Report - usps.potsvfoi.top/

Report Overview

Submitted URL
usps.potsvfoi.top/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 17:42:13
Access
public
Website Title
Welcome | USPS
Final URL
usps.potsvfoi.top/
Tags
usps logistics phishing suspicious
urlquery detections
Phishing - US Postal Service
Suspicious - Suspicious Javascript code

Detections

urlquery
268
Network Intrusion Detection
0
Threat Detection Systems
398

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
usps.potsvfoi.top	unknown	unknown	No data	No data	44 kB	2.8 MB	188.114.97.1
api.potsvfoi.top	unknown	unknown	No data	No data	1.6 kB	19 kB	188.114.97.1
www.usps.com	11794	1997-07-10	2012-05-24	2024-04-15	2.2 kB	39 kB	192.229.221.165
fast.fonts.net	2905	1999-03-03	2013-07-13	2024-04-16	1.7 kB	49 kB	104.16.41.28
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-16	878 B	787 kB	142.250.74.40
resources.digital-cloud-gov.medallia.com	11587	2000-06-28	2018-09-12	2024-04-15	441 B	1.2 kB	104.110.27.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service
2024-04-16	medium	usps.potsvfoi.top/	United States Postal Service

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed
2024-04-16	medium	potsvfoi.top	Sinkholed

ThreatFox

No alerts detected

JavaScript (176)

	URL	Size	First Seen	Last Seen
	usps.potsvfoi.top/static/js/jquery.keyboard-focus.js	1.1 kB	2023-03-08	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/jquery.keyboard-focus.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:23:01 Last Seen2024-04-29 08:17:41 Times Seen922 Hash 10c052134350ebe7b387889e26d3fb37 1b199ab807a37f47b674bb8b2ae436410bca03c0 aead96d6d68e8785380f1b3595026968159fca03dba202cf59c3fa5664db5460 Loading...

	unknown	8.0 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen705 Hash 5559bba1d9a09a7638a7c2dd1b81fe00 14942a29363caf7684fb6e8dd2e24aced187e25f 035220530223546155f8d3c5fa055318b220931dd09f87bbb32c5706a6086b70 Loading...

	unknown	9.0 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen703 Hash 1a26167e7339f91908494574cbc729d2 5514169941ad0a8dd2200e92d3e291a982dcbe43 29035f8eb203c0893c8dc1aa0c5164be3d4ceab4421af6741ebe499d24c0c111 Loading...

	unknown	9.4 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen703 Hash 5be188b50e389d0fa75d5ae5df367fd9 715d7053d1a0377fc523efbc4046ba78bbedd564 b9b32663310406783b290d26d86b491f5c941f51206a19d0a8a7f96677741c66 Loading...

	usps.potsvfoi.top/ResourceConfig/urlConfig.json	261 B	2023-11-01	2024-04-29
Pretty URL usps.potsvfoi.top/ResourceConfig/urlConfig.json IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 15:28:42 Last Seen2024-04-29 08:17:41 Times Seen30 Hash 110943bc2b4f7a3f1dda597554713c5e 6afcd916d67e9495aec1c57706317349d8418c7f d6dbba9cd982d1b3d9fe8b5075ac493d75ca98cdf12ca374caea81615e77de15 Loading...

	unknown	350 B	2024-03-14	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-14 05:40:23 Last Seen2024-04-23 19:44:46 Times Seen29 Hash 64ed1ec8bbec1b73bd85ac4d9085f93e a1b26188ee4433b1ae14f3f0b66f7d3bd95e7954 54379b8968a446e002e2e7fc5f4ab64b0427606694756b482ce7e2547534c86d Loading...

	usps.potsvfoi.top/sandbox%20eval%20code	147 B	2023-04-11	2024-04-29
Pretty URL usps.potsvfoi.top/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-29 23:31:33 Times Seen343252 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	fast.fonts.net/t/trackingCode.js	650 B	2023-03-07	2024-04-29
Pretty URL fast.fonts.net/t/trackingCode.js IP 104.16.41.28 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2024-04-29 08:17:41 Times Seen2022 Hash 32dd789522cc6923c80141fcf5d3a614 366b7e3fd63176e559d8b8c5f59be6fd3388cf5a 5c3c9df8b8f0a80f863c53dec5cbca7dedbdcc7697c6c6359520950774653960 Loading...

	unknown	45 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen936 Hash 1b724db8f055aa5ae95fc5298d6652fc a75d09526b4144cddb8e52f3a6e10a4be92407c3 ce8e8438fcbfe267b077c01ae2e2ce0fccea8f550713b75591d7899b5e7325a9 Loading...

	usps.potsvfoi.top/static/js/jquery.min.js	85 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/jquery.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:03 Times Seen5635 Hash 8234c1aca62c1e09cc00f7fb5908d309 831062e805247046abdbab52149b03604119fd11 e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062 Loading...

	usps.potsvfoi.top/static/js/jquery-3.5.1.js	90 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/jquery-3.5.1.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:03 Times Seen12932 Hash 9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38 Loading...

	usps.potsvfoi.top/static/js/jquery.ui.js	284 kB	2023-03-11	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/jquery.ui.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:50:54 Last Seen2024-04-29 08:17:42 Times Seen1486 Hash 4e7e5ae2451d2efbc3d960b63fa78dbb 1479f717ce0594dde5d020d885a988fcf98b106e 5b55ece99168ef9ba6d8557a4e759ad76f53da94eba1d8f331395ea321441bda Loading...

	usps.potsvfoi.top/static/js/megamenu-v3.js	13 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/megamenu-v3.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:41:02 Last Seen2024-04-29 08:17:42 Times Seen2997 Hash b62e27b15837b70e7dab99846ac90ab3 9a49415c5e47149a5324705eaf78b4b68ce10edf 50764694ee2da70f2d3ce0e8340eca39b9e2760d293b47e4355c690a4769e781 Loading...

	www.usps.com/global-elements/lib/script/helpers.js	695 B	2023-03-07	2024-04-29
Pretty URL www.usps.com/global-elements/lib/script/helpers.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:03 Times Seen9162 Hash 5372347b4f98f60b33579180ef6a3567 02064f1641c40b35c14a0da9ee310de54ff76cd5 7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4 Loading...

	www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c	290 kB	2024-04-16	2024-04-16
Pretty URL www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 19:42:23 Last Seen2024-04-16 19:42:23 Times Seen1 Hash 512801685724a3c8e357a15ce70e637a d8f0411c7659a094c32b44d6098f3c6fbc86c81d 0d59d70ba895362a985fba84c14a0b04bf2eec2b9a67e1382d9e78fb106cbe4f Loading...

	usps.potsvfoi.top/static/js/vue.js	342 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/vue.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:43 Last Seen2024-04-29 08:17:42 Times Seen3870 Hash a9b6fe71cb7cfcd689e1ef345aefba51 5c39dfc37fc42400e4b4557db956f3f218a90ca7 159f0ac0c8f517aaa736003b6e13ebc959b5f7129db87e4e56bf2eec8d6d02d7 Loading...

	unknown	3.7 kB	2023-03-07	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:48 Last Seen2024-04-29 08:17:41 Times Seen1101 Hash 8e09a4e67d5e621e4519b9aae343d2a1 4318729e97578a41c6d9f599e074767cf904f6fe 550e3083df920c8ef80a880d66aed0a3b2181b37de64421612208a4bc1e7045c Loading...

	unknown	206 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen818 Hash 01a743c1c4c13afd98c9991bdb2a2218 c6e7648f71a9dc6388bd3dd0e2d88ecfdf2af616 bec513e3889bdef84bf89dddd38afb688becab0bb34543fcad7542b15beb08b6 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-29
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-29 23:31:34 Times Seen342751 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	unknown	398 B	2023-12-08	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 18:22:40 Last Seen2024-04-23 19:44:46 Times Seen30 Hash a2161ee725c064a8adcd52c937f3dc83 6c1cb51c62fa720f8c26a6b1ae7923c0ca018581 6bcaa35abecbf9e4d5d91a48592a220678a965a2f067108221d851c851bb8c2f Loading...

	unknown	34 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 05:34:22 Last Seen2024-04-29 18:36:47 Times Seen4897 Hash 7d61a91bc78674ba0a29f25feff50ab1 e4181c82811756b0c116df2b1614cc7bc865e629 a79b3caa6ae4239ff4cbbdda62156395e3c84b52042f55646b752b184b654c32 Loading...

	unknown	41 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen945 Hash eeceb57d7b53323d01f07097ceb2cc55 e5237a04ce0b30b6b2fd0b31893ef013cb725fd6 58d783d3df4272dcf5f83288a5897558e4c89765d5a43d6fb27de8499fdf96d8 Loading...

	unknown	9.3 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen704 Hash 7cae0c11d1b6e92f3764dfce31520c83 6b7e06b27d3a8b0bd9d28062e8b7f2e0836db175 42b426c3a9a470372071caac746ad11405ee93b6f2d5e1b46eb5e9e1322a2ef2 Loading...

	usps.potsvfoi.top/static/js/us.js	1.1 kB	2023-03-26	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/us.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:16:43 Last Seen2024-04-29 08:17:42 Times Seen1166 Hash c100894c08e792cf983b55454833a1bb 734f27ffe5b19bf7d215949ad5b1ac5996f3283e 7c0909a41432f8efb596fd4d5351da28976d73afb16c7e651f7c827ef478882e Loading...

	www.usps.com/global-elements/lib/script/resize-manager.js	1.0 kB	2023-03-07	2024-04-29
Pretty URL www.usps.com/global-elements/lib/script/resize-manager.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:03 Times Seen8921 Hash 90d8fb00194d91e9dd20281817c285d6 e7e37421b14a39e0d3787988a52a45d27ec3761f 479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887 Loading...

	usps.potsvfoi.top/static/js/metrics-all.js	11 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/metrics-all.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:03 Times Seen4166 Hash 34bbbc752c38a085d897eb4d08518e56 f47857ba660bef72853357ebf63c1645ed0e6420 58e2e2233ddbf49425919c629e63a97801067da6538b003f9ecaf0161f9bdd85 Loading...

	www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c	290 kB	2024-04-16	2024-04-16
Pretty URL www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 19:42:24 Last Seen2024-04-16 19:42:25 Times Seen2 Hash b4c9231b0c1cb0da2964683e05971664 47932f7bea02b1d18a0d3df3fccc280da0bedbab dde895b38282bc190ce3efddfd58ba868aca7f443ca7a6fa31365c5ebebd2640 Loading...

	usps.potsvfoi.top/static/js/ResourceConfig.js	16 kB	2023-11-06	2024-04-23
Pretty URL usps.potsvfoi.top/static/js/ResourceConfig.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-06 22:44:59 Last Seen2024-04-23 19:44:48 Times Seen49 Hash 4519150759ef895bf980927a110d89a2 934fe23fe06b0064ffb4b5acd256a1bde2f24260 737a131422a388019fda89166ee813b067deb8713dfbc46fbe9f7cf7061394b3 Loading...

	usps.potsvfoi.top/static/js/header-init-search.js	904 B	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/header-init-search.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:02 Times Seen6737 Hash d8cb563907e68e9649948c6f521efe60 f5b7cf8123929db8162a2af51d07dd11c21fbac3 fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a Loading...

	usps.potsvfoi.top/static/js/validator.min.js	7.6 kB	2023-03-08	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/validator.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:23:01 Last Seen2024-04-29 08:17:41 Times Seen926 Hash bcb17bca17171883c8bc1dec99880fae c5c518b09743622f47bb6d75e8e9172258ce5d5e 731c763b42ba829a6e28ad983af6151f96709f91b3687f1993193a4f8fa501e7 Loading...

	unknown	170 B	2024-03-14	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-14 05:40:24 Last Seen2024-04-23 19:44:46 Times Seen29 Hash bd6584c6ebafc8d093fe09586dc0c6d6 2750c36c21a1160c9ec18644da4ce8cd4937031d 0771eda054bf11da9eaa749f0d21beb74d859b601df6df932fb254f5c04a33c7 Loading...

	usps.potsvfoi.top/static/js/modernizr.js	11 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/modernizr.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:02 Times Seen5498 Hash 66e83c4165a234cdda478a9c55cb90db 22e9211030a1f612ef4acd010185181bde967307 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6 Loading...

	unknown	398 B	2024-03-14	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-14 05:40:23 Last Seen2024-04-25 15:03:13 Times Seen37 Hash 56aeae50c3f6e752fc184c7c0c55f474 8d4d11c375e0a6b1450f00b3db8cddb37d6e3c64 e35d944ee3484a384ab9c9574edcb8a2f5ddbf479cb1c14e3747d183570d5d37 Loading...

	unknown	187 B	2024-03-14	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-14 05:40:24 Last Seen2024-04-23 19:44:46 Times Seen29 Hash aef3b62a253a39354df2f77834357e51 8997493ea3aedad00a9f8b1bf834ca2f6248d235 2b04247b7b0ede0876b6e6c3bb1b92729661e34db8affd3e30163fe37b2710e9 Loading...

	unknown	45 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen822 Hash 224a0a34f95919f82c221e765b220470 121f78a432e0a4319775b358a9dc2e7222bd025b 6cd5bb41cba9433d8bdfe81f4dd4b136853468aed5a142ca7cacda8b1f166b1e Loading...

	unknown	50 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen916 Hash 956e99d22da12bc5ab1f1adf5f17becf c52440965d15e20c69cbcc48a67d6ac4f6c8daed 38ddd1d6ded0da51419890d87df2a99598b2e5a2d320deda8ffc5d0e9d93a2ea Loading...

	www.usps.com/global-elements/header/script/search-fe.js	2.3 kB	2023-03-07	2024-04-29
Pretty URL www.usps.com/global-elements/header/script/search-fe.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:03 Times Seen8192 Hash f7f70265f5cf47386622e433317412cb e1b28284e51c848685c7ea6d19ff551284c58e8a 766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b Loading...

	usps.potsvfoi.top/static/js/jquery-ui.js	1.4 kB	2023-03-26	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/jquery-ui.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:16:43 Last Seen2024-04-29 08:17:41 Times Seen1052 Hash 803337a2b884f13875e5ce58b8921f4c 1974ccb1182ef9a6279436ec29e51d7de739bd38 1d354faf02dbb69ae38266b9e5cbd4c45a6f3c215c6f3002a44083480e7fcb03 Loading...

	unknown	45 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen937 Hash 51fd201cc2b1f064aa90018ae352f64f d2b5d44136fa6451ddbea1570c2b4aaaf00cebcd d5e75b6cc1848cf42680ce9c45e00c4571b9ce9a951c24f0962287cb4fce5a87 Loading...

	unknown	9.0 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen703 Hash 22d48da7b1e3d55fd8e701b57e26e66d 72b1c91d9e3d76c5c8e76f9ec48b51f518d41f30 4ef6542a60bcad04f8793bd7c35797b2ad70bbd3f37317940c84ef7495342df1 Loading...

	unknown	312 kB	2023-04-05	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 22:09:56 Last Seen2024-04-29 08:17:41 Times Seen813 Hash f339c3215c6d4d5c41f3c76bcdde4dc4 d619412e6955022eb8d5acd26cf7c55310c95dbf 32103a3466d9a4322c6976315b3222b9735e267f6c1e627e0479348677e027c4 Loading...

	unknown	7.6 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen803 Hash b0499e89a60d3c7b99eef8190c6532b9 5bed8eb4e8de81119d12f178b6f232b1a7cfdc2d ca7b98038e741f70dc1907a95583f6b595256874d45b06a407e1146534d4857a Loading...

	usps.potsvfoi.top/static/js/optimize.js	118 kB	2023-03-12	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/optimize.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:29:45 Last Seen2024-04-29 08:17:42 Times Seen1364 Hash 649c3e8e8378fdc785ae5fbd51f843b4 5eb51f662d4652db4932aa3bd444a3399923a9f4 8ff752ffa3c7cc5de38982c9e9e02bcd12f7ec83d5401438af6cc8b983b6d32a Loading...

	usps.potsvfoi.top/static/js/axios.js	43 kB	2023-03-08	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/axios.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:53:18 Last Seen2024-04-29 08:17:42 Times Seen4900 Hash 1eb8e8e2284670dc214a3e70c25992b8 94ece417aa560aa8de906e8f54c0985da90364cc 96b65382c74cd6255d4628044c5394f2ef3f0662d7d72b10f1bceb50b6ee5455 Loading...

	unknown	42 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen999 Hash b563025a6d81aa3f36bdac72175f1590 6f99c8f948a1e1470b06a259a68b2676de142e34 0886d84e71eab3fc16d76b53a3f29969358c1de0c3280c5fdc835cbb208520bf Loading...

	unknown	1.3 kB	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen702 Hash 78f6ab4bdac6fede8f75b62a93c4014b 7ab99a05b911a829735caf82676081f085ae6b16 63b9023846d4ba59c3eba5da0bbaadffed587cee60b14adf612537dc576c0a98 Loading...

	resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js	1.1 kB	2024-04-09	2024-04-18
Pretty URL resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js IP 104.110.27.57 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-09 06:24:31 Last Seen2024-04-18 06:14:36 Times Seen31 Hash e978b5bd6c3bd1b4a81447c865d7a516 f03cd1cbd388ae347d5e232ad842c51ab1851402 5d8e2ce33f7ae924669cda91c71102dfaa62587a35d95f6433483d4a0ac5c859 Loading...

	usps.potsvfoi.top/static/js/ge-login.js	9.3 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/ge-login.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 08:17:41 Times Seen953 Hash 98d32283850b9b1ca26a3236d2a79d9e fe249015f43e6daacb26574d59f66f21d7045bf5 19446f634dd4c6221d9a8997301486192578841ad90f58e131709853edef22a3 Loading...

	unknown	212 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen803 Hash 66428bb2366703d6213a04e97ea89962 3ec4c1051938b9d14c7f698a5b95caf68d2228d4 8790ca1984a4b33c485b62a2e69378c3b9812f3df92cdb28784a851bfe9354f1 Loading...

	usps.potsvfoi.top/static/js/data.js	2.3 kB	2023-03-08	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/data.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:23:01 Last Seen2024-04-29 08:17:41 Times Seen925 Hash 4e63162ae69eafb76689cf99ff8ee80f c024d42bf60062305e41d2d174a267636bd00875 d7ddb163bccc6b2339836b14bbae623f0466549803a1d5be6f9bd86963f26220 Loading...

	unknown	7.4 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen804 Hash c53e1468fca68537688cdcea529d5537 c248d9c09ef10f2c14adaa41cbc63e263dd392f6 321adad8819cb788894769289ee74e771a98583b4462692478c5f4352892e8dc Loading...

	unknown	7.5 kB	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen803 Hash e712932b4d625a33626c7464169418ff e979312401dceaf23cc3fe8b8ba73d4b714e5175 5675ec53381aca5932bbb804834f4fa2a42e843db8ff5be7de55cbc3965a8c3a Loading...

	www.usps.com/global-elements/lib/script/require-jquery.js	74 B	2023-03-07	2024-04-29
Pretty URL www.usps.com/global-elements/lib/script/require-jquery.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:03 Times Seen9185 Hash ea38e8196b75d9720bc3902d6d735130 165284464c58d7f213c1211f2c433873299e4527 cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9 Loading...

	unknown	590 B	2023-04-12	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen804 Hash a23f7e60580ecffa682e2997a139241f af63dba2ccbbdd066e003874842a675c8fd9f431 cec8f7e1410704ce865d498652b8abd952e5f936b7ead8d0675cdd0346bcb99e Loading...

	unknown	171 B	2024-03-14	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-14 05:40:24 Last Seen2024-04-23 19:44:46 Times Seen29 Hash 5e815eb40184a0070c0fcdcc43efe82b 41dd25c29bcc030ca02584bba2d4cd84dbfadfb9 f387dbb970d7732de3cc11bd47f7e5530ffb7c5608c1c3c557ede3a39cc2eb8c Loading...

	usps.potsvfoi.top/static/js/require.js	17 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/require.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:02 Times Seen6825 Hash 16e572a4f80526df4bc3cc7ff056a9a8 f23b5c2fd52e855245e3d2586cd911051561e64c 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377 Loading...

	unknown	370 B	2023-03-07	2024-04-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:23 Last Seen2024-04-29 08:17:41 Times Seen2378 Hash b6b119180bcc96f40ecd5fd91140a032 07ea482d42ce34c40736cf054c23a544ef974853 11e7942e9444a650d26544955bded8ac1a733c296d3d3fc18158afcd4b6e6703 Loading...

	unknown	44 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen944 Hash 4748069e6224f5329d2522b718672692 5531d58ed1accfd91afead693de74b51e300b272 5a07a44cfc9c19daf7d3023ad319b6ea3ce0f45123f2b010a25eb72b164811a0 Loading...

	usps.potsvfoi.top/static/js/megamenu-additions.js	1.3 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/megamenu-additions.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:02 Times Seen6073 Hash 847cc8bd91110ff714275c5a29fbd404 cff690cc070f9539cc1c325ed150b819018e8df7 a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd Loading...

	unknown	42 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen943 Hash 7851f6d4232442122f37a06a8a925627 da46fbf7c5ff3cf0f43e874255ddc06d5a808c12 9b32708ecd332adcdfac15cba826e4b48ccc70ebd5ef80da80c8e864452cd914 Loading...

	unknown	10 kB	2023-04-05	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-05 22:09:56 Last Seen2024-04-29 08:17:41 Times Seen807 Hash 57d86288e1c6542e2f3cc19043fb921f b9a26c5084dc26123b1672b899e57c720a8290a3 7b59a24840e4776efb2eb15bc6663d146d9fbed9dc84b75da615c086a1e3c538 Loading...

	unknown	40 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen921 Hash 3bf75d3544869429e781ddbaa0cfb144 afc50f749c670a2f3f2a877f8b81a83bf6557b37 2007560040719925cfac43dac1d908a19bcf1c1a9f2d4fdfb5f31966d1cc3f24 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MVCC8H	687 kB	2024-04-16	2024-04-16
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MVCC8H IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 19:42:24 Last Seen2024-04-16 19:42:26 Times Seen2 Hash b429e898518205f450014ff16759d7b5 5efd50b1dc2b21e304b2c3df95d4d82b8c7ea9b8 159fb0fccae74c09b7c258581a680faba5c11beaf9b14e7315cbe08acf4a20b7 Loading...

	usps.potsvfoi.top/static/js/landing.js	9.1 kB	2023-03-08	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/landing.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:23:01 Last Seen2024-04-29 08:17:42 Times Seen848 Hash 4e11f6eb908c8883ec3c4756b798d7b7 8eaeefdf546befcb5d7868b0e4701efc995ad726 b3ab0b0d8709b1c74b5f3afa2b4cb63949741bad5d8753ab7a0284404c0aeda2 Loading...

	usps.potsvfoi.top/static/js/onelinkusps.js	3.6 kB	2023-03-07	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/onelinkusps.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 19:28:02 Times Seen6093 Hash b60628830a1d34363f98c9443b856555 ba386fdd91d2db7fb6749982caa78bef59028077 68482663e769a15815d142d88f7a4d8105c02fe2bd37a9899a019b518f17a2b3 Loading...

	unknown	42 B	2023-04-12	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:34:11 Last Seen2024-04-29 08:17:41 Times Seen864 Hash d8d7d3faf84b22ea06f0c3f20cc76574 1c43468a29af59416f67f74bf8c7cfb520478a78 7b6c7aaf92de5fa3b9d5aa91d7bd188c1a8abf9e3028497ced83d3985524ff2a Loading...

	usps.potsvfoi.top/static/js/bootstrap.min.js	37 kB	2023-03-08	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/bootstrap.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:23:01 Last Seen2024-04-29 08:17:42 Times Seen1487 Hash 5a419da48d7b5f7ed34fda267cac899b 5b1552a7baf7a483457cfc229129405f7b6b94ce 6cd4e4ed31432db3cdfdf272f1066de426166a2013598db7cb71b77a47d02148 Loading...

	usps.potsvfoi.top/static/js/ResourceRedConfig.js	12 kB	2023-11-06	2024-04-29
Pretty URL usps.potsvfoi.top/static/js/ResourceRedConfig.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-06 22:44:59 Last Seen2024-04-29 08:17:41 Times Seen45 Hash 7ff18e3b9d7dcb8eb229e8faf68ebeb5 5e6c8f9c801f24fd7db4ea4457aa66083c2006a4 2382e110030557fbb0dee5bf53a34db8a20090522ccf900f90271cf3770ee5fe Loading...

		Size	First Seen	Last Seen
	#1 Eval - fb2b0bd52224b066f5af268aa81e8115	79 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen680 Hash fb2b0bd52224b066f5af268aa81e8115 8abb7a4a4e7378b8a4a7ad04d63143e1d9411aa9 c01318a64a4551e579ecedfbe78566268f8b9508dc37193f9736aa83e5901850 Loading...

	#2 Eval - 0aff2a0c5b3fc8982051fc1e6233880f	83 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen685 Hash 0aff2a0c5b3fc8982051fc1e6233880f 74117104c433460578298a6b29da696999387a7d aff6200339ab6b23f2a68139fcb586518ccbeeb07a67bec63e318c07cc83541b Loading...

	#3 Eval - 2df884b903e271d51463bfb3a0b85e28	206 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen680 Hash 2df884b903e271d51463bfb3a0b85e28 7d86fe3af4b2b131f06677c2f4494d88397af1f3 6bc9b62ed7ff81b2d2d5466f3961e246f310f8615169b8869f86b010972f2837 Loading...

	#4 Eval - 8553de207a029cd28c35e8edcea7d673	260 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:16 Times Seen37 Hash 8553de207a029cd28c35e8edcea7d673 1c75d484f0e7c1f837b7711b3662d7588446ec79 4890f9a03530d983fa44870addef0389fd87350e16504b2d526f97d90349a798 Loading...

	#5 Eval - f5b396ae8e44d43ba9672364c95e65d4	205 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:16 Times Seen37 Hash f5b396ae8e44d43ba9672364c95e65d4 1e8e758fc1f061277e0d13e42fdcd24278a0bfd1 151db358781e21587acee471f904f56ef464dcfbe08f7e03a41f90c7db67e9cc Loading...

	#6 Eval - 190ec3ef8b839d80c38300a2962218d8	162 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:16 Times Seen37 Hash 190ec3ef8b839d80c38300a2962218d8 9eaa1a131bced6be2098a4e6f0b0e872e5f576f3 5bf4679d128ce475d939db5c824159731a426aa28ad974d47fc3ad8799a782b5 Loading...

	#7 Eval - 793e3e71b271f7efa1b601d5992fb985	84 B	2023-12-08	2024-04-25
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-25 15:03:16 Times Seen38 Hash 793e3e71b271f7efa1b601d5992fb985 c57ac5deb767acc937e42bb09f7cb16a3f71744e 8c29a8a61fef8789d2957361f7e59212afe88114089916e8b4336d28e3b70dc2 Loading...

	#8 Eval - 2ef716ef6e2e86c2f04cdb82e1bec06c	108 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen671 Hash 2ef716ef6e2e86c2f04cdb82e1bec06c 894a8c0985f528a391ce0ab2e83b1a3ff6373f8f 183a233ca7e351cb95d7788c2cbc0d96d324e5318cde0b97e78ecbb30a6f191c Loading...

	#9 Eval - 4353caacdfdb8920201e5acc77d36b3a	83 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen685 Hash 4353caacdfdb8920201e5acc77d36b3a 1ab85eb801b2b879fedac906ba471252986be281 ed97810a63b3b68c549ab384c821ac4f930fd71ab84f4e3aec4dd90f8451ca5c Loading...

	#10 Eval - 62fcd308d1cfaca166134ddcd78a022d	69 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen685 Hash 62fcd308d1cfaca166134ddcd78a022d a7cffb841a1a5e740bb3e78ae9071ecc5d21d7b0 f68d55683ef801cf8def5ca9d9e38a1844045f5155d26ef3d7d5dfaed0cc397c Loading...

	#11 Eval - 441f78529a8a583adc1c0b5c3a458d6c	1.2 kB	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 19:42:24 Last Seen2024-04-16 19:42:24 Times Seen1 Hash 441f78529a8a583adc1c0b5c3a458d6c 1d10c98611ac791ec8f5cc1febc54122d710fe9f bdb194f863325bd2448e00a6c93c92ab4de9b5fa30011fa8124860b236f03a33 Loading...

	#12 Eval - dc43085d7dcc785d85cc353c547af60c	128 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:16 Times Seen37 Hash dc43085d7dcc785d85cc353c547af60c 431eb6eee5d174d9d6d8525cb950c6764059257e 12aa9afa4c10f1b8e675e10c247633995fb9a5ea8d4c654e1c49a824bd0199e0 Loading...

	#13 Eval - 1ffa37c170f321a14efb28f448e7fafa	112 B	2023-12-08	2024-04-23
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-23 19:44:47 Times Seen30 Hash 1ffa37c170f321a14efb28f448e7fafa d72d527103ec93d3ad4795a5a444ed590b5252ea d8342411592b1c01d302d77ac06a53eabe607d0d321567d31b1f25c57da7c0b9 Loading...

	#14 Eval - 03d5c7b5f23b067ce28b14071b3e0185	81 B	2023-12-08	2024-04-23
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-23 19:44:47 Times Seen30 Hash 03d5c7b5f23b067ce28b14071b3e0185 ed29e4cc7c151fb4800a12b0683346a727d95b7b 51668dd9ea2ff444babe84df9a2a26c271f0730208170351171fa6cdb76a4981 Loading...

	#15 Eval - 835e70721aa046568b4b6b9f963f5b7b	69 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen685 Hash 835e70721aa046568b4b6b9f963f5b7b 8f71c6d09df4def2517405a0832b3932e0fb9d4d 13d39f8e342911821c7d870f84dc247bcb7349497237bcd6da5a1ae2da739dd1 Loading...

	#16 Eval - b979880ace7db79730a4d2067b40294e	122 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen683 Hash b979880ace7db79730a4d2067b40294e cbfc97464f49634e208289967b9f11172a7c7a8b 94819da75126ef0456808418e1af9ccc46f733ed023b2813461f6d56ffb9495d Loading...

	#17 Eval - e9547b03369c6f7d2c633384700f5fc0	69 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 13:59:47 Last Seen2024-04-29 08:17:41 Times Seen1596 Hash e9547b03369c6f7d2c633384700f5fc0 5b7d8cbdf431ae29c79f4d80489cf0454618a9e4 28a24f0c8ff3d4ed65cae4f24b2ac25dde6453f0677b5d88d46052229eae8b64 Loading...

	#18 Eval - 8c802cda429a038f3f6dfca632cc9e17	70 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 13:59:46 Last Seen2024-04-29 08:17:42 Times Seen1598 Hash 8c802cda429a038f3f6dfca632cc9e17 97eaa40c5e43180fbd419f651dba8060e53ea62a ac922c1b6c9e7ec0248655a94db0ef590845e31b6c8f5284d78fab579c0e41e2 Loading...

	#19 Eval - 11fecda6f2ae83e6c6afa58091d4a45b	260 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen682 Hash 11fecda6f2ae83e6c6afa58091d4a45b 92da7790e244d3cf8c30d0e375eca45d5200fede 7286c1815a336c557836688db443ee0f3220b979eebd45d40215922084a575e1 Loading...

	#20 Eval - b99a5b8c3a8a81ac3976632623164d97	124 B	2023-12-08	2024-04-23
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-23 19:44:47 Times Seen30 Hash b99a5b8c3a8a81ac3976632623164d97 70aabc6298f18fc4391fd5f3a99b4802ee304f19 0099f666115ecc905e9d8f53cc82736b7d188d2f11b8a7ee49dd5434eb29bc59 Loading...

	#21 Eval - 2261bf37d999651e4b0d3492078f1be3	84 B	2023-12-08	2024-04-23
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-23 19:44:47 Times Seen30 Hash 2261bf37d999651e4b0d3492078f1be3 ec58a53c33e9093306c9a8ae0d749ed77e79a192 6f96cbf7827c3fa237a77440270ca8f1716099d1faf8611cb4f8898fbc14c065 Loading...

	#22 Eval - 582e8db9af4ba0a4fa3d78f819c22ed1	70 B	2023-07-10	2024-04-25
Pretty Observations First Seen2023-07-10 14:49:31 Last Seen2024-04-25 15:03:15 Times Seen86 Hash 582e8db9af4ba0a4fa3d78f819c22ed1 b94421c1211446302f28de91616734ab061debdc 8c85ef5c7dd898ec70b52b44c5ab31b277ff3f83460867c31c831be8d4741c60 Loading...

	#23 Eval - be091de8e7a7b355799e49f6af400281	111 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen684 Hash be091de8e7a7b355799e49f6af400281 902a3b0a0e44f8d1564586f251be0db3d1efa6d5 a8e98873b005c2c70ccde8194b25763423a7aac367da78ed2cc44b0c0805a61e Loading...

	#24 Eval - 15608acee3eadaf103be597b2f4d95f8	81 B	2023-07-10	2024-04-25
Pretty Observations First Seen2023-07-10 14:49:31 Last Seen2024-04-25 15:03:16 Times Seen86 Hash 15608acee3eadaf103be597b2f4d95f8 9cb2269e36997330aa842329c894de290eb7cdbf 0daab6fbdecbfe876c0413d8672c3a2d3594452c51ec723a36270c921397c8cb Loading...

	#25 Eval - 548472f4244e78610688714b6969d917	80 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen685 Hash 548472f4244e78610688714b6969d917 2ebf4c509d3d799c7c16b0fd9dde065e74cf8d3e 4f69b459d5765aa7a7abdb8d8fdc802dba2fe1abfd598b7e4b9a4b67b07c9612 Loading...

	#26 Eval - 786c07dd364d558a026089ec8c827ef1	111 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen683 Hash 786c07dd364d558a026089ec8c827ef1 a8d42c2640fd92005cede6e9b3cf8629d93dcaf7 33f8e3e61f58ec22544452c977d2218bdbe12dc14d24fd5a7b7abb9ea2aae03a Loading...

	#27 Eval - 5b20d7eb47e7457701ab8af695a540ba	6.2 kB	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 19:42:24 Last Seen2024-04-16 19:42:24 Times Seen1 Hash 5b20d7eb47e7457701ab8af695a540ba 412c4ab17c43a0240dad68b48b1364d1339c6ac1 043f91a0c4a9d3445f36268d49d7977b639c7126f14ec19d30073cf1466adb48 Loading...

	#28 Eval - d31109580e4444e111f9d1b7ef3b1177	218 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:15 Times Seen37 Hash d31109580e4444e111f9d1b7ef3b1177 7f0f49fbd41ca3f4e19d6c73aca53744c02252e1 a037e73419b1fcda95349977484c9839ee1b7e53e8b4cd58507e08f96b5b7c7f Loading...

	#29 Eval - 1bce2c03cdf6323985fd9125650b1d53	70 B	2023-12-08	2024-04-25
Pretty Observations First Seen2023-12-08 18:22:42 Last Seen2024-04-25 15:03:16 Times Seen38 Hash 1bce2c03cdf6323985fd9125650b1d53 317378b4d2fcfa3c2c5fcdd0cfbc5284ca5e3d6b 9dfecd9a407f9d8ca3b30a9ba2369d03b15996a1f311d8af34bf5f0a64ddd8d2 Loading...

	#30 Eval - 88bd777f5afceff996ec986c6c2fed97	110 B	2023-07-10	2024-04-25
Pretty Observations First Seen2023-07-10 14:49:31 Last Seen2024-04-25 15:03:14 Times Seen82 Hash 88bd777f5afceff996ec986c6c2fed97 3130e506740216f49e610603e5be7af87f48ee5a 2ed0953741908ad2682f78919797f148f5afd14ab03964f1c0ef68de2bc7957b Loading...

	#31 Eval - 3d9f58a48ad1e0f6c4ab203112c35b10	112 B	2023-07-10	2024-04-25
Pretty Observations First Seen2023-07-10 14:49:31 Last Seen2024-04-25 15:03:17 Times Seen83 Hash 3d9f58a48ad1e0f6c4ab203112c35b10 da1d64d86628852a5450aa99397f25ccea87e198 6ff0b7b0235ee4b73775f7f8bb2a6b43bc2d3be24cbf019f143e97be74ef24ad Loading...

	#32 Eval - e80030fd060c3630132653b6e44aa90d	68 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen677 Hash e80030fd060c3630132653b6e44aa90d b22bb4dc5b4534bcda598df6a086f87ad1183d1c 9a5960d8709a9ab734c8f315e4008ae9b333f0043a365b02826728ec068cbdee Loading...

	#33 Eval - 61c16686bb5be3a5ad00a8183e30edac	205 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash 61c16686bb5be3a5ad00a8183e30edac 5534bbf32b2606142eba628ee230b0cf4bf44e7a 7f098bac18eb4f837c32ec19754fc2fe4dba750cf933adead02f5e4f386211cf Loading...

	#34 Eval - b7a87a444bde03925ca377ed5c8fe189	113 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen679 Hash b7a87a444bde03925ca377ed5c8fe189 17e3a19e15636b7f67b53c71a07225ac17b2bc94 3efe20bdacd6ea7e57cab784dfc1fe3afc92ae4994c25e78c2c966abec6b719b Loading...

	#35 Eval - a9727b8c1959874ef4660fa00ee33917	1.4 kB	2024-03-14	2024-04-23
Pretty Observations First Seen2024-03-14 05:40:26 Last Seen2024-04-23 19:44:47 Times Seen36 Hash a9727b8c1959874ef4660fa00ee33917 f4fda811c84661a5bf7bb7857230b254acc5e27d 4b886533d461a154e1091b366a5979d8de8cd965a3930bc5a92ddf2abfb4f91d Loading...

	#36 Eval - 3e5f2398a3aef421ab0117a698976b0a	110 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen675 Hash 3e5f2398a3aef421ab0117a698976b0a 5800717d69b52ccfb8a619bbad5787f757b73ac7 bd6e49ddc7d1ca5dc5966fb74714c2148ebc47eb9d1ce24aa9684537aa624746 Loading...

	#37 Eval - f1848d630d9cbf80b197300f2020cdf4	83 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen680 Hash f1848d630d9cbf80b197300f2020cdf4 426a363c7c70a41fd5c2ed222df4f2758985087c 2d75c28703038c14cab29c1e21289981344db62bc60ea09d359e2ec6decdbeb8 Loading...

	#38 Eval - 0ff27f5dce00da39aab149e26cb91662	110 B	2023-12-08	2024-04-23
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-23 19:44:47 Times Seen30 Hash 0ff27f5dce00da39aab149e26cb91662 0733f0005c902e70881e6716780fc87af887d84c 8a8028edad0e6508777c24d4795022c2fca04b27c2bfe94846e9d898adb65fa2 Loading...

	#39 Eval - 94a4531cb2d6f564d0b4072da0cad7d0	70 B	2023-12-08	2024-04-23
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-23 19:44:47 Times Seen30 Hash 94a4531cb2d6f564d0b4072da0cad7d0 1edfa2a62c1b4425db6391678d329c954e5760c5 fac8af44ca9c0b8328ca2246a706c20a7e77824fff2f62c82339c3df3ea063bd Loading...

	#40 Eval - 014370ea90fe06829cbdba1e2fccc659	124 B	2023-12-08	2024-04-25
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-25 15:03:17 Times Seen38 Hash 014370ea90fe06829cbdba1e2fccc659 3330e1217e71e442ff11150d5c431db8827ca65a b00304642dade5656e377843a2633b95a6794b5b6e947205bad856f05eb4fd25 Loading...

	#41 Eval - fd64afb91be222cf5cbd34e2f1f6a3c2	124 B	2023-07-10	2024-04-25
Pretty Observations First Seen2023-07-10 14:49:31 Last Seen2024-04-25 15:03:16 Times Seen86 Hash fd64afb91be222cf5cbd34e2f1f6a3c2 4b82dfc880960b3201ccf87fbe4de3d3df62dd31 d40f5552f9e6137b448c2d5b1b843a3caab643721eafbed76f47ae0be93edf7a Loading...

	#42 Eval - 3c3a714c857a0c22b05676f8cc8ce1db	84 B	2023-07-10	2024-04-25
Pretty Observations First Seen2023-07-10 14:49:31 Last Seen2024-04-25 15:03:16 Times Seen85 Hash 3c3a714c857a0c22b05676f8cc8ce1db bf4ea98c92f74041359e21ddf26572d5648626f8 bed445242ee026ed6fa008a0f492fee20b0ff893a0d8927ee823c20bc3e88984 Loading...

	#43 Eval - 39ae7f2b3bf81667cdcfd0a31b8a1305	260 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash 39ae7f2b3bf81667cdcfd0a31b8a1305 8a5fa152fa0b32e841fe87c64f7f984e1ed04c48 add0684718357015fbb9f1b87cef67524117f6b2bdcacc4de29030316768a2ab Loading...

	#44 Eval - d2334447b90e2490d424641045259fa2	109 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen680 Hash d2334447b90e2490d424641045259fa2 bfd992b5a66556d0d4446208dd00abce4e7427a8 6fdf0e5db244c3eedb4fb04d28d4d9bbdee149edc4317f099e7364e07cbe48cd Loading...

	#45 Eval - 88e3f725204d33700d660ec2811aa65b	151 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 13:59:47 Last Seen2024-04-29 08:17:41 Times Seen1598 Hash 88e3f725204d33700d660ec2811aa65b 48bee746e1c4bf562979ebf369f828ae680cddd2 2cd756a994c2401c9e1354104b3652d9bb3ba51167de824401de9e633ee967ab Loading...

	#46 Eval - 5e5bf2e6233beac60056f8cb91491d14	260 B	2024-03-08	2024-04-25
Pretty Observations First Seen2024-03-08 22:06:07 Last Seen2024-04-25 15:03:15 Times Seen38 Hash 5e5bf2e6233beac60056f8cb91491d14 1fbd2fcbec6ffd9360659af5b171ef57e819c334 de28139d85344d61f7897799ad918de83ee32d923bcd91e502796dea109ffc55 Loading...

	#47 Eval - 20b27e1f82c14738f2f0c3f3d6826e2c	384 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:17 Times Seen37 Hash 20b27e1f82c14738f2f0c3f3d6826e2c 62ea4a82864fe9a861088cb4ffdfa69da11076cb 02c9e7eb0c28353786a9fc610cd8744c111454ccfc41ae1feda970fe53e68643 Loading...

	#48 Eval - aa6f279b1616592005692ce6af401c9c	113 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:17 Times Seen37 Hash aa6f279b1616592005692ce6af401c9c 648b6e9fc131b7038ead8220c26c585350af9d81 4c50e45d8221869ee811b5342dd74c6dfc0b8b365f54a62376e565477c98b705 Loading...

	#49 Eval - 591472b2388f139ba72263a46ff3d619	381 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 01:18:52 Last Seen2024-04-29 08:17:41 Times Seen1874 Hash 591472b2388f139ba72263a46ff3d619 51af3d9df4a627071d03481542efe344da6c969f 534cebb2ad439f5a67eef8084ce23509bb3bb872ea8cab7a41ebe1cbb7a95a2d Loading...

	#50 Eval - e801a332f4746724ed07be87be00ac34	188 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash e801a332f4746724ed07be87be00ac34 fdee88205eb81a93256625a1b614a8f038f25686 4b892210cddc8c81ec43f6ae4d031e2361cb11cbf373815634e535a30a07e3c2 Loading...

	#51 Eval - fa00efb98bffba7e788e6fb46f0c5351	99 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:16 Times Seen37 Hash fa00efb98bffba7e788e6fb46f0c5351 cc360c3bb12c623104e20d8f4619463591a2950d 5132003e33db20ed3160c48988cfff70e3eb5bf458757284334d2246a797e551 Loading...

	#52 Eval - 4262d14f590f61720d71846df593076e	128 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:26 Last Seen2024-04-25 15:03:15 Times Seen37 Hash 4262d14f590f61720d71846df593076e f4131a12573262c51d36df7c1fdc1e938865d469 cf303e46a1668667427c4f9ba82c0e736f0af68ff1c270e7b6f54bc259c91781 Loading...

	#53 Eval - 0006db86eba7f4add2b2ce269ef0863e	110 B	2023-12-08	2024-04-25
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-25 15:03:16 Times Seen38 Hash 0006db86eba7f4add2b2ce269ef0863e e7330fb7db454c6d50d608bc88482dbc2e05f31e 55607776bd0466abc53b00a87255671ec0a0f2879e0ccc579b49bf48ea3c49b3 Loading...

	#54 Eval - b4779ab6f3c1b27a77408563ba33c828	112 B	2023-12-08	2024-04-25
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-25 15:03:16 Times Seen38 Hash b4779ab6f3c1b27a77408563ba33c828 d4ec2a893c9eb46c28bfc8e0a79dbb1fbe4e4f18 a43050020cdf1d3017f5380811edf08a4cf95e11a7485db02f0dcbd504eb46ff Loading...

	#55 Eval - b4d50e15438c42c08b872cb3d64ba167	120 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash b4d50e15438c42c08b872cb3d64ba167 6fdcdd0f5131d6a394e9e4b172a4d8fe6e0d34ff b372748a0cc45b462efa5770c882583d6ebd9606ff90a63ada6b81cad0a11992 Loading...

	#56 Eval - 0c2e49832a451d579c119eb10587bb17	83 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen682 Hash 0c2e49832a451d579c119eb10587bb17 f1348775dfbca9a3c5e3426eee9f645b4959ed4b f38a9bf1e4bf1cf28a3e8df223d1428b2f366738373b2c79dd8c2616ca16cd0d Loading...

	#57 Eval - 6d044fcbadc81d3fa76f7f382b3d3599	186 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen679 Hash 6d044fcbadc81d3fa76f7f382b3d3599 df31cdd1d1762955f70364f59aef194e990e902c 2859de37cd6aabcc7544531ea86d8f61ace0a9bdc4f28587b67b9db51ffb749d Loading...

	#58 Eval - b1acc969f4722c9c7560e0a066731541	274 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:15 Times Seen37 Hash b1acc969f4722c9c7560e0a066731541 5e0896f7047eea81310544d0a960c080d3dc0100 8f79be3d89b11f9e185bdbfb8bc455ada59732f42f3bbef6ec4d0dabfe79b5f7 Loading...

	#59 Eval - 9f68a47190310d75419ce67069df7251	109 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen682 Hash 9f68a47190310d75419ce67069df7251 f67bc07924a384eb65f6b7827cb1b26ed533d7b8 0b04342c04f1e80ea78186e4880e57de9c6991b8b02cc13f3d30358172950e73 Loading...

	#60 Eval - e9d49f0bc6387c582ab578108c429207	122 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen683 Hash e9d49f0bc6387c582ab578108c429207 b6441caf5b6b242e8f9954496f4dfeeb6110de99 4b0a317e719d8d177a43ca88739fb59ecb7722f406fde0f2de0ece2529345bd0 Loading...

	#61 Eval - 3dcd8ba28f75e31562059ccdacd46734	1.5 kB	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 19:42:25 Last Seen2024-04-16 19:42:25 Times Seen1 Hash 3dcd8ba28f75e31562059ccdacd46734 13c2b2c49693cadc1c2384464aee6089a98a7f99 f25c8665b9fb74efd729636ac5f2a29793862a9c783af701cbb621aaa225448e Loading...

	#62 Eval - f8d337ceea0815a776ca0aaf21d7e799	205 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash f8d337ceea0815a776ca0aaf21d7e799 852de84e0b649861beddd89fdaf3ccb056776689 2a7211a607dae2cf84d34b0d0607e0267490ff57fcceab11e9471ee62b87205b Loading...

	#63 Eval - 849172a291bf27d72bc3d312bea98870	311 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:03:32 Last Seen2024-04-29 18:45:25 Times Seen2871 Hash 849172a291bf27d72bc3d312bea98870 a428bce2774cfb221ebef3a44ebe48042fe32a47 f23377476f3e798ff6e03a399b3a0f275a09b79afdfd766e87aae1e42787aa73 Loading...

	#64 Eval - 4914700e9423a87926a751c8d60df912	67 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 13:59:47 Last Seen2024-04-29 08:17:41 Times Seen1598 Hash 4914700e9423a87926a751c8d60df912 297b87f87ceed8d61933cb8282d878cbe4184cc2 f7452720e52d68f3aa51a45cc03f8be73f33f4e088ee8bd8bc8e553785fd17dc Loading...

	#65 Eval - 6d453fc421d66c1733e025242e0ac00c	1.6 kB	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 13:59:47 Last Seen2024-04-29 08:17:42 Times Seen1596 Hash 6d453fc421d66c1733e025242e0ac00c af512f49ace0c27e749d40f1a17f16a84d8e3548 fe8ae27da1729f9d2489da3c0f0f9d9bc69c197b1ed294f383d9a21eec0029d2 Loading...

	#66 Eval - 713b1039a1069176313c3a7c8ef12ce7	80 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen685 Hash 713b1039a1069176313c3a7c8ef12ce7 6310d8f87d9c58dde30893ef55b3d6e7f5e2a5d6 21ba92889596560ee45c2a4f9fb80d2d7af30acd6329cdbba27271c2d0db9598 Loading...

	#67 Eval - 902baf6adda8c2ac64351f10569e9e81	80 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash 902baf6adda8c2ac64351f10569e9e81 b6d15607e9673e3eaec5c49d5cb733d25719824d 21aaadabd8ac463a2559975ede0eb3c975c09263211fa000c6963af52444ceaf Loading...

	#68 Eval - f210077b30fd1e2e2cebf23bd3449b67	188 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash f210077b30fd1e2e2cebf23bd3449b67 f58a45f57bb1e591d54a9f0248e92f2f71efcb50 0124d14822636e400b9aaee27d4daa73f6fee53eede97343926e4ec1edb00834 Loading...

	#69 Eval - d471dd5e8f87d95e3ac3b983025f6732	260 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:25 Last Seen2024-04-25 15:03:15 Times Seen37 Hash d471dd5e8f87d95e3ac3b983025f6732 9c614158659f273ed05ed7f82edcf88fd99582dd eabb5e585521a0384fb56134d4ab85e9ef6c6b54699c93ed4816dd8f73702b68 Loading...

	#70 Eval - bef5954a9abcbf4e079a9b0ea88f7a54	162 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash bef5954a9abcbf4e079a9b0ea88f7a54 6c1c0848a7163a055cb2bd6d578076a619118f52 b62d3fb3375560c55858196635cd4174082c616c1f48a64fc18fd043f79482e6 Loading...

	#71 Eval - 760f0b3a8e5141a32fc3d1a25df5b659	1.2 kB	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 19:42:25 Last Seen2024-04-16 19:42:25 Times Seen1 Hash 760f0b3a8e5141a32fc3d1a25df5b659 0378c7663c2c55cbe69adc8b1daa0dd93c6038b0 1be8070e0b6bd9b58b56a78283cddb2c7376adc87e517601a82ff22287d618df Loading...

	#72 Eval - 759306ca04984b40c53b0f9379a92dad	274 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash 759306ca04984b40c53b0f9379a92dad 58d2799e317a062f474fd1d2fb1686ae6fb7f0ab f7a742aa917be9973085fc559e75b9bc6914a21cf5b23cfb191eb84a7601df70 Loading...

	#73 Eval - 8cdc945e4b8ca2c4e2c03f510c13c4fc	384 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash 8cdc945e4b8ca2c4e2c03f510c13c4fc ca9732ef5b0a3f66eab98562ce7a745d0a2b9ece 13fc0b6954dc5187175e309c6678ce20a1d7e2eee3720e37c6cc9c5d024cb968 Loading...

	#74 Eval - c63f097df9c3dac8ca15f7855126b853	915 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 19:42:25 Last Seen2024-04-16 19:42:25 Times Seen1 Hash c63f097df9c3dac8ca15f7855126b853 d6539d0db40b816304995a5a1b7ea15a5e4ec728 42faf6c60fea3ef27ca8f1f5c5e7d021d4f1b368c56f34d3457337377e00ca7e Loading...

	#75 Eval - 9b620bfa089c254120ca2ef800355357	82 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash 9b620bfa089c254120ca2ef800355357 7d229abce1cc8af14cf6341782f3a4a97de84b3b fb6f3c6225318f07c668bee2112a646a819d62b2e591300491b015edb2fe17a1 Loading...

	#76 Eval - 95cbcbfd0c116c89cf1adb5e361fd0a4	161 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen680 Hash 95cbcbfd0c116c89cf1adb5e361fd0a4 cb313090d296f074c9e93b87c1fd5807a0588a03 ec17098c83e652c2dcfc87e99ac15afc86b76938afe55183570825cd6f8e21d3 Loading...

	#77 Eval - d20a344a3c4d51ad7e740786efe3a06c	81 B	2023-12-08	2024-04-25
Pretty Observations First Seen2023-12-08 18:22:41 Last Seen2024-04-25 15:03:16 Times Seen38 Hash d20a344a3c4d51ad7e740786efe3a06c af3ebec93667b663acfd6b3418484745acc1eb32 ac15eb5c71d4f74359b4b51b919e7bff748f24534f26e029f2cb4b7cb70106cb Loading...

	#78 Eval - 034839c05da1df5ea687a79d1083c6fd	4.4 kB	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 19:42:25 Last Seen2024-04-16 19:42:25 Times Seen1 Hash 034839c05da1df5ea687a79d1083c6fd 442dc45f4d4959e26c3c816e332dbb4f8c6add7a 48ea17229e621683e606949e6cb10a6820896cf9e40409b76b8fa55eba71eb26 Loading...

	#79 Eval - 34bc64d54a91c7e54aeb18c164a1d44f	157 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash 34bc64d54a91c7e54aeb18c164a1d44f 7e8728420d58350861b2d127fbe90163f4560724 5290c4d45828f3dc3022481311a97f65c2b6a97d8b22b9d29c3076f3aef49c24 Loading...

	#80 Eval - 3a2000b23489a636e1c70dc2a7681c6a	3.0 kB	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 13:59:47 Last Seen2024-04-29 08:17:42 Times Seen1596 Hash 3a2000b23489a636e1c70dc2a7681c6a 5f7f94798ee8f787835129dac60a8786a1020d1d c3930005b7df496399d8600e336727ccb0c70cc2974aefdc5e46c98aea4ae7f8 Loading...

	#81 Eval - 1e5a2bf03a75877604a47629eb4e0ed6	260 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen689 Hash 1e5a2bf03a75877604a47629eb4e0ed6 cc68db62bd97437b97c1fafe9e7f8bfafcbcd71f 09cd96d287de4f2ecfb376d46215cd7f63aad43d3eb4f15c68ef12ee2b3ee356 Loading...

	#82 Eval - 27f5bd5d7ba83935c541ecd562f29f27	99 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen680 Hash 27f5bd5d7ba83935c541ecd562f29f27 02d85fed4583614dfa65347d1c218a4d934a656c ed060541d65cfb59f41514cd9051bcbafa0474ed4f76c84a0bc6088d3716a972 Loading...

	#83 Eval - bc6c6595c8bf6b35d70ad91761f6ec23	1.4 kB	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen681 Hash bc6c6595c8bf6b35d70ad91761f6ec23 f103ba39629d62417a06d6541cd5011e2f0e57ef bbaccfe3e52a60c44be09995050ed4b9114eb828f2ad6709323f5d849de409d0 Loading...

	#84 Eval - 86c1ed5df7e066c7d50c489c03dd26f7	217 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:42 Times Seen680 Hash 86c1ed5df7e066c7d50c489c03dd26f7 330c01ffb6c88d165268fad858af8439cbd73372 4980b529d83df6a9923546b5f38e66301585d45bb66e1f425b4d27279796829e Loading...

	#85 Eval - 9ac0b4708663724dffb4c6f2b814a6df	87 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-29 22:59:50 Times Seen4643 Hash 9ac0b4708663724dffb4c6f2b814a6df 7faabe0595feb52fef2eb924693458608d16a66e aab310ed9d84ead154e032927d4a74c007f4b03655f5596b12339ea61881ba4e Loading...

	#86 Eval - 6a399317e5411ab1acce0f05187ba6dd	109 B	2023-06-27	2024-04-29
Pretty Observations First Seen2023-06-27 23:35:17 Last Seen2024-04-29 08:17:41 Times Seen685 Hash 6a399317e5411ab1acce0f05187ba6dd 86f55c85e3b54922132e63b61215fa2b22ffdfb8 f6c971b6c9512360f6e8bbf7ba7e3445e73cf1ec4a2cbf0417fe63b23d3e34ec Loading...

	#87 Eval - 900280bf27b91927c5a2b47b9a74cbf4	161 B	2024-03-14	2024-04-25
Pretty Observations First Seen2024-03-14 05:40:26 Last Seen2024-04-25 15:03:16 Times Seen37 Hash 900280bf27b91927c5a2b47b9a74cbf4 a9b48599de44e7a91e585cd2544737ad98b022f9 e7d868ac1c2c918a561614f615779490090e72c760b308e9efea4f3b2c96df40 Loading...

		Size	First Seen	Last Seen
	#1 Write - b37f897789b24904923ec9bc7b97f1a5	12 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 04:25:39 Last Seen2024-04-29 08:17:42 Times Seen4786 Hash b37f897789b24904923ec9bc7b97f1a5 e4ee0bc8135a45520599d824c1df1510591bb128 96825af94983d2503841feff772c6ee06ab77ee1537d12dc4e7af682380f273f Loading...

	#2 Write - 37b3657d3259bc81564772add580c945	8 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 01:17:21 Last Seen2024-04-29 08:17:42 Times Seen5546 Hash 37b3657d3259bc81564772add580c945 5271fa5b371475941842670fea62e63e1790c863 a0d7862cd0d69b1081bdd724858d43e8cf5d59ff046aa7866a93cbf361c00644 Loading...

	#3 Write - 33b81a8117997fd4f8abc19c951a2a76	8 B	2023-03-12	2024-04-29
Pretty Observations First Seen2023-03-12 06:04:37 Last Seen2024-04-29 08:17:42 Times Seen5229 Hash 33b81a8117997fd4f8abc19c951a2a76 740e193f50a83b26f84109ca7fa351c69896730e d61d0fc6f52b3294c8c42bf207cde6c521e22ba75a7b022301649c354bb00901 Loading...

	#4 Write - 63e0ec43030e1a8eb3c67167877dd787	70 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 00:22:13 Last Seen2024-04-29 08:17:42 Times Seen2310 Hash 63e0ec43030e1a8eb3c67167877dd787 96d036c9680304ee585fac1cc82260716598e310 57799097f61d13eb320fc20e6f068ccbe131bfc206ff8c4ec2039b2092efbc6b Loading...

	#5 Write - 260c1cca3d70a943608b9c17129804c6	86 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 00:22:13 Last Seen2024-04-29 08:17:42 Times Seen2329 Hash 260c1cca3d70a943608b9c17129804c6 9cf4fd21e36d1ec5e9a0bfd4f4050c1e5dabef8e de788e6ed96ea0d7f62f265ddf06b2d618ecf17cf462486f1953890901ba7ef4 Loading...

	#6 Write - 610a7b4d64016afe18c870607876783e	71 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 00:22:13 Last Seen2024-04-29 08:17:42 Times Seen2325 Hash 610a7b4d64016afe18c870607876783e 1445974a78bd623ca3d66792bd3c1899d8bf7cfb 76942be8416547a17cc50ae4f6106bdb092695eb803458fb4bf2681d05579ebe Loading...

	#7 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 23:36:59 Times Seen37192365 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	#8 Write - cf9da7033f426d448394a2b43135208c	11 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 04:25:39 Last Seen2024-04-29 08:17:42 Times Seen4786 Hash cf9da7033f426d448394a2b43135208c a6f0fb555d1566f4037534df8e2699340b94dc42 ca2c082d67c735d568dcd99c68245ff20c3437b2cc7a106ed8b46067a06136f2 Loading...

	#9 Write - ea343de042017b962f7f75a65e6ebab3	327 kB	2023-03-12	2024-04-29
Pretty Observations First Seen2023-03-12 22:13:37 Last Seen2024-04-29 08:17:42 Times Seen725 Hash ea343de042017b962f7f75a65e6ebab3 37b345cc9837518206a26b50863a29430f1d5702 1e9f6f8d4205e99d805e2c005572fccfef4dd3e6348e2d054b020bd6ba898b54 Loading...

	#10 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11	2024-04-29
Pretty Observations First Seen2023-03-11 11:15:57 Last Seen2024-04-29 22:52:17 Times Seen2073 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

	#11 Write - d6a2b55e830fcafabd82daf32c0f193f	59 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 00:22:13 Last Seen2024-04-29 08:17:42 Times Seen2329 Hash d6a2b55e830fcafabd82daf32c0f193f 072197cfdf9cea46b6907680dbad06f46cf32029 474b033377d80b73b41ce35f8007b3d927742c95112b32297164d627d2f31d88 Loading...

	#12 Write - eaa9a621b1550906fd40a57071347d15	7 B	2023-03-12	2024-04-29
Pretty Observations First Seen2023-03-12 06:04:37 Last Seen2024-04-29 08:17:42 Times Seen5230 Hash eaa9a621b1550906fd40a57071347d15 d443c4c7abdf45b9b3b3866780f76bde1d9ede2e 38fdb9178382ff9ed154f89ea0137e10e06693434f68ca0adcf4c462e94e462e Loading...

	#13 Write - 7a254151bda9bc20260f9fcaa3afbe9d	72 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 00:22:13 Last Seen2024-04-29 08:17:42 Times Seen2551 Hash 7a254151bda9bc20260f9fcaa3afbe9d 2aca284eb541d0c0f78c43e74e5e0fe16fba7ed9 6e2d73ad953db3801cd8cb31863d90c732eb7d063fcfbc1a6d3f9dd1f8fb13f7 Loading...

	#14 Write - a2d83c40258a65f84e5c878e7ffce8e1	8 B	2023-03-12	2024-04-29
Pretty Observations First Seen2023-03-12 06:04:37 Last Seen2024-04-29 08:17:42 Times Seen5230 Hash a2d83c40258a65f84e5c878e7ffce8e1 9dfe4af5bd0af5b34da5dab748b223d2451f1a12 811fffe35722aa73b5913b9882019d6e39218a87590cda8c6c2c2f9e41cad8ab Loading...

	#15 Write - 5e52aa1b6dd2fef7645614bf98cddb32	7 B	2023-03-12	2024-04-29
Pretty Observations First Seen2023-03-12 06:04:38 Last Seen2024-04-29 08:17:42 Times Seen5227 Hash 5e52aa1b6dd2fef7645614bf98cddb32 d0e42d6401153ebd0f1d363efacbeca8bc8e3d77 03d383afe1efafc36039448b2e3af26098cd07b7308fb2f40395f857d5bb0343 Loading...

	#16 Write - 308065b5078a49f986fc3c9f9b66e5d3	7 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:56:09 Last Seen2024-04-29 08:17:42 Times Seen6475 Hash 308065b5078a49f986fc3c9f9b66e5d3 be1628c3c7d88ddfb243f216545e780b98cc4386 fdfe0993e6e9e9917554bb95b1137af5870146fd38da5f13bea1b530ac05b296 Loading...

	#17 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-04-29 23:27:22 Times Seen14384 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

	#18 Write - 521e22b428f9cde592a3b3ef34f90638	24 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 00:22:13 Last Seen2024-04-29 08:17:42 Times Seen2638 Hash 521e22b428f9cde592a3b3ef34f90638 973c7e7b038693be9afc9a3c1ddd138a21db8a16 7f8bac6492884c9526155fbbc045e4a05a158de7bbf505e11ed9b3875df8751d Loading...

	#19 Write - bb0813eec23cda684f4d6513d3da04c5	90 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 11:16:44 Last Seen2024-04-29 08:17:42 Times Seen1154 Hash bb0813eec23cda684f4d6513d3da04c5 c144a9cb646df4d159b1ec23e667861824c10bfe 5acd26148cd6c721d660509d1853c602d5fbff7ee1caae4c81eb1ab0de714412 Loading...

	#20 Write - 166248a6129a1e4370d20adc2d4c23f3	6 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:56:09 Last Seen2024-04-29 08:17:42 Times Seen6266 Hash 166248a6129a1e4370d20adc2d4c23f3 0fe0bb445f51fad57f3fc4115d7c66cf18545107 b7d082ee12e91b756ea22e8513b8594eebcf5d39fab813da3cb55794dc888ad7 Loading...

	#21 Write - c4b79ef0f0700a9483b2ec0991dcd607	33 B	2023-03-26	2024-04-29
Pretty Observations First Seen2023-03-26 04:25:39 Last Seen2024-04-29 08:17:42 Times Seen4757 Hash c4b79ef0f0700a9483b2ec0991dcd607 9865ff58109d614b29d5b1567b132c0cc7976f71 79a2a654c5517f446b2797290574f869142a0854e2888ffec2e0e7d188a6d131 Loading...

HTTP Transactions (112)

URL IP Response Size

usps.potsvfoi.top/

188.114.97.1

200 OK

82 kB

URL User Request GET HTTP/2
usps.potsvfoi.top/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
82 kB (81634 bytes)
Hash
bef46d3bb712d23036be3aa8ebfba884
41c025e409ff2150939375dca4a336a997c9f778
1f40abcbcb4dedbc58e0bf815935a87e2d10ef2c2ec65cd347a64ae96402a4b9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:44 GMT
content-type: text/html
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vWluKc3SObEMXIDM7ProJJcQ8H%2BWyvwBEe4wMBLAe3nTM7iYmDg1G%2BfgfvvyMH0b0M5r8%2B9bDXAQ9yWqY1%2FYiBlQW2ssdJMWNgCfVsa2SiJyllY82wg3f%2FM7mZ%2Fck807uY7bQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7c47d3356a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

usps.potsvfoi.top/ResourceConfig/urlConfig.json

188.114.97.1

200 OK

7.7 kB

URL GET HTTP/3
usps.potsvfoi.top/ResourceConfig/urlConfig.json
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with CRLF line terminators
Size
7.7 kB (7740 bytes)
Hash
110943bc2b4f7a3f1dda597554713c5e
6afcd916d67e9495aec1c57706317349d8418c7f
d6dbba9cd982d1b3d9fe8b5075ac493d75ca98cdf12ca374caea81615e77de15

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ResourceConfig/urlConfig.json HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/json
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-105"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lmMpAd1ujZMEHtMXI3M%2BemoSyRxPVQRe3rbWlz7H8V%2B0UKWFQA05jAhwT%2FQtOzQBLtXo%2BjKkFmiL%2BBUs98zKI5%2FarUai%2FT2TXMDa6bG3O18FVK5GUUlCQnRC7mWUbQg34Y2%2Fwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7cac90d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/ResourceRedConfig.js

188.114.97.1

200 OK

4.8 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/ResourceRedConfig.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
Unicode text, UTF-8 text, with very long lines (6275), with CRLF line terminators
Size
4.8 kB (4849 bytes)
Hash
b4344e09201e9800f2c5010cd831c9e8
817a83527de5618eee7c773b20c23ff7a6f2e920
c320ffd0f517da69d45f68d801194392458ffaa4003e7ca170d33b5146239ad9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/ResourceRedConfig.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/javascript
last-modified: Mon, 06 Nov 2023 14:01:09 GMT
etag: W/"6548f1a5-2fae"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u29LhK%2B3etu%2F1QhBYuZSclBOrIxaOUXfmMV6XskhbTstIocYhYZPZ%2FhgGwRehDEjC7JxezUTAmzZpjMdqrN%2FzG7CyOtLHWM4OB8wye%2BNBdS14Gm7Irl86veYUaY4tWna4xReww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cae955712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/social-pinterest_6.png

188.114.97.1

200 OK

2.3 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/social-pinterest_6.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
2.3 kB (2325 bytes)
Hash
010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/social-pinterest_6.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 2325
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-915"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oZRzTqoooXJjFMZ%2Bew89uqVbl%2BgD%2FM0sbI1993VJ2M3ZTGZAuVlUbtwh0iIZ8ejuDM3dVPvxyEp3PvM39VitUc%2FWv0wiTirfNohC58S9RO7hkXD62UcscY7jVGGaNyb4au7Czg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8b6712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/social-youtube_3.png

188.114.97.1

200 OK

2.5 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/social-youtube_3.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced
Size
2.5 kB (2461 bytes)
Hash
e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/social-youtube_3.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 2461
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-99d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ohloluYnJXbDcGpRFEYdOjIeA9qv0tPa%2FAMJZWlDRzwLZJFjNW%2BxgzdKUqgO6l81%2BeSWjPdiXd0XIpyUVpQlXiLA6aJX2%2FD8VQ0dQX36hd11D%2BJOTgED0D46HK5tDq%2BNFJkpZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8bb712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/social-twitter_2.png

188.114.97.1

200 OK

1.8 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/social-twitter_2.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1842 bytes)
Hash
4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/social-twitter_2.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 1842
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-732"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kHBR0ggARE58NYS89MEU71cUR43SpgFWsxw4%2BGtqhwUFA6aWKQR255NTwifhAinjw%2BdckWWe1uNtnBGN2PHLZrg6S1TwS0N7Gj%2FUpXFgfqLxDPNwFsOADK3s9VvIKhPQK0mDrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8b1712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/social-facebook_1.png

188.114.97.1

200 OK

1.9 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/social-facebook_1.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
1.9 kB (1873 bytes)
Hash
5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/social-facebook_1.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 1873
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-751"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2QzHWW%2Fh5sHmfhXJP7goLRKMfd1R%2BFLACu%2BtA%2B%2By1662Zd5X7Ut04kIYx5kidjdpJrN%2Bvbi2hanrKQ68qUV2sftNB%2FNOaid6mXsbl6JlY82odJe8u4dGYLv02P1%2BBMz4b4yztg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8af712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/go-now.png

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/go-now.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced
Size
20 kB (19969 bytes)
Hash
6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/go-now.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 19969
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-4e01"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CWBlLCy%2Fhm5qPBhcLpxQYonLSuEkZNzwQcTEKPoXpfOo4IBWLwWM3alWcPXCmqJEugJyvmu%2FEo12OuT5tV%2BMLgAlR7si7JnAHWom7qaUUwqL0ORZcGyaFinwNP%2BCnLPyicUcRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9883c712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/stamps.svg

188.114.97.1

200 OK

527 B

URL GET HTTP/3
usps.potsvfoi.top/static/picture/stamps.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
527 B (527 bytes)
Hash
2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/stamps.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-44f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iDFW7o2VlT0k0VtK%2BMx9SoPbv%2BRPPxC1p07l6KOvF3RI9TXoNZ6iB9dOIlIseNFj0sRCPH2KG0fhupezgsRbUjNC%2Fy9t3JGV%2BExjm56Llnch%2Fwzz%2FwHz2M3zW5%2FUEO1U17vS3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98822712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/require.js

188.114.97.1

200 OK

8.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/require.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (17192)
Size
8.1 kB (8122 bytes)
Hash
16e572a4f80526df4bc3cc7ff056a9a8
f23b5c2fd52e855245e3d2586cd911051561e64c
75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/require.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-440f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qEnelsNYkLM4UZmwP47392zOvTRn7kAY%2Bfn6rUqgvNeHGtU7JxOr7IAT%2FkV9zsbTP0Awk9kWsbkaE4%2BFfpSiupSZ1zy1UL4YEGgVD3wqFRBTikD0d0yBxJIuoKZ1n5twMkkl7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98851712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/favicon.ico

188.114.97.1

200 OK

25 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
25 kB (24686 bytes)
Hash
3f0f72ed57a54b97cda500bcf0545efb
2f252619c18e729d98e16b96d37cd7cd567b38eb
67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/favicon.ico HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: image/x-icon
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-7d26"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yd3vtS57%2FINkI64HT0g%2FRF2kn5oWZThHvlUTKBhEwiVFzW3hUf6Te04ilYDlbvRNSwuvvqvxCqDWdbdz%2BBPOeWyMkJEiWJQZ8b4jP9ccZEiRGM%2FelHwkEkr6qz4kXpkOhJ%2Fqlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e08f60712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/validator.min.js

188.114.97.1

200 OK

2.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/validator.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (7391)
Size
2.6 kB (2579 bytes)
Hash
bcb17bca17171883c8bc1dec99880fae
c5c518b09743622f47bb6d75e8e9172258ce5d5e
731c763b42ba829a6e28ad983af6151f96709f91b3687f1993193a4f8fa501e7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/validator.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-1da0"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cPF8ptKv8Y8Jv20uIzKIBVVXH5yljS8wuRBjDUOAqQE9YA7wZMSPE0KJbUHeCx8a0nRtpsEVlH8%2BjqIzlGcdxC%2BaaICIksPS30dVJP9cRGBRroqL3VVpa43ZKKounkD8%2Bs11%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8f4712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/jquery-3.5.1.js

188.114.97.1

200 OK

32 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/jquery-3.5.1.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators
Size
32 kB (31912 bytes)
Hash
9ac39dc31635a363e377eda0f6fbe03f
29fa5ad995e9ec866ece1d3d0b698fc556580eee
9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery-3.5.1.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-15d84"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hU0WjUwHk4vb%2FfNhT5yZ5QQoUWAb90R6jeFjiYoBBZRI%2Byv9G5e%2Fy0GnhabqAbi7NHoMyO0sH8rCNeIWRLBFKBoEzlIi%2Barwc9%2FfUytc2AYzxUDd2l8BMz6zEp8chpl0obefFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9883f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/loyalty.svg

188.114.97.1

200 OK

6.3 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/loyalty.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
6.3 kB (6348 bytes)
Hash
9d4d854be98625230972560f86a80efd
a2528b13522e06172e1ca19bd5640ff22fddb5ec
85b8cb503de253afd195f3775b08df3bad432546ffa918cacff7c97ba8aa801f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/loyalty.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-97d"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RxiVb0wI9RRZjJ%2Fl%2BH00VWsqhhEPIVmsJCljOTmceMRUFfaSwd9ri3JNNeindlR%2FmvGfENM%2BBnn1eS1dEBsqizUtsO%2Baq%2FfBHLEreFRvu%2BR1juqDUTD9lm1B08D11QhLQT8GVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea2e712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/megamenu-additions.js

188.114.97.1

200 OK

959 B

URL GET HTTP/3
usps.potsvfoi.top/static/js/megamenu-additions.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
959 B (959 bytes)
Hash
847cc8bd91110ff714275c5a29fbd404
cff690cc070f9539cc1c325ed150b819018e8df7
a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/megamenu-additions.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-541"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2BVC2Xy%2Fmt5YHZ1QnPSRzWm4fFjcyWxVZ%2F8WoUJIQV6kleLUNHmBk7jEuphRMceOvU8IllJ%2BvYdjI5aVWVBBsvGr5pj8dK3NeaNNSJXd67kDP3WVQZfPY9FnxnepPDv6vV4W3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98856712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/icon-personalize-stamped-envelopes.svg

188.114.97.1

404 Not Found

183 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/icon-personalize-stamped-envelopes.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
183 kB (183251 bytes)
Hash
932da5a430ff6db1bc48425b567d56fa
e7e88023dbbc6346d354ffe9fb7db957888c2299
10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B7RDeABStZiw3XAwW3bP3G5AMswHfHHONvlvB4hsdcwKHiFX180bRYF2QRjT0mW%2BTfjF7ZQlFIcfbe3vOASrXSYou4N4tZyGEQ5uKEGrxd6AxZL16IANDDhQ4hbPolWGBI8u%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da1d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

api.potsvfoi.top/click/addClick?behaviour=&workUrl=https://usps.potsvfoi.top/

188.114.97.1

200 OK

29 B

URL GET HTTP/3
api.potsvfoi.top/click/addClick?behaviour=&workUrl=https://usps.potsvfoi.top/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
05969c9968e377b265a1d9af503d1f84
fc8b38bf495f1a171a9f8b9eb659714015915c0a
065943a80a44128d7a31d7409dc2a27575bdb4efc87bfb6e6b6b6c3b57699799

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /click/addClick?behaviour=&workUrl=https://usps.potsvfoi.top/ HTTP/1.1
Host: api.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sink: USPS2
sinks: 2
Origin: https://usps.potsvfoi.top
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: application/json
content-length: 29
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3iIW4ejBztoVbUp8qD3aiNFqGzq91MRFTnmjZQGBETPUGSmz%2FR3KgXfTFAW0tf8bRQyEcJ9wykZVUHqZqkxpLVv65FAQqcg%2FjTEjvzo2rmUjjGW%2FuI9rs7fJgWh7zjnzEPkH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7e80e1c712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/css/main.css

188.114.97.1

200 OK

46 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/main.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (49484)
Size
46 kB (46329 bytes)
Hash
49c08d404b1b7f928d0620bf933dc391
c03353ab9593939f553cf5fe5ce11c28fcb482d9
7488fa2a2c396b5f1fd2992492f92757cf8b8c465367a91166fc59067ed0e9fb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/main.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-14778"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MEyzj92iN6bY0GuawJ9g15uGi27Cxd5Kak3kfiPzpj41pe6BGCS%2BnRU%2BVg1Lyd7oTH3tuqUuV%2Fieb4fbnoiWlvYB0o848EyBI4n225GWKy%2B7SWkXpsrljLgEmWpYcwW5QGonyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ff8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2

188.114.97.1

200 OK

40 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40372, version 2.655
Size
40 kB (40372 bytes)
Hash
9bb1ce2aa7fed31792aa1750d0306831
6a538f9d945eaa6f7e8f97b4530183347d20bee5
5e284133b1b11165e7354b29cfabb5f214c473f0ca18198a49c052d8df3f172f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff2
content-length: 40372
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-9db4"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lftNHaN%2BugbQJA6Ab%2FL1dp2DNO8FgER6GUySIzWGSsJFD64Y8qiwbDcNVGOUWZ4siX3PBdVD9YgaxiF4W9e4hPDTDPlbKTZ%2FE06jO68DGCzlwY4XsTEkC09HCiKekqlQ36KELQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e66b2a712f-OSL
alt-svc: h3=":443"; ma=86400

www.usps.com/global-elements/header/script/search-fe.js

192.229.221.165

200 OK

930 B

URL GET HTTP/2
www.usps.com/global-elements/header/script/search-fe.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2264), with no line terminators
Size
930 B (930 bytes)
Hash
f7f70265f5cf47386622e433317412cb
e1b28284e51c848685c7ea6d19ff551284c58e8a
766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b

HTTP Headers

GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33622
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:49 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dce/26A2)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2

188.114.97.1

200 OK

39 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39112, version 2.655
Size
39 kB (39112 bytes)
Hash
e37c1d87055e7062c217e73098ab36d9
61f4c682ce807183e59a52ded2c9af89a419fabe
c98cd4bd3267c7d8484044bff1fbffaf0c2362edc04917457244809e1f24e404

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff2
content-length: 39112
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-98c8"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IcqVajJJGuxjkoKFlsJguAk0cG0rbx7fKMubioZb5IdlZPH27knWcMsRSN7vNfByos6iMgfzYOviF%2FM43YqM0%2BQI0l%2FjtIqiW%2FhBy2LwStyKYrd50i06GAUOY59rFYa24sB0Sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e66b3a712f-OSL
alt-svc: h3=":443"; ma=86400

www.usps.com/global-elements/lib/script/require-jquery.js

192.229.221.165

200 OK

74 B

URL GET HTTP/2
www.usps.com/global-elements/lib/script/require-jquery.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
74 B (74 bytes)
Hash
ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9

HTTP Headers

GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 33606
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:49 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
server: ECAcc (dce/268C)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/js/jquery.ui.js

188.114.97.1

200 OK

86 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/jquery.ui.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (18730)
Size
86 kB (85988 bytes)
Hash
4e7e5ae2451d2efbc3d960b63fa78dbb
1479f717ce0594dde5d020d885a988fcf98b106e
5b55ece99168ef9ba6d8557a4e759ad76f53da94eba1d8f331395ea321441bda

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.ui.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-45731"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vsu43d1P9eC9q2szo7xYmnE0klf5EfFJokAhUxqAqqtHtPm4wDzKp1CU4vCoBkyiypxNcP0UKv2j4pUw1FhCxO3akr3HYAZZsovaqou0CDYNOwiv1HzuZHfU05ceECeC5QLrTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8bf712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/bootstrap.min.js

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/bootstrap.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (36812)
Size
11 kB (10858 bytes)
Hash
5a419da48d7b5f7ed34fda267cac899b
5b1552a7baf7a483457cfc229129405f7b6b94ce
6cd4e4ed31432db3cdfdf272f1066de426166a2013598db7cb71b77a47d02148

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/bootstrap.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-9049"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PM0bgv%2BXsvFlk4%2F5yrQOtm0pxXaoTiOe%2Ba0e5JgdgmuxwjQhy8eoYoUiqwWr0jlOkUDyAPYIWMrclfAswrpK%2FB1gCYnVU%2BygkdWGwdDmElVXJzvkRRvb31O78C2fKGHkMudsUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8c3712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/favicon.ico

188.114.97.1

404 Not Found

60 kB

URL GET HTTP/3
usps.potsvfoi.top/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
60 kB (59804 bytes)
Hash
932da5a430ff6db1bc48425b567d56fa
e7e88023dbbc6346d354ffe9fb7db957888c2299
10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k3nmbPBSmqA8tV6KC7zwdaXSRExRkHHCSBkb9mBitibTRmm4qHf9uz8jvW5xELvIZoothqCIGbEq%2BFu3IPHupnCTcut0OrGxfh5cxLQQX1gsbxCaoSSkuE1TVeO5NgxputolFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cd8fce712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fast.fonts.net/t/trackingCode.js

104.16.41.28

47 kB

URL GET
fast.fonts.net/t/trackingCode.js
IP
104.16.41.28:0
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectfonts.net
Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57
ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT

File type
gzip compressed data, from Unix
Size
47 kB (47110 bytes)
Hash
8132d8a7b72a2068622a4872a1396de7
b912159cd62a4c274bc3a62b159e5b9023381b2f
90a477644e9a5483c64bf7c17f577c62468644410fc885e158bd229c043c4211

HTTP Headers

GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Cookie: __cf_bm=1pepvnKKsWPl6gGVTgSbBUC_fXPeTjAu9smjyvITVYU-1713289308-1.0.1.1-SmRm_.eQFiZtTTsKqSkjeP8XQ0ZHv9IwPGiZiwx9xD.X59lsFeBUtRpDcf_3XnGP69oe_roVkRb0i6mw2E2Azg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: zYhKraNibKo66IAlBtLIrsktkibAUzYdxDcd1UBHtMIR3rDILmrzgSBdW+oiKuILrXLJ3lo7Mn4=
x-amz-request-id: PG321HJQEBES9CSD
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 3570
expires: Tue, 16 Apr 2024 17:46:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e71f27be53-CPH
content-encoding: gzip
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/picture/calculate_price.svg

188.114.97.1

200 OK

109 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/calculate_price.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
109 kB (108862 bytes)
Hash
6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/calculate_price.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-8fe"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RemzCneKsG%2B9b6PmTR3%2Bf0SeSUKR%2BJCd%2F4JInJ58Fq0vK9OstNoY6LLyiFNo1dwFS3AFkQsmJ5iRqiEm0M0uKpVuEFIjEonnW3Q09q%2BHKUYb0ho3XlRU3WyR71SmM27quWPrhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98826712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c

142.250.74.40

200 OK

98 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
98 kB (98404 bytes)
Hash
b4c9231b0c1cb0da2964683e05971664
47932f7bea02b1d18a0d3df3fccc280da0bedbab
dde895b38282bc190ce3efddfd58ba868aca7f443ca7a6fa31365c5ebebd2640

HTTP Headers

GET /gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 17:41:50 GMT
expires: Tue, 16 Apr 2024 17:41:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98404
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

usps.potsvfoi.top/static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
Web Open Font Format, TrueType, length 51685, version 1.0
Size
52 kB (51685 bytes)
Hash
a93e96be336c174933e68ef61d56e0d3
48f7a75a367904ff4a9a79689a508e29edda462c
cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:50 GMT
content-type: font/woff
content-length: 51685
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-c9e5"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BbrtAfWk1YBkrV3R4oSonjKwpOQINvFlv8RRoEcf3hpT8D0QfUXCHQtPCkTyd68rmlkpglx00eaOeAVwyJgJTQcwc8NRvDgI1fDJVoMPKp6b078TnclDe1oS7gVrgsWJ6Rsyaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e75cd8712f-OSL
alt-svc: h3=":443"; ma=86400

www.usps.com/global-elements/footer/script/jquery-3.5.1.js

192.229.221.165

200 OK

31 kB

URL GET HTTP/2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30950 bytes)
Hash
9ac39dc31635a363e377eda0f6fbe03f
29fa5ad995e9ec866ece1d3d0b698fc556580eee
9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38

HTTP Headers

GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33668
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:50 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dce/2687)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2

www.usps.com/global-elements/lib/script/resize-manager.js

192.229.221.165

200 OK

468 B

URL GET HTTP/2
www.usps.com/global-elements/lib/script/resize-manager.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1040), with no line terminators
Size
468 B (468 bytes)
Hash
90d8fb00194d91e9dd20281817c285d6
e7e37421b14a39e0d3787988a52a45d27ec3761f
479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887

HTTP Headers

GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33639
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:50 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dce/26B9)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2

resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js

104.110.27.57

200 OK

528 B

URL GET HTTP/2
resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js
IP
104.110.27.57:443
ASN
#16625 AKAMAI-AS

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerDigiCert Inc
Subject*.digital-cloud-gov.medallia.com
Fingerprint84:B5:7D:49:49:24:06:EB:EA:17:83:AB:54:4F:3D:08:4E:12:19:EF
ValidityMon, 01 Jan 2024 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (587)
Size
528 B (528 bytes)
Hash
e978b5bd6c3bd1b4a81447c865d7a516
f03cd1cbd388ae347d5e232ad842c51ab1851402
5d8e2ce33f7ae924669cda91c71102dfaa62587a35d95f6433483d4a0ac5c859

HTTP Headers

GET /wdcgov/2/onsite/embed.js HTTP/1.1
Host: resources.digital-cloud-gov.medallia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 08kRo1PQRcgEsWcf9xlqXdZqDrp9mq0U5691p/0imLuiHKAOA/ZKjnifLzIPD/m1l6g3jeokdhc=
x-amz-request-id: 4KH1T3CYXQFT0S9R
last-modified: Mon, 08 Apr 2024 17:32:16 GMT
etag: "e978b5bd6c3bd1b4a81447c865d7a516"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 16 Apr 2024 17:41:50 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 16 Apr 2024 17:41:50 GMT
content-length: 528
access-control-max-age: 86400
access-control-allow-origin: *
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/picture/change_address.svg

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/change_address.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
13 kB (12636 bytes)
Hash
3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/change_address.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-74d"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MHrx%2Bp8B3Uk7rqpZmym9VrdfoUV%2BlqPKi4FJK%2BgKRcqQAm%2BksZ1d3ZB%2F0acK24NwA9gFwsEWTgjGdQnonkZ0uk9ixMJsQa1iuNvxA8JDhwEqXniQ0q%2BiGDn%2BQexvcwv9AX%2BGLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9882c712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/free_boxes.svg

188.114.97.1

200 OK

4.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/free_boxes.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
4.6 kB (4572 bytes)
Hash
dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/free_boxes.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-42a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HI59R3%2FxAicBjoUdFPG5q5Bxts8O2rMmEQmSaQfyS%2Bp%2BBhH4qhzjdKDaCDSLgkn8AGaKUTtQteHsngFNwvsYV%2FQslNT4dASyNKal3pPCr8XFHb0WgP4K6v34udCQZGNU1Qwcyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98835712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/calculate_price.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/calculate_price.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/calculate_price.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f59Xe9ofKhB5otf6fxQJxT9l4FCa9Tip75q250GJfne%2BJgFx%2B3SWDxM6o1h6NqWrpnaSg2GliMYSD9BxFb6E8g5mLGxnTaMvLNWNwbgm3e%2BIPEzGcnbiN8EXHaO9wynfP6Yfog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9e3712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/axios.js

188.114.97.1

200 OK

43 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/axios.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text
Size
43 kB (42736 bytes)
Hash
1eb8e8e2284670dc214a3e70c25992b8
94ece417aa560aa8de906e8f54c0985da90364cc
96b65382c74cd6255d4628044c5394f2ef3f0662d7d72b10f1bceb50b6ee5455

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/axios.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-a6f0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5gn2hhjVh3Rugh0Uy8kvFxvsODlkVnnEi86gtKPL5%2BdB9IYN5elCJlFaHTk2YsR4DvSdsr%2FO4RXLZw%2FTF%2FPsdOvgncJlaiIyzhdbDCQOOp4WKchXvH1QnEK4Yw3mKqZPS6COag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cac913712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/metrics-all.js

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/metrics-all.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text
Size
11 kB (10929 bytes)
Hash
34bbbc752c38a085d897eb4d08518e56
f47857ba660bef72853357ebf63c1645ed0e6420
58e2e2233ddbf49425919c629e63a97801067da6538b003f9ecaf0161f9bdd85

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/metrics-all.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-2ab1"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4uc35XHAsfiEHD2rn8mbGUigZzQYI2PvF7%2FwqTVm4aCVESSWX61HqJOMnPRjgB1XROOzH2SJ75ftdzCaswoDxu%2FuVG17uPMpybyC3f9u8unFEPC8oO6IQPeiS5%2BQLjDovW3oXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98fe8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/schedule_pickup.svg

188.114.97.1

200 OK

1.8 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/schedule_pickup.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1775 bytes)
Hash
c523f85f9a06acc80cd618f10c18063a
d385730a45e237ac82907718aa3c7d78f2dd74b2
7ea8f48894b1b43539d09fa9328a76470d7642525b20477bd5c43105f7baaf86

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/schedule_pickup.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-6ef"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zbg%2FtqGjh%2FWiZFUiFBpAUU52OvJbBCA8ltL2gtLrBu%2F0MJlEPbOyqPRC9DKviqyqIzk3BQeCgWJGWlXzYeOM878Qu2MRa6qOPVwnAT7ed4zqcDOanHlae2zLCIJXRmDbbW0FIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98824712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/change_address.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/change_address.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/change_address.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9npRna7g%2Ffu0aRF%2BJXPN%2BNTqb%2Fy7iObOQMaD0dcNJabXdtL83UYPh7VvKsGaNN7cQyVN3vUFn5PEtnQbUVab3zuZOGlWfrPBK9db7boKUlvk70ocLjTab1thzMtU8CAAZLBFkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da06712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2

188.114.97.1

200 OK

32 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31696, version 2.655
Size
32 kB (31696 bytes)
Hash
10290cd4148c956fa2287d2ab5c71631
0186c7c5f9e12701022362effcab5c7f08ef0a29
0419465d8b720ca4a1a4307e1aaf37c9c1fda715473e458a9e7d1a94854c68e3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff2
content-length: 31696
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-7bd0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i8ui8ZgBolw%2FmaoHMvo8v%2F87KZORFaWZ6o38HnJ%2FHPxj%2BJx6WXdOW3A103cPFMgRhNGITjLWM9EsgjP3VFX5Oc8vp5wDITxitxxZPSXLnS%2FeCHJVBllNtvusT6OF%2B%2FYFLIGndw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e66b20712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/modernizr.js

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/modernizr.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (11084)
Size
11 kB (11261 bytes)
Hash
66e83c4165a234cdda478a9c55cb90db
22e9211030a1f612ef4acd010185181bde967307
779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/modernizr.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-2bfd"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F7ImHnmQuGg%2FkCj%2FNvT9OWl%2B67Fzt3bedUJDPMxVpYU1e%2BK7bV5IKpqrjp%2FxRTqm4j25PBTKQ8C9HXu7va0D0Cyx0YUSquO3keW7C5vOHkEG8vvY%2Bx78GgD1abcz4A0rIUnamQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98842712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/config/urlConfig.json

188.114.97.1

404 Not Found

153 B

URL GET HTTP/3
usps.potsvfoi.top/config/urlConfig.json
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
2311107fc4a0cc05c1bf56cf25df6b90
f60e44c137b1c78e8b732aaf85e8d9efa0043140
518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /config/urlConfig.json HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cB27EowKXMGlJ7Ko2ZXynAVzDe206myOuc%2BNC8vRcAZkZlf5CSrc1OkG99bFOeHIFR2mpuLqQrbXBrQx0%2FrYFIujtS0Qy%2FHM1slFgNuEKkReviVOdW%2FMbSYQjwGZo5c%2BzYPepA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7d9880b712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/footer-logo.png

188.114.97.1

200 OK

5.4 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/footer-logo.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced
Size
5.4 kB (5390 bytes)
Hash
ccd62119eaa0e3697f60599487c51ad5
8e44d3123b4ce2005c76a2b8dcf7870058d2a82d
1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/footer-logo.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/png
content-length: 5390
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-150e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j7XLTg4RISJcFbKIs7a1j%2FRSYIqHOGCav1YB0AlU%2BDAJON7PJPqyaew9OhVQ%2BAEIo1y9P1S3QEr5b3YFUBPMzv2y5yseJI5F77FHRmk%2FqLM%2B%2BDUAd0mVls4nUVsJa7R3E7Qb3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e74cae712f-OSL
alt-svc: h3=":443"; ma=86400

www.usps.com/global-elements/lib/script/helpers.js

192.229.221.165

200 OK

695 B

URL GET HTTP/2
www.usps.com/global-elements/lib/script/helpers.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (727), with no line terminators
Size
695 B (695 bytes)
Hash
0d79b60b350ca6bf24fc9bfd618d90b7
ecb547882bd208b9b852c66c259f565dfa64f56f
a449f05b1170b1141cb02b4a49f7136c98ff61a302577982507d370f7465b079

HTTP Headers

GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33613
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:49 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dce/26C8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/js/jquery.keyboard-focus.js

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/jquery.keyboard-focus.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (1163), with no line terminators
Size
1.1 kB (1119 bytes)
Hash
f80770d6ef673b444ceb19361315bd76
7f6b37ae017663a9c94251d256d29bcb18a76ac9
f57685215201f98bc879fac89fbd9ec6669a8d88aec2e43d39ed761aa8c87bb2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.keyboard-focus.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-45f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J5muX44uBjF5UezK%2BKxGrScnbMsrEJX5ShgVOdkrD6eoTPSsel9S%2B8zmLsFlcZdgzjGmQhuUJc8Ohw7ysg8ZmH4bTTWEecLgQPsVUSEW0cYaor4l6gjXPcgIu8qUGYj1PPvEog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8c9712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/data.js

188.114.97.1

200 OK

2.3 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/data.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (2588), with no line terminators
Size
2.3 kB (2340 bytes)
Hash
6692d5ea7a27e811825a9159bfaa0210
cc2a3758f56e64554561107df0fbc9765f9ae76a
d1147d04efad54c59c37c66620f4aa33ac1f82665f011b8836ba96bb0ea479be

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/data.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-924"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aV4uAxP9XHYYOLzFsGhykAGq7UN2Tf914xhd%2FULmpXJcjes3FTONEbrTmCFkwIlPF6BugBhhaVsCFhCy3pXNYhPjGJufi2jjOoQmXD%2BDumB1NZt1B4lVw%2BYvXk7YiNXZwjf%2FFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8fd712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/megamenu-v3.js

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/megamenu-v3.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (13400), with no line terminators
Size
13 kB (13400 bytes)
Hash
b62e27b15837b70e7dab99846ac90ab3
9a49415c5e47149a5324705eaf78b4b68ce10edf
50764694ee2da70f2d3ce0e8340eca39b9e2760d293b47e4355c690a4769e781

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/megamenu-v3.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-3458"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tH5%2FHkkniCgAKnWiOISsCr9CPQ0UMJp25NqFsavvyUeY6DuGdhfR7ISIN9pAyzwkpEm1tNhbYMyRSHSfpfgIbHzrzfd1lB0WXudEzbQ4NofWEH%2FgbJGwdiLa5zLpLm6Ei8X%2Bvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9884a712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612

104.16.41.28

200 OK

0 B

URL GET HTTP/2
fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
IP
104.16.41.28:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectfonts.net
Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57
ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Cookie: __cf_bm=1pepvnKKsWPl6gGVTgSbBUC_fXPeTjAu9smjyvITVYU-1713289308-1.0.1.1-SmRm_.eQFiZtTTsKqSkjeP8XQ0ZHv9IwPGiZiwx9xD.X59lsFeBUtRpDcf_3XnGP69oe_roVkRb0i6mw2E2Azg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: 3MfqsHPaoDtzAO5M60cnj6YppXUBAUSyzeBMzUz6Lxda2ER3pN3Q8agq/kaNUhGTvfCNT/hayTo=
x-amz-request-id: RSCD8TA6YG17HWQG
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 368757
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e78822be53-CPH
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/css/footer-sb.css

188.114.97.1

200 OK

3.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/footer-sb.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (3067), with no line terminators
Size
3.1 kB (3055 bytes)
Hash
68d1409c402b1d6879903e30bcc24b8f
6200b8ff79f3ec08aaef65f882b3c5dcfbac3302
30584a58d960708fca0df28eae169606378cda2281bcadff205fba6efcfd5153

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/footer-sb.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-bef"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RQbycuUvHWgX2%2BlQZAjt%2BUv4mTAA3nSI8aeGIGfj68JgowXUW%2Bxypgf9C1Ag1dmJpLi5DI8msdZSeT5VJ2PBQgZ7rc%2BotYs%2BI8UzXk%2FZyQ5bECaMqRoIbyzetcLdQUTo867B4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8aa712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/search.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/search.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/search.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w3w5xGkqnQQAG3Cnnt2ixYBYPxohTTHYFL1RbdjQrXs%2B9o2ZHR7lXqfGOaL46CnhFYxMurkqlypYBQh%2FaH4MDyAlo4B7tkM0a4O7MiII%2FEIjM3RCw2l0NrO7GYDWwNRtFqVErg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9f6712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/holdmail.svg

188.114.97.1

200 OK

1.4 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/holdmail.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.4 kB (1448 bytes)
Hash
798a735992c99ecdc76454f1c093261a
89058df9342a184b64cdff41a11798ba07628829
cd9c59aa1822c5bf50b3250455ca1d6a7aceded7ad9d92c1e5072367384c1652

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/holdmail.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-5a8"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fu8alQWqagOPBC5LAkQedBkcqpOPL2NnnTsmBgnpM0snzu%2BCStEPse0HI4D4BJkfGMo%2F3PNioKx7nA%2BQeoK1AnCDIBfhJWhxd7fVcRQuecphpDqIwD%2F4OeuyQKnLaeOVi%2B45PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98829712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

api.potsvfoi.top/websocket/274c4bd7790f98846f33fa355b525127

188.114.96.1

101 Switching Protocols

0 B

URL GET HTTP/1.1
api.potsvfoi.top/websocket/274c4bd7790f98846f33fa355b525127
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /websocket/274c4bd7790f98846f33fa355b525127 HTTP/1.1
Host: api.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://usps.potsvfoi.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: X7IoQ5JyqrcN2RqVplkpCw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Tue, 16 Apr 2024 17:41:45 GMT
Connection: upgrade
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: *
Upgrade: websocket
Sec-WebSocket-Accept: Q5nJ8Z4hBn0FfeZK1nxRCwCUePg=
Sec-WebSocket-Extensions: permessage-deflate
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yu5uBNI5q%2FpuPOaWXmt6E%2Fgdb1a7M1KupCmnFFji81r6cBtbd2JDUmSly7h6e4nC49NfrR0R5%2FmRiTAJkUt1wgNj%2FgCSflm%2FxsKpfZS6XqA89RSeoNwP4dTci7nft2wKGtPz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8755f7cebdd60afe-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/logo_mobile.svg

188.114.97.1

200 OK

2.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/logo_mobile.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
2.1 kB (2060 bytes)
Hash
e2168d4dc7567ef926b7623237981a82
e316de76563718e76dca3496358cd6364e283f94
bea15c662f2670c57110879e989f6312ce35fe454a22a7b46b2b63e908337784

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/logo_mobile.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-80c"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yJQS%2FH2nKbKHGb%2FGAwLtZJjiNam9KfhP0gbv%2B1T1TuYCpNbl7xTaMLSH5m%2FCvmsBQyDtT%2FSnuVJTxc%2BI0gwpyThwYRpCsOCg%2BRo69VBuBpFNjEa3Ty0WT8k%2FeTSrGFO%2BTlC8Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98816712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/vue.js

188.114.97.1

200 OK

342 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/vue.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text
Size
342 kB (342147 bytes)
Hash
a9b6fe71cb7cfcd689e1ef345aefba51
5c39dfc37fc42400e4b4557db956f3f218a90ca7
159f0ac0c8f517aaa736003b6e13ebc959b5f7129db87e4e56bf2eec8d6d02d7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/vue.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-53883"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KJpG%2FfSJ6UoXoepJIJkBLFkuiCsBUoerJlpfReVqndN%2B5UE3Zk1n50e8XXMsxP8jGB43zEbiX5gYwbFoAq%2BsSMUz50CDsQuWJxQmQc%2BkX%2BSyOD6KnLK8DB4yDM1TwSWo99PLmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98806712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/search.svg

188.114.97.1

200 OK

1.5 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/search.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1465 bytes)
Hash
72686f982dfebbd9157958b01f2ce9e6
525eb380721cdc53b170b7ed00d9a87f6ab71167
92f4f127afbc23dba0b9a8edd2b7baf572c6f2abec350a4d992e372b000e674c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/search.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-5b9"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A0y16CL5U4K1LPQx0zFvRAwWbS92cRrW4TCgdpS%2FO8yjHGTUPt0mzoo4GJ%2Fm%2FU1Ob34Hel86AxytX1bi%2BslPwmJDmHP%2BkMk8Y%2FphNoXbpbbRQjgCrikF59uN9toyg6ZZifIT5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98818712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/idxs-icon.svg

188.114.97.1

200 OK

1.9 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/idxs-icon.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.9 kB (1876 bytes)
Hash
583ef52bd60e417556db5f135ccde412
95657d33aff9e4378ebe4d23588822e15decf037
5a5fd0aafb20d9cb95bf9e3e7110d8877c7bfe8a990e6b5d4ba59148da355bf2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/idxs-icon.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-754"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U3kDcCHbF2ou2Z2Q%2B8m7A%2B4diRm%2BQtsKIk8E%2Ba6RH%2Fm7MSKmO%2FIs15dKL8k8P4jRZLk9GXHTIjr8PR7zfcPbcamppinPK5ZK8yJ2wXrs1%2Bfm%2BLEUOn5Q6N5aXWdJyq0%2B7Qsgsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b89a712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/config/urlConfig.json

188.114.97.1

404 Not Found

153 B

URL GET HTTP/3
usps.potsvfoi.top/config/urlConfig.json
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
2311107fc4a0cc05c1bf56cf25df6b90
f60e44c137b1c78e8b732aaf85e8d9efa0043140
518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /config/urlConfig.json HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CsUTV5RKheVlPYkmd8r78vxLjlvyuEB49OhYSJWOGwxL9J%2FwGj2BU23JiVKif4v5wQ06wagHOcy151gYnnlW7RoDCfT6XOQ5Kh7CquWA%2BczfV6WdZzUP6MQ4UeXSpJSfrAPD6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7e0cfbb712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/stamps.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/stamps.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/stamps.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BWQu4rNXVUSlS1vjX6Wmn9eNrY9avwFut0xX%2BCEUbNWHC7SAMaTEiGz3d%2BuQwh%2B0hM9RK7ECzKzk3iE7QcTpMsFnAX1%2BSMcwdaRph6xmHK7xIny2Z5dXiPtVxNwaRcJZlNFGVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9d8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/find_zip.svg

188.114.97.1

200 OK

1.5 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/find_zip.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1471 bytes)
Hash
947f73db1be85b62c0a78fd947ea8f48
4b7cdd980fc356f9afc040ceaa1e4eff64eccdb6
65633c2f9e1f520fcb432d8f51929e8d0872964d876ff9d19e882af7eada0166

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/find_zip.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-5bf"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NfDFWm2jrmgOABMoGKKUnXWugjgu%2BXts7FWHGdHA%2F0NCmM3Ff9KF9MGVg0GoDEvVQy9OnZc919xdRmisWSrHH87FCkPMc%2BdJYP3VCxnhDl5WZnNq%2B6vfYsDz1kqJ1tjLeQIj%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98828712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/onelinkusps.js

188.114.97.1

200 OK

3.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/onelinkusps.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (4144), with no line terminators
Size
3.6 kB (3639 bytes)
Hash
2575b25dbdbd1b914b3c983cb24bcf90
31a451e8403be6b3f4fffb0bad224b1e02464c0f
07b3aca05a0a6d91a57cd83bafc5366a099a5719cab8a5a672a4ab732ae3c2f5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/onelinkusps.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-e37"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hHxzSLHnd8jc225gYQVrpyUPjDbw63z%2FupF2K%2BMQETYiTNGARnaqRrO8fpfTTNBLyt78jFXKFapLM2xx4NkYsvBzGtXesu6pcrr23BVrC%2BV4weNx7EQnWAyo4PkyjHY5NsOMIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9884d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/logo-sb.svg

188.114.97.1

200 OK

3.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/logo-sb.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
3.6 kB (3557 bytes)
Hash
bd8c973ec0b53678ec2e4dc5134fa653
e643657e09913383e36bfb797352a7223e202f15
3c24c49690aa84ba6ff95c560fb35c92ea3b7b7f6d7a4355f8628b19b3e1f97d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/logo-sb.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-de5"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NMU63NQSii9V7Ir5hhEJp%2BVY1%2FGq92YOrccijpv15BOupys4ix0d9kFV2UKVc65L%2FWwVb1i33o7cSH6s7YXb1Eh%2BSQiCJTCD%2FQe634GTnozxumJDuMgfMPX5rhYbODy95E4s9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9880f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/css/main-sb.css

188.114.97.1

200 OK

7.9 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/main-sb.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (8068), with no line terminators
Size
7.9 kB (7937 bytes)
Hash
240d2c6020f53f231be98f099dfc00cf
b855005ba3a6be537b754a324853a89f53f33150
ea58be7f60a5c2d65f14278ed684965d8c69be76db4562a9eaef78844d271ed6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/main-sb.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-1f01"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=37mX9wlRsrBz8MeqTPLRmMVABqpKyvMY3dXkt9e3WF14oPlZLeyqnKrfzhVcJvFjh5QH%2BgyU00wo7cjtW%2FHLKTdCCvtpYNkDQOBp2VOVj5rnBC2GCDszqW9vUrblr7VxARF0yQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8a7712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/hamburger.svg

188.114.97.1

200 OK

546 B

URL GET HTTP/3
usps.potsvfoi.top/static/picture/hamburger.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
546 B (546 bytes)
Hash
877d4644f0a505bf30be77169524e441
d85faf0831fb39673ad3733ad6ecf1d8bac778cd
2336a119dddc7aa4b6d54a4ecd251f5a30cf0572816db55b92e9f0b43ee63ecf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/hamburger.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-222"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JUaXTYj6BuezHGIySBH9MGSjZqMWUWFtTWVfYTZIv65sCWnCJnFvXtuEjuWOPpjjUxe%2F5rSu4g%2FnecFvLpwZaAk37%2FK%2F%2Bs4Y6RaBCYNALLfEpAeRkTC2UrflJwejq1%2B0o9qhCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98811712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/jquery.min.js

188.114.97.1

200 OK

85 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/jquery.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65453)
Size
85 kB (84832 bytes)
Hash
8234c1aca62c1e09cc00f7fb5908d309
831062e805247046abdbab52149b03604119fd11
e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-14b60"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q1cOwMeCoG6bS%2B%2BHH33fnvgzOfFQn1uweaf2vmdUtT4Qo5wF5SRwz6WNX04psnwyoiO2t9qj622dDuSeBTMzQf5EE%2BsuGlMX44ZuIidgt1qkrWjsHGa8%2BaWt6%2FOUFOTNRWB%2FUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e70c4f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/css/bootstrap.min.css

188.114.97.1

200 OK

121 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/bootstrap.min.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (65371)
Size
121 kB (121084 bytes)
Hash
473c24f70d7d3d76cc9d6c67a852b100
4b017192f7e665f0b5cc5ed1b737f709fc7a6be4
a78c4915ce28caf156345123fa0a8a4424355edd10ea1f733ac93c87ebc9637c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/bootstrap.min.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-1d8fc"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6MZ3F43wISEH38VCdbgJNI4xCE4AdQbOCv3htlNhhwL1Ien6ZeskkciaA2cbuuAFooTiRiFQhpJxckv2ZWEQkLHFmfIT%2FfOqNAE5ckCiqQICPWWb%2B%2BCfrgagZyr8lnrSVIwkgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ff2712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/css/megamenu-v4.css

188.114.97.1

200 OK

43 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/megamenu-v4.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (42778), with CRLF line terminators
Size
43 kB (42780 bytes)
Hash
ffff53c10c3ee489b1b0100d34eaf6be
2b388dc2ee7341a6b183e2652f2a07953468164c
12608b8833ec103ad06f97ca844c653f22dd8e03b50632d8d6bd3dbccdc5c422

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/megamenu-v4.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-a71c"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3MJx6zEsrm4S9PaLsLdSl6dWpYJeiQOZ835tyuEZDK1piTXNlZjRMAo4WdewKA71jpgmn19HqYXFPwZy%2FGfPyLnhYMoOVQ3AFnLuL5VFOf6Ol3%2FJBpLIALKpcpRRuBUAUErMTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98802712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/landing.js

188.114.97.1

200 OK

9.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/landing.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (10234), with no line terminators
Size
9.1 kB (9050 bytes)
Hash
0f4184554a83887bcb3f73f463933a90
e093bfdcdf35253d254999395bdaa7ed67a99068
d868a0399477d0d43d7d3caf437be0a1263e7d41b6cdc81b3ff05b6f68d7c5e4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/landing.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-235a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Ycho7C%2F80gdIrUQh1ATofbYmOogarAvzTfpg9Nx%2BHvLLSHE0qyL3zBHlg%2Fx5A6i32fVgPheVMSIRn0BXbDLwglsPw5aMB7sPmAUOxhopMLLF7CYczJn502EbDcJU%2Bvi00mGLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b904712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/mailman.svg

188.114.97.1

200 OK

1.8 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/mailman.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1827 bytes)
Hash
7e63b1510cfe1e7b2e2c00dbe7b48f49
7b13f782d0ea7d101e612cab914da1574180fa76
3bfb113a66658cfbfb3238b0210f43d4e564d7fce174ee72f3ab8d3b8b3cff41

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/mailman.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-723"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hrPhfV8jOQfb5fdIE7%2FoVNXPmeFb1YRe9VdvfDwd8vgqkwWxI7xJeDSABCmI%2Bnf1uM6HYrQoc%2FHo7EjdncOvIE1rggHrZVe%2FVaxc7ZNvM5V7hL69Ytmlvjetvkc6xRRHNr1HxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a9b3712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/po_box.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/po_box.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/po_box.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2sgNVCJ5xVDw9P7TsZrGbWTKC9w8rHyHbZspxryLDUjPZpE5zu7g5OmYeoAUxN6fuUadNDbAtU3iVFhZkcUAB%2FSn67LZ2%2FrF45uK6ZRdlrCqjWaaAAq0IKjhGYOIXJIHmfJkNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da0b712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff

188.114.97.1

200 OK

59 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
Web Open Font Format, TrueType, length 58690, version 1.0
Size
59 kB (58690 bytes)
Hash
a6e2d3921c9ea0fd81897d9ae7a33ba4
bc31969f2fb1926a15cd678b3e573c37a44e5421
f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff
content-length: 58690
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-e542"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HcltkjQ5EAEjmTI9f5iaYLGWb0fDafhCYyLgVFyt7TqGGTxjHxuGBeN4mk5P64MtwcthpL55Q6yTmnTX%2FljjQcMBSzB53P%2BO74aybAV3KLO2FUvThUwsX5WOm5SSKhO0R0Z3Uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e74cc8712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/tracking.svg

188.114.97.1

200 OK

1.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/tracking.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1561 bytes)
Hash
51e3139d76e5dc032ee585cca0dc7fa3
25f66b3ef42009851954f22e6d6f4904f506c0b8
dfd96cdbd5e0b4bd7f31c68d620874a37ec2c3f4e5d2716d7227057d2e66d264

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/tracking.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-619"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6awkZSoqBpU0d8KG%2Bt5qtGKp00mfy5E4l3oPZAot1i5MLFHya%2BrQc1VMU5ZPcwNKiBi%2F0NfGXpmZciWVuRGVLPoa4%2F7dZweOtTLGZ2VxeVz3x3JBzYcbWJ%2Fm0b92O9yswhGDRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9881a712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/header-init-search.js

188.114.97.1

200 OK

904 B

URL GET HTTP/3
usps.potsvfoi.top/static/js/header-init-search.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (964), with no line terminators
Size
904 B (904 bytes)
Hash
7970c1b8c1d52efdac61d94339578276
e76bef0dd2ca49af09d70c1eb65243b91f21f11d
7030f4d79b1c80b071817d31c710667ca861245e453c877d9afce871e7e66cea

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/header-init-search.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-388"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ti0zxeZ%2BN5S2HY10HMRfjr08hITKZ6FngPooSLlDVeruV4k8aQPmUTYYReJMCfumGPS%2BpZCJppve08Jb4Ha7LiK2bwJSEo8UGFpw7FCqLli6k%2FhDFwc3L7GXJCqjEzMvh1%2BUlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98853712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/cards-and-envelopes.svg

188.114.97.1

200 OK

2.2 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/cards-and-envelopes.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2217 bytes)
Hash
6088261f72b5ce3642b5cec0eb113793
d132c9f520c2a5b4a724c5ecb2e8fc4f4f45fa07
2a7560f8b14ba4d21e129f29758c750aca7787cff99c49c1c05c389d22a15457

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/cards-and-envelopes.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-8a9"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZauNPPUZcP7GKcbadBEguKlpcGH1KjFvd0beHcGpwDVH6t34YseQaif9gJAh3XWGXG9bTsqVNJFFOq2f1lZiabNxWnuySaseV3T5xd3mlpm0ohw3E5Kzf%2FLecedYZ8c7fC9Cqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da18712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/find_zip.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/find_zip.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/find_zip.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GHOO9nVihsw8n4%2B9cqT0Uvo6g8tqP9zxBCVjpf67t0s5xZgRSyJrvNOGl8q9%2FqAj7%2FMZq7HmX3irPQzegyRlBRAZJYl0hEy%2BHR851u4oCxzRZ%2F%2FlYn6HAWgqeSvljpTK1t9e7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9dc712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/mailman.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/mailman.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/mailman.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MlwAPn5CpPA6%2BHRdO9th%2BW0M8SBS9x7%2BcaPnHQMaa1WsmyyqILxp9RcdmrYP%2BUDP%2FJ6AooQk7H3uC%2FM%2F4aDWEIlCm%2FFuQI05RwZL2sKBMiQkMa3pkMY%2FRDfwoQI1mzzn%2FL7tMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5d9f9712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/location.svg

188.114.97.1

404 Not Found

153 B

URL GET HTTP/3
usps.potsvfoi.top/static/images/location.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
2311107fc4a0cc05c1bf56cf25df6b90
f60e44c137b1c78e8b732aaf85e8d9efa0043140
518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/location.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KmDhY6qrmDGRMWB2nCNP5Su9BdFO7%2Fv3L31WEAyXWLjYI%2BCLWwlaFYAVi8E%2FPmX2RtqzFclHfHSKUH99wnVKLsZ4EDJ0LqogCJLu4jEbINx1IxgQ8%2Ft1SCmYTmH3%2BNmZu4ddPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a9a8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/utility_languages.png

188.114.97.1

200 OK

1.5 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/utility_languages.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1456 bytes)
Hash
410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/utility_languages.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/png
content-length: 1456
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-5b0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FnxH6ghusPYAq0MfREL51D0ILL3uy8OsOYlGG0hJDgXoHP%2FoKYzrmvZ9v%2BdYLf0hKvNw1IKOm2xoZckEdRpnhqlJnso8yTnTfZiO9EP2xjEYWiEeiL%2Ba8wCsb1lD74jAfhQ1zQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a992712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/package-intercept.svg

188.114.97.1

404 Not Found

153 B

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/package-intercept.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
2311107fc4a0cc05c1bf56cf25df6b90
f60e44c137b1c78e8b732aaf85e8d9efa0043140
518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/package-intercept.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BnkkZnHNgNSpBLox6GPzcnfsgzBiE8mMGffJrfG3VWSROzrsJWPqr%2BOGpaWpkfermKk0WeKN%2FCjoJHIm0YSHURYJP0oQrBOHljqJg7bKNTxpglkWwqBHnWzk0qSRrNnmTfxYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da00712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/printcustomsforms.svg

188.114.97.1

200 OK

2.5 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/printcustomsforms.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
2.5 kB (2535 bytes)
Hash
c0b073578837924579ce25dc32d69c37
9b6cc85096bc4c634fe5625c7f399a273fd468d1
f6b5598453fece3bdf76222a246cc73e36d5df1896420a35a3c31c3b58cfa2ec

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/printcustomsforms.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-9e7"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oaiGJTZK4Pnkeu1w7fX9CXqfkBjYGr19johekQCCE2kbGnnecUSRUNjue3x5ETen22N%2BhLF7SJnwkb4PnHAClXn%2Fit9X9iD8EPZ3oBPNyYK4PYt7gHwT1lXhArw7euGjtXIEbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea31712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/loading-icon-transparent-background-12.jpg

188.114.97.1

200 OK

82 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/loading-icon-transparent-background-12.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
GIF image data, version 89a, 630 x 637
Size
82 kB (81572 bytes)
Hash
9e0373c2b4410c49439dfd822c5fd16e
427f86c03751b7e107fd282bbe32be18fc2e0898
05eb745176d79ec27d52d544582483fc4d0f6378c7ed2060be24dfc4e8990668

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/loading-icon-transparent-background-12.jpg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: image/jpeg
content-length: 81572
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-13ea4"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AWSJSKmpl4737j2%2BbsMfYBpUrLHiYs6Q4%2BsmbC2KgZTwD9Njp2SESQdFLa7idKj2bGgNQtgVn2EoWrglWio08FmhteOmIJYwFh8zMKTdMuHz6VjXXEtLrMIkifJeiitX%2FHTU6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cac90a712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/__imp_apg__/js/sed-usps-70fc8edc-qa.js

188.114.97.1

404 Not Found

153 B

URL GET HTTP/3
usps.potsvfoi.top/__imp_apg__/js/sed-usps-70fc8edc-qa.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
2311107fc4a0cc05c1bf56cf25df6b90
f60e44c137b1c78e8b732aaf85e8d9efa0043140
518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /__imp_apg__/js/sed-usps-70fc8edc-qa.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:46 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fK%2BPW7tPMdSYzF%2BKBJRHAFMUAveweidcTz9juvDvy6gqJERQ6nfRujO1%2B2CsMbFUKbDf7hbsZlcXNfKykIIyPDH5bev%2FKfceBUM9%2BhnqBGVps5ah2D5PY%2B%2F2B%2FmfpsOAvZX7Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d6084d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/css/footer.css

188.114.97.1

200 OK

2.9 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/footer.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (2924), with no line terminators
Size
2.9 kB (2912 bytes)
Hash
8f712712b0de29097c944acffb88091c
de7c34ad57e913b27cefb63c472ca27d02ae5df2
173e627d22f2d55b5d8e377edf12bc26f078028c91efd78365e5ae80f59da2d1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/footer.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-b60"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6gpWOBqpJTLkPjdg%2BXe1CWjz8cbLsjlrWa3QocQNr33qjLDZcljEbj14uDiMyrh1pdUeBejRfRvvX7B%2BqTw6cfpMg7W5Z9Qj2Eo%2FugzW7IjO3pVe4WbXQaxC9cfJAzH25VqFuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ff0712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

api.potsvfoi.top/click/queryIp

188.114.97.1

509 No Reason Phrase

17 kB

URL GET HTTP/3
api.potsvfoi.top/click/queryIp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
17 kB (16612 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /click/queryIp HTTP/1.1
Host: api.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://usps.potsvfoi.top
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 509 No Reason Phrase
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: text/html;charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: *
access-control-max-age: 18000L
access-control-allow-headers: x-requested-with, authorization, Content-Type, Authorization, credential, X-XSRF-TOKEN,token,username,client
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: *
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GGgF2f%2B%2F2nBesM93DTfIP3cY2RNPrDyYnoQmlDyEB4B7vDEpF0MLIZVTpk2IBPVClYz99aCQnp4DWC1MuTPuLDvxGw2iQYitHJnQUOvLVwYBIkPGo3Ie8qk%2F%2F%2BdjRBlsIYcv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7e209ea712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/tracking.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/tracking.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/tracking.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DIwfkeCcN9mGtWpZ4j%2BRMATb20K4yY8a0XQKM%2F3JnWiDHEEEa04Olr5KxW6B0d8%2FX1fIhGulvBlaiGM04XEptvgaI9sB9%2BoExS%2FmFBdIMzw4lZbzdmEmNrxS6acitdbTla7LIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9f4712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/images/chinese_characters.gif

188.114.97.1

200 OK

2.2 kB

URL GET HTTP/3
usps.potsvfoi.top/static/images/chinese_characters.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
GIF image data, version 89a, 44 x 102
Size
2.2 kB (2173 bytes)
Hash
6cfd66aca15e28ed9e77672fa22604b7
79f78e9167a5853d740486cdae627034cf2a7085
dc9835ec6574c8d748f4fe255d01035a7d289f4a8caae72a989a32d3973caecd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/chinese_characters.gif HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/gif
content-length: 2173
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-87d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p1cB%2Fj2FOqDbh0rjtGDtsBJONbD1P%2BqOM1zuFndF9S0ngM6YVJK6sSwOYLrwObOaWcomYV6%2F6ZMHKllRnE5%2Fo8TQaIXx8aP%2FtZ%2F9gvSQUV8V%2F1O1TczDrn9wr1Ihq3RhURIUmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a9a3712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/schedule-redelivery.svg

188.114.97.1

404 Not Found

153 B

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/schedule-redelivery.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
2311107fc4a0cc05c1bf56cf25df6b90
f60e44c137b1c78e8b732aaf85e8d9efa0043140
518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/schedule-redelivery.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pu1yd4flXf090gciCj7QWgCzGcSyJuwDS9%2FPI0m5Rz6RZk6%2FObALIdxMyQpohkTV%2FMykvI2akcoqFN%2FcKkHt9jtuKThFc2Bpj%2BQ%2BH8WS8EoJYggk3wYoDsNHjBB3lGfaiIKnCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da02712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtm.js?id=GTM-MVCC8H

142.250.74.40

200 OK

687 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MVCC8H
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (65316)
Size
687 kB (687320 bytes)
Hash
b429e898518205f450014ff16759d7b5
5efd50b1dc2b21e304b2c3df95d4d82b8c7ea9b8
159fb0fccae74c09b7c258581a680faba5c11beaf9b14e7315cbe08acf4a20b7

HTTP Headers

GET /gtm.js?id=GTM-MVCC8H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 16 Apr 2024 17:41:49 GMT
expires: Tue, 16 Apr 2024 17:41:49 GMT
cache-control: private, max-age=900
last-modified: Tue, 16 Apr 2024 16:16:16 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 152492
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/js/us.js

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/us.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with very long lines (1239), with no line terminators
Size
1.1 kB (1087 bytes)
Hash
521545b0f7e96f3b10f337850665452b
16240deeb0f6f95fc7b1a5e9b34a33c72def413f
0fbc52576d1edee5f3bed2b51c4c97a00fad81b7e5382ab9fa39a5ba39c03fcb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/us.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:44 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-43f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E9z0%2BpGCytxZnKRBXTCXnDQmxn5fnrGwd4AL5%2F7VTnfZRbg%2BMkVmuuVRWT5zn6WkGej1q4vkcP5QP2alc6cnlU%2BWDtGcECGh3M1egmkl2J%2BBuc8lBKxME%2BkqOvF3A0X9TFNbvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7c81c07712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/mailman.svg

188.114.97.1

200 OK

1.8 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/mailman.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1827 bytes)
Hash
7e63b1510cfe1e7b2e2c00dbe7b48f49
7b13f782d0ea7d101e612cab914da1574180fa76
3bfb113a66658cfbfb3238b0210f43d4e564d7fce174ee72f3ab8d3b8b3cff41

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/mailman.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-723"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wFRYdr1wW0ySumYkawNc9Z4mz7VVK6thsDXg7jPwdOnW1bmS1iJc%2Fl%2FSRc5nOrqMt0qhXEyF7sf8845vzxgauHE56RIlcUuE4%2FFyWfvHSgU965IKCG0gf6%2FXyRtpcHhxPSk0ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9881d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/po_box.svg

188.114.97.1

200 OK

1.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/po_box.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1639 bytes)
Hash
2cc2a9cd603e3badb3f767a4a4728f5c
40f414f0ff209023650ca7014ec2a57939229d1d
e60ecbbbdfaf3944b4ec3ffdb090954b0ede6607da1cdbf9fb7d2963fdee61b6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/po_box.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-667"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ln42jspJm41%2BjtLZg1hDIKrLPzvjL3mMUghpNHH0Ytr0NJ6Dyh2hnyYqnc4b3UPSA4M4SSbLr9%2Fekc5BnVXnBC%2BQ3WCkwFGbDo2wsk2BXgcuxotLkek5sn8mZYzqB49dQCCLdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9882f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/gifts.svg

188.114.97.1

200 OK

1.0 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/gifts.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.0 kB (1006 bytes)
Hash
d5e000eef8dcaa68cd64f751ed58bbe1
ea5f010cf037aa26788ee74d0b93431f769c99c5
bd96da0c1c77a63e3eb4d350d786cb53debebe069efd91879f62ae24362fc53a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/gifts.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-3ee"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yg7plO1grGfT9a%2F0j1wfeYET7Ttup8G1fwMzs%2BVgX7cvtPrO6P4yCsVcMhN%2F3dTEfHNriUI8rfw3aDNdghxuD3RgxLIqUvUp5IOiD4HaiLLN1TXb75%2B9msoyCoiHGEXzeihJ2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea23712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/optimize.js

188.114.97.1

200 OK

118 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/optimize.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (1720)
Size
118 kB (118492 bytes)
Hash
649c3e8e8378fdc785ae5fbd51f843b4
5eb51f662d4652db4932aa3bd444a3399923a9f4
8ff752ffa3c7cc5de38982c9e9e02bcd12f7ec83d5401438af6cc8b983b6d32a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/optimize.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-1cedc"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DxD2BqE38i3KztLXy0x0O32lugyxEJ1Lj3gdya73jNX7GgL%2Fs3qg4JeVMXe14jJEXydwHUT%2F1%2FPmRwgEwELs7DbbslOr543pAzjOJc0Mv%2FblapFnr%2BywfLV%2Blm6XMSRtqEkM3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98fed712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/featured_clicknship.svg

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/featured_clicknship.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1078 bytes)
Hash
4eaba35653e775df78f96942d040dcc3
f5fd90e8f32041520795f0c82a1652124a02f93c
08f3c04fe589387977fca30dc02a87bf42ce3c066fc28c1071be412aaf9cf852

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/featured_clicknship.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-436"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zggp66w0BzekSc4G4ePQ47nQEdkzyAkPW6IJo1GuwqMbIr6OZo%2BOeKw9DCwTjG9kkBwLuHISrv3%2BuCzJvTVTdtJ51GYlfOS6CBRcTAb5qrqKX9uU3XkvMyQo4fBuAPgHQZ4eKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98838712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/collectors.svg

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/collectors.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1121 bytes)
Hash
4554cbdb5e84baf194db7efa63951371
66719fafdb1a0a831b647addd645607f0449adef
7e7cf980806d79cc11f61e846573b77d601c9eca47cbf1b760a072c66288e8ef

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/collectors.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-461"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5O1GOqQXTXucmrywmEelN9B1dCP6tpmsR1r6DCm907jjRrf4%2BOcEZWdGj6P%2BI2OaSv7PMngDyPJZjl2P3xyiKv76e1cOyISlnkvRn56Ue59C%2BYIH%2F%2FxtioZYl3mKvlT6JGBMkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da1e712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/css/conditionalchatlink.css

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/conditionalchatlink.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52055 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/conditionalchatlink.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cb57"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5wTDFI4m5pH2YHoDbnKIdmOxnEWtjGucB61ObfbX6A0jPx6YA3Zx0lRpRg3Qt%2BFku6aG%2F4OGmdGRFQDHK9JrxHreGQcVY0YpKJQlUppC4TQCj%2BMt6XdQNmPfPNmA5pvVT0GEKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ffa712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/picture/location.svg

188.114.97.1

200 OK

2.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/picture/location.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
2.6 kB (2586 bytes)
Hash
2b06f7a382ea90d910403786f60f9d81
9f10825ebeb9516e451a6077b1d0049a352b48e3
a0e33a0b87e479cf85c9df62303b3952357a0645e6c7c36627a43fccaafad182

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/picture/location.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-a1a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qEc%2F9JJyJeJSoBCE5n8cj%2FZriP2WE8jaPvSCWJWQIgCFe8%2F031iuDhxh9nMNaJv8qDy%2BoDZriCff0Af9KYTS%2BKAHKWl%2BDsVOpNImK7dLgAKVWgvfcJyn%2Bo%2BCmKlkcB6VYLT5%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9881f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/ge-login.js

188.114.97.1

200 OK

9.3 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/ge-login.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (10568), with no line terminators
Size
9.3 kB (9312 bytes)
Hash
8e71360989154bfff52eed7385693c97
fef06dd99e04c205b34719c8e60d038327551574
92a38453573da7e18c1db67ab224561714b604b7c517034e3311b65aac11346e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/ge-login.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-2460"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2V7C7%2Bql81NMmogE8SqkWHXUYpXGRJXwm69sb9w5Xk0T9hD%2BWOjgv9JXXh4qinnz2wMXPNk2LZIrl6Af9FeLq80Axb5N6qhOfkYaD3iZd1i6ZcjVS9m5xgFcoT3jDwt8sE0YWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98850712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/shipping-supplies.svg

188.114.97.1

200 OK

2.6 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/shipping-supplies.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
2.6 kB (2552 bytes)
Hash
ab67d7e569a64be0744cb3d179612d50
65e256ede2d7bc4297f7497f4430182c04b627e9
b3b380736b4280b27e829b17a7fb722f88c100d77bea94909c9b110e2a4a691e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/shipping-supplies.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-9f8"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CPqRF9wsb0MHU0Zf1%2BXMqAbvZjRfBHlncyVAlbmsmLDMuSJ%2BXzeQTs7LSzAHhnyq7dp61q4yIAODbNL1xaEPjtgg6R4E5T1ASqASl24HoDd4EO%2FTjo0CxZ%2BrjmdlwFcC%2FKuZLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da0f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff

188.114.97.1

200 OK

47 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
Web Open Font Format, TrueType, length 46657, version 1.0
Size
47 kB (46657 bytes)
Hash
3beb1cf49dc702cd4de8618eeb344dd4
080e1b4dc8b43ddb06961a3490857cdb936a8c2a
ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff
content-length: 46657
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-b641"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5rMaWxuVeBPYFxWuR0EGQbJ1CE5X%2BUr09deQ3TTo0paLdr7VIR1yv%2F6SeLEkVR8%2F13hlXXxMBWuNj8W3ucypvR1Ljd2WV9ctxLhj7y0ZNo2r5GS0y0U3wsY15FsaIwSzD%2FRBlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e74cc1712f-OSL
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/css/tracking-cross-sell.css

188.114.97.1

200 OK

3.1 kB

URL GET HTTP/3
usps.potsvfoi.top/static/css/tracking-cross-sell.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (3072), with no line terminators
Size
3.1 kB (3052 bytes)
Hash
1748fdddbf9576848c632cc84284cb18
9375f807310e395cfb36a1a0d04df4ae78cfb397
504797b896dd4ddf1f976e9b4719bfcec92f5a897a44760c6dcf42fcc40812d3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/css/tracking-cross-sell.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-bec"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pz2HsTFqMP%2BDlTKIxu8uwBhM49ki4e1fHRFVuXRCI4ISojLsXhVX2ZlDAlVGNEDs1p7bbZQ5h%2Fh2Xf3ubI7n86LFUBodBe9NEykM%2BrgbnY5vFBSjVHLeBHC2%2FFkwanSQWUQ3UQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ffd712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/schedule_pickup.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/schedule_pickup.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/schedule_pickup.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Q%2FOqgAvJUFAGAx7PJ2D%2BE6i4lWIjyNuPrVSxSUA2iSndtODc5oIWeUm37DG2pZkJ6ZnUX8jl1ldJCSIRk2gOSvORmoJCXWv%2Feqq%2B69biScbLj9FZr3QNqkhKWBGMJVotjPYOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9e8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/holdmail.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/holdmail.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/holdmail.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KBOCm4n7x6WgBuIVQZNcDtr0HrLvVldSwppARkNgvHCyfhSvvco7kkdsBQxQlWdUUgMLzuM6jdIWqEl1JHvkL9VnQTUTiXWM2B9LnWOTeFHUOmo2tPujGtiRF6QeCmCEpoFUrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da05712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/nav-red-chevron.svg

188.114.97.1

404 Not Found

153 B

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/nav-red-chevron.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
HTML document, ASCII text, with no line terminators
Size
153 B (153 bytes)
Hash
2311107fc4a0cc05c1bf56cf25df6b90
f60e44c137b1c78e8b732aaf85e8d9efa0043140
518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/nav-red-chevron.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2nn%2BanDyWK1uPmrooiydIkE3%2BJ8WL5PLIRCmzQyhFp4t5wcFyZ8%2BK8zhlnpsE9KavKji7eWQ1LIQQlkWtfCqTC2pmZP8pBEAcNBIHfcuaqluiLaYK8%2FUHGKEqqsqe7IVBMd%2BfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e65b12712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/jquery.min.js

188.114.97.1

200 OK

85 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/jquery.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65453)
Size
85 kB (84832 bytes)
Hash
8234c1aca62c1e09cc00f7fb5908d309
831062e805247046abdbab52149b03604119fd11
e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-14b60"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UI4dQO%2BxyrOsxYm4dA7DEsnj1bvsW5bt9GxQf%2B8FkhaJ0IIYDVWJjybpsH2H3kXximAR2TrQRH4sgqoh4bV21l9uXQelqpXpjn295R21YVZbkLxdsZjIYkWLr8lc4GMkTqZo7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98fe5712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/location.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/location.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/location.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IcXGA29kSNuzoLMuD3y2pII%2FR7Lh6p2bA9lA%2BCoucLt%2FINfDNT7MJiThVpSTzz5odqRVaDP%2Be58QrPXgkelL1fpFI21I6cYiBRpSM8MXrvP5lgFhGI9%2BJeQw6NB9jn7dEPv%2F%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9ee712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/axios.js

188.114.97.1

200 OK

43 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/axios.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
JavaScript source, ASCII text
Size
43 kB (42736 bytes)
Hash
1eb8e8e2284670dc214a3e70c25992b8
94ece417aa560aa8de906e8f54c0985da90364cc
96b65382c74cd6255d4628044c5394f2ef3f0662d7d72b10f1bceb50b6ee5455

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/axios.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-a6f0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=02kAGrfANFxXapJaEA4IXB5NZvjPirSvqbRb1Ii5F8U3hjpck2lUNRPR7aYBlRfPQchjX4Q2uf%2FUHgxxNMyNk24ohGOWAyrzIa8yYtCs%2FfrPpyPldY7NPQmc6vaST4GyI8Jw1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98805712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/jquery-ui.js

188.114.97.1

200 OK

1.4 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/jquery-ui.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (1452), with no line terminators
Size
1.4 kB (1439 bytes)
Hash
41b0999494be450f941d147a1b4e8da4
f3c6bb5dca48bc65a85110db1dae651ac5c3d9b5
523325d1f02572c5e57dab27b722584e4796944e26f498c18db7cd1dfe425cad

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery-ui.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-59f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lBDSiytYTLpIr%2B2%2B%2BGP6qFRtn32jT3V%2FOKgEZpjh0hL7xUVq4y3ACaRMrzLlOkbEU65o6QCcbPb1K2F9k4MxPGSgAYXJGdis9hsWHfCCDrk4TKMic%2BMvNmxsp8eiW9RWaIvtQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9880d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/jquery-ui.js

188.114.97.1

200 OK

1.4 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/jquery-ui.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
ASCII text, with very long lines (1452), with no line terminators
Size
1.4 kB (1439 bytes)
Hash
41b0999494be450f941d147a1b4e8da4
f3c6bb5dca48bc65a85110db1dae651ac5c3d9b5
523325d1f02572c5e57dab27b722584e4796944e26f498c18db7cd1dfe425cad

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/jquery-ui.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-59f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oAdGr0XxRptc2egRKw85QBnEuSTHFFvwFXfrJziFgVCdL4J4PtMmVXbkhrLEnNnj3yB1SycPJSgXTnDKRfN82q61pWHDliDyScXlGRFzwRxuM88TQYje31sjqY3wj32qrVxDgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cae94e712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/js/ResourceConfig.js

188.114.97.1

200 OK

16 kB

URL GET HTTP/3
usps.potsvfoi.top/static/js/ResourceConfig.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
16 kB (15833 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	suspicious	Suspicious - Suspicious Javascript code
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/ResourceConfig.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 06 Nov 2023 14:01:09 GMT
etag: W/"6548f1a5-3dd9"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=71Ad%2BOX3csQSBcgdQSmG3hNePwBs4igw%2FD43xN8Popb5BIcZzQcyZfhXXn778Q7lLizjIdsMA6Hprvg6gev7Z3shbyQSMqXaeWCpxwB3tytyi3N7Or2%2FYJzH2q3z0QBzY0mAXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8a0712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0

104.16.41.28

200 OK

0 B

URL GET HTTP/2
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP
104.16.41.28:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectfonts.net
Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57
ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: ki65sQC1HlYAvAwzpIlg68BKJDoZiZ/BwbN/hDH5RUfm7vMSBZqfat1D29ePjiEs20YJy+049dY=
x-amz-request-id: 4MWDSXH8MPCQQMJM
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 427332
accept-ranges: bytes
set-cookie: __cf_bm=1pepvnKKsWPl6gGVTgSbBUC_fXPeTjAu9smjyvITVYU-1713289308-1.0.1.1-SmRm_.eQFiZtTTsKqSkjeP8XQ0ZHv9IwPGiZiwx9xD.X59lsFeBUtRpDcf_3XnGP69oe_roVkRb0i6mw2E2Azg; path=/; expires=Tue, 16-Apr-24 18:11:48 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7deff04be53-CPH
X-Firefox-Spdy: h2

usps.potsvfoi.top/static/fonts/featured_clicknship.svg

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/featured_clicknship.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type

Size
52 kB (52148 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/featured_clicknship.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FulNXqpwbVFJyL32kBbbSE2M5Z3z5aDOHpQKfxYUyJ3e2sEXHFBgXVgdwaKUPHomMTPS%2BS2EWhEL4fafIkta9AV9ufgfTmUjICx8DcHb2JEffM6PUlr%2BnzNEyKfQgbTZVd6%2Brg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5b9bc712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

usps.potsvfoi.top/static/fonts/business.svg

188.114.97.1

200 OK

1.2 kB

URL GET HTTP/3
usps.potsvfoi.top/static/fonts/business.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://usps.potsvfoi.top/
Certificate
IssuerGoogle Trust Services LLC
Subjectpotsvfoi.top
FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6
ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1234 bytes)
Hash
6908931641755e0439879badd7d60325
bb620d016ac952020b5a234e5cc1448c11d0fce7
db9835eb4a5a2c0a97c5dc0982f7be2281e727322699d8a1df3b2a4155ea0f37

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
OpenPhish	phishing	United States Postal Service
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/business.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-4d2"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p8NRNM9%2BgRWRpCxxrCrhI8JKncQblyMEzs0rf4PlaY5RXudPFleiT3GukA8WcXqfmxRX8ZfqiovWa4CgWoc5TFQBY67ZWyX7pN9LDYonMWhSH77NzkNHdJEPcPeb5HZfmzngmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea26712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (176)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations