90 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/interac-jqm.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with very long lines (697), with no line terminators
Size
90 kB (90192 bytes)
Hash
745235c26c54c8d8dfe842eae0f81c22
ada1c6f02af1481a7c7254a3e612e56ee8f78e56
9990c44b20b507ba7382cfdd553b0a56d10871147a09bc8e42903b92d0c12e10

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/interac-jqm.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"2b9-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZaXbGUabglHkfT9KuyDEGDtHP4QJ5kcg7MQW%2BbYzAV584%2BKyyNnByRpqqHdOf%2FeGXm%2BsdllJmTDvwKez%2BtSTQNCAzmuP8bUyjcGmVjeesBH4ExnNYwmLrMGxmn8y4l8nULvN2hY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18ceaf568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/img/support.jpg

172.67.200.233

200 OK

12 kB

URL GET HTTP/3
web-interacs1.pics/img/support.jpg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 318x330, components 3
Size
12 kB (12418 bytes)
Hash
b30541a5761351697ddd04f6552260ff
9d88690b4edd33b91fd1c89045cf1254eb04ea69
29b5afd5d8df78ee19a6a2f03873fba532f3bef8aa72dfda6be7eeba83067bb7

HTTP Headers

GET /img/support.jpg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:49 GMT
content-type: image/jpeg
content-length: 12418
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Tue, 05 Dec 2023 15:49:36 GMT
etag: W/"3082-18c3aaba280"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mWGyjNssxVvpWgv5jAA3O776xnbQM8kJoHQoJG8nMlPMTDOaovR%2BhIYCEE5cf2u7whSHd9a6gOrho3XVEDrNS5nzosZdde4h%2Bqo1IQhZq5SEEl5Z5cpnjz5Ch%2BLgYa8MI9t4yGU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e231b69568d-OSL
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/npm/sweetalert2@11.7.1/dist/sweetalert2.all.min.js

151.101.1.229

200 OK

19 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11.7.1/dist/sweetalert2.all.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://web-interacs1.pics/supportFrame/1714079707071
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (43315)
Size
19 kB (19193 bytes)
Hash
3c20edbd74469f415ee1fa5b36967a68
c3e1b2a9386f9c741c7e4167a39167b4c072db62
635eaa9a4e79926e1b844ff3e9eb694ec5277c81ea87de6a4786a5dbc9003c45

HTTP Headers

GET /npm/sweetalert2@11.7.1/dist/sweetalert2.all.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.7.1
x-jsd-version-type: version
etag: W/"fb5c-w+GyqThvnHQcfkFno5FntMBy22I"
content-encoding: br
accept-ranges: bytes
age: 856509
date: Thu, 25 Apr 2024 23:40:49 GMT
x-served-by: cache-fra-eddf8230074-FRA, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 19193
X-Firefox-Spdy: h2

web-interacs1.pics/websocket-alternative/undefined

172.67.200.233

403 Forbidden

9 B

URL POST HTTP/3
web-interacs1.pics/websocket-alternative/undefined
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3

HTTP Headers

POST /websocket-alternative/undefined HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 403 Forbidden
date: Thu, 25 Apr 2024 23:40:54 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-powered-by: Express
etag: W/"9-PatfYBLj4Um1qTm5zrukoLhNyPU"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PiAia6U5mzufILUv%2BU%2F76B1Ao%2BG8pupwICuLsoXiTGdj3QOOA%2BaLe%2BZDNiRn5w0%2FJOUwlJrpo9s%2F1Bubb%2FUq3w5TjVqcGg8MU6egjtoE3y3ILMuuprn3Tx3omgq5jxxTfG4WNuE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e45cb1b568d-OSL
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/resources/newgateway/vendor/jquery-mobile-theme/themes/jquery.mobile.icons.min.css

172.67.200.233

404 Not Found

9.8 kB

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery-mobile-theme/themes/jquery.mobile.icons.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text
Size
9.8 kB (9804 bytes)
Hash
188680672e68d3919a9c52653cbe3812
51af78a7fcba30d13a6ff8edcfcb47290d67642f
9f9df34045bea0a4082462f722c9fc4a1edb767ccb99e735d3d95761e613801a

HTTP Headers

GET /resources/newgateway/vendor/jquery-mobile-theme/themes/jquery.mobile.icons.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SV5efz38D2Eo4Fmwbttl0rrnAlVi9Hab6oA5SF10tRgirGDeUIKGB0KHDngy%2F4d1%2BvKh610UOKq5gRBCycaqbpSdrw1DUD2LN73i7aOHuWNKZOg3QZPCRz5Mon5DsX9q8%2BQ9Ul0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e22db53568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css

172.67.200.233

404 Not Found

12 kB

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text
Size
12 kB (12362 bytes)
Hash
5c84ad43b6ca8e7551021c2644417301
3e7076f1d333fec97e8b34673759c67d7252e781
adb674de43954a51b8587da5fc85fb440ae75eed9b9d225ae7db7d4e8e386fed

HTTP Headers

GET /resources/newgateway/vendor/jquery-mobile-theme/themes/interac-jqm.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=12BlTD26UY1wfJs%2F1WOTxzEM%2FY8%2BUoQMEHFwAis47ksn7E9Y0JKeMu7%2BqCfISk1R1eJxncq5CLcezFIDlPvxf0w3%2BTNDEb4om39dbitVDOr2tl4md3IDad3unN9wmURDvzHTGRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e22db52568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/websocket-alternative/undefined

172.67.200.233

403 Forbidden

9 B

URL POST HTTP/3
web-interacs1.pics/websocket-alternative/undefined
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3

HTTP Headers

POST /websocket-alternative/undefined HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 403 Forbidden
date: Thu, 25 Apr 2024 23:40:59 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-powered-by: Express
etag: W/"9-PatfYBLj4Um1qTm5zrukoLhNyPU"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sM6PfIio7vX9BkdTGEO7z94SDBfO074eIn8P5Cbt2A8mFiqNhv6l8CgT0Yqt2qRy7Oiqu3OMx66vfiQsch4Kk6htJ4fk%2F9CLUqkNnqpWsKxSPrsQSHOcjNJqvJMnOLBeNCAL7kg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e67bf67568d-OSL
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/websocket-alternative/undefined

172.67.200.233

403 Forbidden

9 B

URL POST HTTP/3
web-interacs1.pics/websocket-alternative/undefined
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3

HTTP Headers

POST /websocket-alternative/undefined HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 403 Forbidden
date: Thu, 25 Apr 2024 23:41:05 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-powered-by: Express
etag: W/"9-PatfYBLj4Um1qTm5zrukoLhNyPU"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LKqiy04ZfCcrI2XjxU9nicHOmz5So5YQLgqk0tZXUXri%2BlYGqtkQ94vL2%2FzxYLJc4UZ8WDg7fwri7AhCgxAQBQxLZXAQibS194dI8K6akOvgEKoHc9rA878Q6eD0PE0TqVmNtFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e89a841568d-OSL
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/supportFrame/1714079707071

172.67.200.233

200 OK

3.3 kB

URL GET HTTP/3
web-interacs1.pics/supportFrame/1714079707071
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text, with very long lines (311)
Size
3.3 kB (3285 bytes)
Hash
583ced642d98dd9e1092f2b8c81796c2
a120087b8f7e67da678b79a37f998ba79809ecf2
c2c62d74895e8f6c0c4632614377a1aed485b51b0623a9cb205736b671b98faa

HTTP Headers

GET /supportFrame/1714079707071 HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 23:41:10 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
set-cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIzNGIzMzBmNDdjYjE2YWU1ZjUzNTAifQ==; path=/; secure; httponly
session.sig=5SyAbrkrPxA8wiTFSceustXQqZE; path=/; secure; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trtafspvEqKq1puOWTAwqRTfQ95B1oGMTqQ6V8u1Yhl%2FcZliBfBe6%2FFcQKc%2BVc0KTU9wO9JG2MS6eDDVxlmDt9PpwIj2J5pcChDGc3EgCz8CVsP9evpnkLN4shopKjEY7d8Je8A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22ea7786b5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

web-interacs1.pics/assets/interac/analytics.js

172.67.200.233

200 OK

53 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/analytics.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (2343)
Size
53 kB (52916 bytes)
Hash
575b5480531da4d14e7453e2016fe0bc
e5c5f3134fe29e60b591c87ea85951f0aea36ee1
de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

HTTP Headers

GET /assets/interac/analytics.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"ceb4-18cba54dc20"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A9SX5ctRNQnnH%2BX4tQ51kpHj8XnUIksnkLFqqaJ%2FUXCi4KwjgeYf%2F%2FYMdyf7ZuZEx1EF7pJxlhEYH%2FEui9j9lD4rMv3TSfF%2BzUJi1RLVBLEhGosOktRxaoWVzF%2F3sF9vjwbqBRE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18debc568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000010_000030800_FULL_IMAGE.svg

172.67.200.233

200 OK

3.5 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000010_000030800_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
3.5 kB (3486 bytes)
Hash
eb3c75583e97ce95b8fb53b00ae7b4f2
c9d880a5e697e40e36c4b0c351371c1180239097
40339e02cbd42d21b887649666cd5aa93944ca009626435878bfe382e96fb136

HTTP Headers

GET /assets/interac/logo_CA000010_000030800_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"d9e-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EPHPEPG3VzGr3%2FiADeHj7ffQtptqVseyHYeDeN7ulK%2F%2BMknXz7lZ0HyZR7EiCBLzjAah3Ry7CXkUeOx9OBMnbzrIPSAFooGtnMVFqoltn5YQ3zD5FEC9u%2B1dEWHMYfwVfmCqmv4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fed6568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000002_FULL_IMAGE.svg

172.67.200.233

200 OK

3.6 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000002_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
3.6 kB (3619 bytes)
Hash
55d89ba6180d95322df3b5780b23eca6
433d86d8a08da2d9e15b371551a303b8d5cf1f92
6d735821e6a2e6d12862005b135cb30959acb6ccf15e74345d9d2deb3652fc47

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000002_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"e23-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AdUpzXmO7wlnUAreW%2B%2Ft1X6MeMc%2BUbWj1tAvhs2gCi8szCeRz%2BmXRr9Q0HpMtWW01TI9ooiz5fW26EeRWEU3hx2eTrW%2FJMszifyCPwImb4wq6EubHcOBaJ7AUKKxXCTlu677C%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e190eea568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/navJS.js

172.67.200.233

200 OK

2.2 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/navJS.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (2281), with no line terminators
Size
2.2 kB (2245 bytes)
Hash
f22f575f8ad774afd1ae7741c36e5296
84619e95cc6e81918e5531f98996bc93c26848b2
2df6f78054a9b175036bc6358fb42f734bb55d9a95c4347f06a3713fc8c44d59

HTTP Headers

GET /assets/interac/navJS.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"8c5-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YxYjDcDHE%2FngdVaBGYrA8umSnY8qfUmwUCR3wy8yGVuBIhyEhgfyK9LLU6OO7HYrDs0Vwnn0mG%2F1Ba6slsFiHbM0nV6p0JC6aFxK%2BzHtP75cjfWb1%2BGsjMO8Jy%2BJOSukZOwroSI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e190eef568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/gtm.js

172.67.200.233

200 OK

271 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/gtm.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type

Size
271 kB (270708 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/interac/gtm.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"42174-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EuB17wVduiXB8V2nyB20OzjZY3oMwG%2F%2F%2BwYb4TvlH2vN5y%2FOP0G%2FgJQ2xe4zg3P8freb9VK9nrYnNhjnQhWCIHeU7s3Bo5yI6KB0ipgUyopsSDQBAYHapImjTilusRl39cnE6tk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18dec0568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000837_FULL_IMAGE.svg

172.67.200.233

200 OK

3.5 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000837_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
3.5 kB (3487 bytes)
Hash
b6f6a6914a7473f26cb46b950efdbe26
6b0e08cdb8cbe50fadd87f5cd9adc28d0893f67d
794bf7b66a173c4a08f49324110fa0a58877ddc33664bbbd1d2c3751b76ad878

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000837_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"d9f-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ty%2BmUQcsJ%2Bjz02RW%2BdBKgOdj8e%2FivtOG8WdD5miN2d1LIGAFW8UbmIhpXVANMgFWiIGpLX3SjB%2Fuu%2BIZnqoplOgvMTy9meVbW1NgvdYWCDjmmUHItZW2MX7TtjClw2nsIZkMYl0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fee0568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000621_FULL_IMAGE.svg

172.67.200.233

200 OK

7.0 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000621_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
7.0 kB (6950 bytes)
Hash
de4e1469b2ebe9b9767d11430581a718
be47b0dd5ae71551ca972584ad1392ffea9d08ee
b86bec30d5489903a340b8b898432ee097f5c6aa4403300c79259539a05e1e11

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000621_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"1b26-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0MJzXbAdbHjcdGP3wxo2ce64%2BuyNP7qlLgjlbt%2BWDa%2Bugdk57D0eZqqmGWVFdTlnRDhb5cG%2BGGxGaBt4vNLrrQ%2BKbVeQhJjKmPGtP165r7zeiVgsxwEe5Fg4BY8bMk5txtNTBrM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e190ee8568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/fslightbox/3.0.9/index.min.js

104.17.24.14

200 OK

29 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/fslightbox/3.0.9/index.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/supportFrame/1714079707071
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (29288), with no line terminators
Size
29 kB (29288 bytes)
Hash
56ab10688136d78f6f3b6b02e2625a01
a05ea9121c6199615da0bbddb0277c4b7eb16a0a
972f98db2878c8c4caa1fe9df10db791941c3b287e28d570e9862f3912c89074

HTTP Headers

GET /ajax/libs/fslightbox/3.0.9/index.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-interacs1.pics
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 8001
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6123734c-1f41"
last-modified: Mon, 23 Aug 2021 10:07:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4424997
expires: Tue, 15 Apr 2025 23:40:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AqIbvpr8ujyO9jdor2d7lX0%2FUeacj%2F%2BrYuldL1drI9FIkcsLY6uM1YSCb22LY0iQIiwjmveORG7DGlICF57%2Fj%2Fg%2BV%2FmobqaZa42niVj8q3%2BmfhWkDa26rvor0pFpiPhev2fnt5%2Fp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a22e25c979712b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

web-interacs1.pics/assets/interac/gatewayInitJS.js

172.67.200.233

200 OK

1.1 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/gatewayInitJS.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (1169), with no line terminators
Size
1.1 kB (1123 bytes)
Hash
67faae3582c9411dc656f91e451cfb5f
10f4396b064a2b28f2e8c89f491a5e7bb2e64032
5200ee3393cf7fd2caed6bd100d96f24f62ef0ac7d35750c855004e83a9d69fc

HTTP Headers

GET /assets/interac/gatewayInitJS.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"463-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e7%2B0uB9bm4Rh%2FvDPMSt2XKp%2BSS56tIYqfHiJEeK8%2B8jJQcEk8eRVKeUuuCT5v8J0eOep8nb8tQvehKbx5lfBIvhnm8rHjKlboe6ohJJGpCLeVKpCKWq8ibaQrOpPIzRKMKenTsY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18dec5568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/searchCSS.css

172.67.200.233

200 OK

7.6 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/searchCSS.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with very long lines (7626), with no line terminators
Size
7.6 kB (7624 bytes)
Hash
3c95106ad30f23aacfc7cdda9b7badc0
be3702591a96809ca74c42817acb75271da8c71d
3a79633784a7735f2751c07e8a02f7f5272dae3a701ea8c4d75f15b9ea9752fe

HTTP Headers

GET /assets/interac/searchCSS.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"1dc8-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xp0SKZEDHwMDFHCwW5APSrCYZK3prXkPXESmhHCWL7MOdRYCJ3IgJ9JJEiSqli0mFWH2p9Pnnm9KwkY69ayIe2saaBhqNA70oeutgY4LaBm3PyzsBOY%2BC0FN20JYWjHhA2dypss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18eed2568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/jquery.mobile.icons.min.css

172.67.200.233

200 OK

127 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/jquery.mobile.icons.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
127 kB (126715 bytes)
Hash
1893d7e94b9833e02105736e46d9a813
a1891e1a1645227424eefb8006e02ffd6992a9e1
0009c65a64d81cb607a1acadced92e3e4c6bc8a924553fb2ff573a1d5cea9bcb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/jquery.mobile.icons.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"1eefb-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2Bmq0NeX6b4YSpl7GokyvsqSobKSo5JYOuYwPWYJbpV2KQbk1l3pxy4szRqiqyfoCFvGxjxdzgnj53i17TV%2BKZoeuLnuYY77dI8VpQkTKjCDBgO5VJWj%2F1I941TqsG6UhmjrIDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18ceb1568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000016_FULL_IMAGE.svg

172.67.200.233

200 OK

3.6 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000016_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
3.6 kB (3569 bytes)
Hash
2768ebb989ae8e5e82d6ba4fdd47925e
d968930a72e581376f909eb35c933e73fa8e50b6
9e0cdf9e307967c3941055b7a0c23b46d5885a4d3db750a79599ee95d450577e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000016_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"df1-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GMiuEWe3fjOiDyga4Pl9ZWTsVraTKzFrbN4GiHXwRG%2B3ew1ZtRnHPYx7zQYAPGaULtyxjR2Z22xO9V9LlCFgHjdaG2vTQr1UN1QawKFo810CBA2w%2FHKdzE4h%2FNyJgzwLNic3yqY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fede568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/jquery-ui.min.js

172.67.200.233

200 OK

13 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/jquery-ui.min.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (13097), with no line terminators
Size
13 kB (13097 bytes)
Hash
f01666ac29a79065d56050f33a52f049
08882f5b26a67060cb1199ea7fc84423d7c20ff7
dc3d535926f878f06e73076f0df2d3a7216096108ae40bb9ef8cc2e95270b138

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/jquery-ui.min.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"3329-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w%2BMUs1Cp9gvBIVvHsPO%2F54CXgeSWJPjHsuoYiOyh8QH6wWMwa%2FLgFEUnOXLt8k3z8g90AwW1h9oXdKtwFvQWJN8i%2B7Bq3snIXoa1WxLXeaXZBEuz7Z4288kh4nuc3D31SZolnLk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18debf568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/generalCSS.css

172.67.200.233

200 OK

17 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/generalCSS.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with very long lines (16962), with no line terminators
Size
17 kB (16962 bytes)
Hash
d534c27e189b0a49e098a6ef33477f73
38b00b0851ed7ea9dcde514cd680c599afce7be8
169ab263f661ef50eab404e6be618a16523d35822615ebb6d9d29228945ea7d5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/generalCSS.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"4242-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IbbS5LB%2BjNjTbZF5opJyRar%2BX1ug4g4dtdqeN7XZD8b68FzoyEgJH88sLvfPktNsrXozB7tPtO78NK45PFWJgJsxehQeSI%2BLsL1R0tSfF6nfWGo%2BMCwWgc%2BXJksZa%2BuoQVAZHIk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18dec2568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js

172.67.200.233

404 Not Found

207 B

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
207 B (207 bytes)
Hash
e404a8c7e180687c5e3e357d88ed0039
93ffe0e5f05663d76ff52ae99440c3ac34a4b073
8cc8362d2f7846454bca7cdad1888b0fe932a0944ae2d482259b7178e67da2a7

HTTP Headers

GET /resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:49 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iCDl%2FuytGF7h3eknIqTZNw3lkuQl4SR8D5MPJ1XsVlXNoqol0czS9XdRaGdfDC3AoeytNJFNADgYfI3SGB4LvAPxLhoRplhywCEayevNj%2BwefEEbuhmQ2gD1koAUfTlbaYD1wpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e22db56568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.css

172.67.200.233

404 Not Found

0 B

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:49 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rIkuCZNB7EWNVml1aO%2FgU%2F7pX8o%2FvaCO%2F80CtvLKtd88UQ5b7A5p6NJdL0KrAei%2B9aT5oaiEePy0RbgKiqxSWCTSC5pE%2BiAQ0pRAOp5UE53yexDMb%2FForK6hxeZUqzQr0mhvZ8Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e258cb8568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap

142.250.74.170

200 OK

70 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://web-interacs1.pics/supportFrame/1714079707071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1572)
Size
70 kB (69978 bytes)
Hash
e0e57f14b7c1dbddd5ad278d0b1caebb
cbc83166be6d1535d2191cf72cf36c8cc72920a0
0dcf73b3ae74451091df71905883cc4e32d18ab16c3b36d552fc79bddec1be1c

HTTP Headers

GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 23:40:48 GMT
date: Thu, 25 Apr 2024 23:40:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

web-interacs1.pics/send-icon.svg

172.67.200.233

200 OK

573 B

URL GET HTTP/3
web-interacs1.pics/send-icon.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/supportFrame/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
573 B (573 bytes)
Hash
c7786278375224c17634df7514900f7e
46bc5202a2b0c6c69ba4f4ebd0c69c26d4cd6892
527b04a9a8ead27d4a3482739b2846e558b8fb9b2cb4f7a0ae1481a9954d7330

HTTP Headers

GET /send-icon.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/supportFrame/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:49 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Tue, 05 Dec 2023 15:49:36 GMT
etag: W/"23d-18c3aaba280"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=phtqEB%2BcOKknHDWPaJgXUKAmnwJbCp%2FfBFtvk2bIhWQTtPkYaSJQ9cdcAkAizDJE61HRRYjRX1Psw297X8jzhXUKUvIpvR77u0AyMkJQuXXYhP%2FKV106WpfyWPoIYgCu8OTnZpg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e25bcc6568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/vendorJS.js

172.67.200.233

200 OK

159 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/vendorJS.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
159 kB (158802 bytes)
Hash
5a5877ca34034008d7f643254180fd0e
a858a6c60ad07fc7fe6ca14d24eb2091e8e1c8c3
a3ee664b3de72360fba0c99ad23ab06aa48a477a4735f01c48ba1ff62d0f77f0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/vendorJS.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"26c52-18cba54dc2c"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VgAO7PNFCuX2heEJM%2FxphTiV6QwU9y8wudZHp6PtFQifZIhdQuy4CscLM%2B%2FGgfVCYTt0mktlslXdHTxIadMaqXUZ7wyv1i2kTICvWQQD8eDEFMafaeecDFI2rnm1ZSI7dym5kGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18dec4568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/js/scripts.js?v=5.6

172.67.200.233

200 OK

1.7 kB

URL GET HTTP/3
web-interacs1.pics/js/scripts.js?v=5.6
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with very long lines (1758), with no line terminators
Size
1.7 kB (1654 bytes)
Hash
2e9911a6f7d062246aee17bc8a59b06b
731fb0e6902e7cad2029d224ada5c145d76fd177
0d983a3b2b7cefdffcdb8329ec7438e18c707861f4128812008f5ee04b7774f8

HTTP Headers

GET /js/scripts.js?v=5.6 HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Tue, 05 Dec 2023 15:49:36 GMT
etag: W/"676-18c3aaba280"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UIl84n068B9x%2BACbC%2Ff6%2Br8CM39iSiNJB0NT%2Fp8N6DsQhmyrsHh3P30uuMffQPURqBNRZJkP5a9HJoXKUzICrtP%2FlCSpukb2jBw%2BZaWzifASegEAMhE%2FLiS74cxMR8VuNCUn1ig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e191ef6568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/question-mark.svg

172.67.200.233

200 OK

1.2 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/question-mark.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1221 bytes)
Hash
394d860e5cc882d2d89d27e5faf94fa7
01edd864c047563734438ce8d2618bd687d82064
2eb4b6d9ee766bea2ce9619cb129a71ed4c68b962053cc8c10b3efbd578b9ae5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/question-mark.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"4c5-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hHAvLp2nHEWCDPNoEYDNY2QMIBAfJVGMjwJQe4yElHmpE4oGnis%2BT%2BL%2BP6DvFh74tZf5CHreZE4y%2Fp99ClaTEH4JJdKtRCondM3h86gfgbLv2wzgsD9IZmohE5lrT9ySZM1wtHM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18eecd568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000010_FULL_IMAGE.svg

172.67.200.233

200 OK

2.1 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000010_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
2.1 kB (2053 bytes)
Hash
a9ed1f7c4e03b980d78b7033d8951785
baf4886406841485c59527bf83c0fe61502de066
c5c8f8705c805b04da00c1d4534c40c045468cb2381445e5b718b3b509c3e1ec

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000010_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"805-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z9uQd4lqH5xByqBCO21ElW%2BP7rBetYThfgqoPM4nJVwC6hCX3OLCQWb36CEyN6phyHylTYOMiFuaZAOVJadYFaCak%2FZOys9t9koVRB0Sa09a2sXdy7xC%2B3UFc6g9s%2FSqHYxTaDk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fed4568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000003_FULL_IMAGE.svg

172.67.200.233

200 OK

5.3 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000003_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
5.3 kB (5313 bytes)
Hash
742827c115b21cb7c534eed403437d2c
5cd7473b12f0870e7da3863e60c72226e441ed09
a77c45a4975fdcf05686ce0b6c4f74f2d5bb1aac3bd8d7f1d8cd2cc23706ace3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000003_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"14c1-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mhHpN3V%2FVXQOAgS91vHyxCaz%2B3MKEu%2BLwRRZaWeKV%2Bk%2BXgCGssJ99YKZIAbrcybT9yqDwidFETrrgn3HJJbjueTQx%2BvSa%2FpwtOCgK7W5TbtgoICP9ek%2BmXHMQOY1bOwGvD4ctf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fed5568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/allModuleJS.js

172.67.200.233

200 OK

31 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/allModuleJS.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (1621)
Size
31 kB (30600 bytes)
Hash
90858f0a796f894617b5057097086f62
205ebafac38bca8d6a917d6f352f8bb2518c1c51
8e963a982f57c74b12635ed9898e05f14c5930fbdca2cd51d22b8b563ae7fa25

HTTP Headers

GET /assets/interac/allModuleJS.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"7788-18cba54dc20"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8XaMe5xTnaPsv73sZBpRF0QNULY3NBxIt33LZDUz6buR74ckiRWzPXNllDqkvBZGbcep1%2FC9yFK0PU0%2BICdclN2UXKsBkKkio4H95Vfso%2F1AsfukD0eAgLdCf0P%2BPvhzXYxldNk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e190ef0568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/js

172.67.200.233

200 OK

281 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
281 kB (280924 bytes)
Hash
2e59e53a78438c4a2b5b99f4d51e5507
cec2ecfa49fb95a8f7eea60f11a2f1f1e2809a78
faec807fc51028ffc481fa357fdec8441d89fa171a3dab31ff40c925739e8222

HTTP Headers

GET /assets/interac/js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=0
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"4495c-18cba54dc28"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cIhpjtteLZK6R3lfuPICyorrn3zL1usYnIrP7bHAAB4LsRJHRgRWFo8jMq5tYzvXYo9HfGINuxXm3AQYyGnTuwbUorT9p%2BsapUYG%2BZGpa2a6AJxwSXygD7LbcgvGO0fEAjud%2Fvw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e18debd568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/GTIe8CSS.css

172.67.200.233

200 OK

31 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/GTIe8CSS.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with very long lines (31332), with no line terminators
Size
31 kB (31332 bytes)
Hash
abb2fc7f5b2a03c43bc913f8130e26f6
6d65ac38e37331f1e5cf4ff9192293de03d633d2
916e6021441b48949eaa0c275629be64ceba00bdcf852330316a4c47ec1a0c99

HTTP Headers

GET /assets/interac/GTIe8CSS.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"7a64-18cba54dc20"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dZmSms0Fj9mgqFMChxYpTA3y%2FCPln8%2BknW3vfeKaMtSvTVbfWuU76Atqamzu48YC6pb2mDPqtdPoyuuS54fQt0Lqyi3yVVG%2FvDeBvyH1zMVpuDOEaZKZLfq%2BGIW8jnzpJ7tC3Zg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18dec3568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/etransfer_logo.svg

172.67.200.233

200 OK

3.5 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/etransfer_logo.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
3.5 kB (3483 bytes)
Hash
d5862065fd59d27ba1654a51bf52b22d
e35bb64fe8b3027e755e63b944adeeecf7505b34
3ba5e2f62d6748ddfe158667c3bc475d3e3dc481beb22056670b151698fc6f6e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/etransfer_logo.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"d9b-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oklvcDlFIfyu%2FYypDrFBXwMvXL8OvqNzlFVTYisslJccSLwn1%2BGcxIvf54RovpCYhI6hMFVgcHwHPxFE%2BkXF9EkeXNhoJXjm9vD1U%2FaOt%2FDxg8BUYQc2gE8Ac2RaAYVBBvD4WiE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18eeca568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.css

172.67.200.233

404 Not Found

224 B

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
224 B (224 bytes)
Hash
ad10782e152e5627548006760c4353e4
a0dd04933b31ec08a4741df28e502107846dc0f3
3bbdd53cf7d5f238584e439577763e22550066449a1412435b0626968d005721

HTTP Headers

GET /resources/newgateway/vendor/jquery.mobile-1.4.5/jquery.mobile.structure-1.4.5.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aMx%2F4Uwpqv6lobRS6HptI%2F2HUBGyscZaMhLep5jocCbRvsioVcEA5nSzuG49FhmbShlor%2FJKWtsWeuNyqzOAqE6kQjl0UyY75xZMjzbN2QO4k34bimzNwtqQuaggtaT%2FJwWRMdY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e22db54568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.css

172.67.200.233

404 Not Found

208 B

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
208 B (208 bytes)
Hash
2dcb9c7907bdda01212847b312287545
de044038e7aaf8fc8c0d9083b9b5fb088c2feb84
9b44111d5be0d8bb7603ead01aa0aef5ba73586144eadb30f38c540100d71dc4

HTTP Headers

GET /resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i0MwqSnB1wTu8CJmIDpZzGLSqzx%2BgG%2F2cDgayOJRZtkbMRYDqIDmQP8lQCxcmIPO4fookOL8zwnWXdSl4HFwpXazfkqP473GOkASo4GNVNp7a4ay78j8Gd21BdRMkF%2F0kHZHozk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e22db55568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js

172.67.200.233

404 Not Found

0 B

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:49 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u1dyQFy%2BnqWf%2BCKZYVKsjJMcP%2B6niLvgElJqiLTidm0B1sHlbdrTK6OqmL3HjV1Wvc9ynfHwHwTj3t1IQ7vFr6iWoUmCae998%2FfesoE40auZe1CzeCNnRu%2FP764wnI7Vyd9AjHQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e269d18568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/tags.js

172.67.200.233

200 OK

97 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/tags.js
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
JavaScript source, ASCII text, with very long lines (15506)
Size
97 kB (96731 bytes)
Hash
3f77a8ae87c6388f3c9e2f27fb126ae8
b1b3880458bddefb2cf070dfaa96eaa25079acc7
27810850d8e33fc9629a1cc1ad89be9f5c69a4dd2f208907ce51fe2e404867c7

HTTP Headers

GET /assets/interac/tags.js HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"179db-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HV%2BbSAcSd441%2B3i0RXeyAeZgsbFQFYeq7816X3bCin53E2%2FhZ9XCRaz%2BnebPVG4uMHZ5qDcEj8u%2F8gmzLPd%2B0N6wcEJMhhhc7e46N1eihFS%2BmP99sm7DSH64GkRyRMlsLtw8FZQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18dec7568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000219_FULL_IMAGE.svg

172.67.200.233

200 OK

3.3 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000219_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
3.3 kB (3252 bytes)
Hash
5a7cc0e00efc678e680b7448aeea4901
4d22c47ab6afd1d7800b0877542bb1007bfd27f4
c0e74b0b21a2bf73cb54cd84643429be6871ee492424758ef16bb1f25beabd94

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000219_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"cb4-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vOqnxuYYzqHki4t6RXnrcJzLDNsJRcKM5nSNVao9cpKnUmp69vzKrS2A2bWncQwpp6adyTRes%2Bu1%2BfxAfYXegg3jrrv77kWe%2BLXQcjXBKtQbtJxPLKSmJQOQOAvE3S2GZ8c7yXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fed9568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/getAllFisandCus.do?lang=en&fiListOption=moneyRequestEnabled

172.67.200.233

404 Not Found

157 B

URL GET HTTP/3
web-interacs1.pics/getAllFisandCus.do?lang=en&fiListOption=moneyRequestEnabled
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
157 B (157 bytes)
Hash
5d774dfef54775414d054a5a41e31224
e656ffb8a827f2e484668a88aae2ae1f008d00ee
4eb575e2734c72cd2c3715d80bc87122106d0139a01a5c170330d43c3291fcea

HTTP Headers

GET /getAllFisandCus.do?lang=en&fiListOption=moneyRequestEnabled HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mpqWPSR7ghVXVA60f3EOg5aGCm6w6XRpXX92Kn1uAIxT%2F2OW6m37XGzABYsbpawV2kd3LNHqvjusyjARI1vCkP40LbwjG%2BPpFLDYBS7kpdEQ57KwsAe%2F0EMPOULplGelOAhlSCk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e22fb60568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/favicon.ico

172.67.200.233

404 Not Found

150 B

URL GET HTTP/3
web-interacs1.pics/favicon.ico
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
150 B (150 bytes)
Hash
40dcd24c1edf14a0849c8254193aea92
45ba992f3f8ae064e209777705fcdf50a735b021
015dbc3ffe8058c12556f8609416fa99a10b8fa2df699162a894488c3047b846

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:49 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E84NnK5aYn%2FixbiTtJiPj05CGaOzxfuGYUhD%2Byr7L9JIFvOwyYPLwJpfYmDyFqxHEBeV9YpCuWMkPmIkadVRi4O1fPX8yS8HO7mleN5l8L9YKDu0WchxE6ZIWizzZ2uSYZEitms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e26bd29568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000374_FULL_IMAGE.svg

172.67.200.233

200 OK

4.0 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000374_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
4.0 kB (4025 bytes)
Hash
b6640fe0a23709dcbe6ca22cda58cab1
1a5e7aeb5b05924c1b44bfca684959e2a815acb4
b8a05b9b3d253b742dbac6a192e3914c9320a0f2d1cd9dda577cb69218129c3d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000374_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"fb9-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2Bjc65iVKz%2BGushvl%2B%2BFQdo55RNj3B1lkS3Mp53gL5A29KE0TkyLLCDyBx2GoqvdUc77Pk8z8ioqO16xlRA2K%2FW74x2bqMTVDdXGUnQfAhaArThv516uqMhOD2rbFHeV7Ng0X%2BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fee3568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000001_FULL_IMAGE.svg

172.67.200.233

200 OK

5.1 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000001_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5097 bytes)
Hash
09d7193ba7246c5f1e96dd6f196c1e70
1271c34e57ae2ec92d414e891f404f4980352c5f
391590c1416ea35e4a6994ecaa026743fc09f63275dc17e5c157634d0e82eea5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000001_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"13e9-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zy0O6MSRxqtOpAO9YBdza6nJeWssq3Aiuy1dJ%2B7wmun9uqMAYUZHDKVqkqvME3%2F9PHx63EEs%2BiRuP8Ysy1M4ctZYTUdiPpQrYC5mBYJ%2B%2Fj38arU2l%2F28E%2BIJv%2B5ohTpxjO0FvPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fedb568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000320_FULL_IMAGE.svg

172.67.200.233

200 OK

11 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000320_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
11 kB (11073 bytes)
Hash
4e94f356870942470ef28ac237726d31
7607f7b2695c9849b7b21a515e85681ca455723b
1b8f8a557b59ec01d3db03ab3317224334cd692c7a4ba3f455181f90220795a7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000320_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"2b41-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6ta1E57JQ375wqZX37K0DabpAtxBx9fZyXg4Gp1GsTrlGALheth4IGN2Q5zwzxcBdq%2B70Oq3iCJpSXnDTX6GcsFJD%2BP4xbY4cF2XITnTGz0ZKKTrLpyffbbS%2Bh7hWgn4aulcldw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fee5568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/get/1714079707071

172.67.200.233

200 OK

134 kB

URL User Request GET HTTP/2
web-interacs1.pics/get/1714079707071
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type

Size
134 kB (133868 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /get/1714079707071 HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 23:40:46 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
set-cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; path=/; secure; httponly
session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; path=/; secure; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LlKclRMLU5E17cPtW2C%2FbrRvj%2FPXh76eMB1DJFjkiUSMCfzUp7Cc3OvK78G%2BPaXhcXDVSDXforhwYOKW%2BfXprTnogbzQgPvZ4rrOb%2Bi61n99VzgJEWetMxCxvXFSScc3AbMytxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22e10980f56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.css

172.67.200.233

404 Not Found

0 B

URL GET HTTP/3
web-interacs1.pics/resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /resources/newgateway/vendor/jquery-ui-1.11.4.custom/jquery-ui.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs; _ga=GA1.2.1735266713.1714088449; _gid=GA1.2.720001244.1714088449
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 23:40:48 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
content-security-policy: default-src 'none'
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gVF7qhTYZlpG9kKSBb245HwJcULQlI0sWODZFzYA%2FGwjsTFuUOj5fV5C36EjuWiViL80QbBwKeOLjZlgjqNj%2Bvu6wzFeFmxXaiQjFexSo0vXkpHndYfO3l4viyUYQbhstPt0HHs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e261ce0568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/jquery-ui.min.css

172.67.200.233

200 OK

135 B

URL GET HTTP/3
web-interacs1.pics/assets/interac/jquery-ui.min.css
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
ASCII text, with no line terminators
Size
135 B (135 bytes)
Hash
a2143a2b4300a58f32eb7ba127100abe
2b8384300cb5077971fef45a888dc9b01972db53
7ea13d2b61479fd400c08c9d9414d551e81bae674f73c16c8988ff1c5c94382b

HTTP Headers

GET /assets/interac/jquery-ui.min.css HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"87-18cba54dc24"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F7w4s5Bx2dVW6hLriiksi2o6FPEMk7jkd7fJ%2BMppfhAigEg3wZdonVEQlseabNBXfzQoJ1bdOHqUE9eekxrDa56Q0hYqn62%2B61OX9Mdjx5RurNVkLECwMfLHGoKJ4aOgRFXMByE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18ceb7568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000006_FULL_IMAGE.svg

172.67.200.233

200 OK

5.1 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000006_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5108 bytes)
Hash
9fc6732f869f159acfcbd7dc93e00e50
0e5b47c8ab8b5dd369a84bb54f0a21d85664e7fb
9b65eccd20825bfff34f1e88f0162448314c54cfaf77e89edd7e0e1a82f8ecee

HTTP Headers

GET /assets/interac/logo_CA000006_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"13f4-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WACNFWs6IXzF6cY760t9VVdTWq16YEJQEhjy6YArwNG2oIrqfJe2DyK6700ETapovMMW0dJgeZ3QD7bjjTOGId8fexE%2FH7XqmOD64qZG9h9Jusc6d%2FT9NKqyLOPHf4DkMlNJGCM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e18fed7568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000614_FULL_IMAGE.svg

172.67.200.233

200 OK

7.1 kB

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000614_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
7.1 kB (7056 bytes)
Hash
bcd0fd6454a75be10fd14fcf76545aeb
77fde839335f92c4937c17c5ab319a73ffee9375
776393387f4d09fa18781ec48e2347a0596cfa4e5859d2de2204422f0b3d596a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Interac e-Transfer

HTTP Headers

GET /assets/interac/logo_CA000614_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"1b90-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YKAJ34sZ8kMGz7TDHNDp15%2BLWEnERkBQ8cf%2B9Y2LTQl%2Bt3ReXs79bZXCxW%2BmApCVFOz1BOQQCjZSl1eXmblJxjlwbp8YW2RaydILJT6iBnmr8XsIR0QHuvd50PEVfuMwggQ0Ww8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e190eec568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

web-interacs1.pics/assets/interac/logo_CA000004_FULL_IMAGE.svg

172.67.200.233

200 OK

945 B

URL GET HTTP/3
web-interacs1.pics/assets/interac/logo_CA000004_FULL_IMAGE.svg
IP
172.67.200.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web-interacs1.pics/get/1714079707071
Certificate
IssuerLet's Encrypt
Subjectweb-interacs1.pics
FingerprintCF:0D:06:73:3E:1B:4F:BF:77:B8:77:50:AF:84:89:93:6B:81:A2:61
ValidityThu, 25 Apr 2024 19:16:23 GMT - Wed, 24 Jul 2024 19:16:22 GMT

File type
SVG Scalable Vector Graphics image
Size
945 B (945 bytes)
Hash
34b1bbd88cf27eac406325f1c8f99b5e
79c7e0406115335845691c5d6661eeaae0bde580
bcf3f86853f6fefc85f932059266268dff89adbb524621886c863e999371fff9

HTTP Headers

GET /assets/interac/logo_CA000004_FULL_IMAGE.svg HTTP/1.1
Host: web-interacs1.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web-interacs1.pics/get/1714079707071
Cookie: session=eyJyZWRpcmVjdEF0dGVtcHRzIjowLCJ1c2VySWQiOiIxZjViODhiNzE1M2ZjZGQ3ZTY5MDAifQ==; session.sig=IW_6NoiILUpLuXmxjvKtFs898fs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:40:47 GMT
content-type: image/svg+xml
x-powered-by: Express
cache-control: public, max-age=14400
last-modified: Sat, 30 Dec 2023 10:46:12 GMT
etag: W/"3b1-18cba54dc28"
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B0tzHLimDq9VkgjLQJTDv1Hwe9%2FuY1UU6FcPT5tHuWZy8Ut5whZuzSLaF6Ys9B26vnLFd0a1MBTxRcgcrS%2BuyABUs9v%2BfqNdG8jD8deFw%2B19NIpGPZuckZCGE0sxoZ8pikCVHH0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22e190eed568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL