cr-agrcl-fr.pages.dev/images/close.png
188.114.96.1200 OK 4.8 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/images/close.png
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type PNG image data, 104 x 106, 8-bit/color RGBA, non-interlaced
Hash 6258c9f33f3268df1f35331e140580c7
d8d08c06dbe4f5d52b4a81ee5951daced78568bc
0d33fc3b1a86ed09521f6a7c62f664659be72ff1ce2160dd166a364f4ad25ea3
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /images/close.png HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: image/png
content-length: 4840
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "6119576ff9ea113db0152986b6314f60"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eGw5tQZ8X6Hc7VgEn0Mn3TSMXn%2BtChG%2BPc7bXk%2B1r4q9epfvMonWnUJ47DGjtQr58NfVgdknAAGpYryAdJMvEtM2j%2BtSiUX6kN3B5RbjoiXH3gd7bIWs9tSQ8sZ8JDblt97tk4Eq1PE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee1b3556be-OSL
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/images/header-center.png
188.114.96.1200 OK 8.2 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/images/header-center.png
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type PNG image data, 116 x 92, 8-bit/color RGBA, non-interlaced
Hash 4722be09e8f65daf8175a0129290a6d1
a97af1e3ccd7a74af22f58e781154f05219120e6
caefc556c1e5b64d85f4e40d343ec725ac82e1693f7bbe4b598ee1bab65f1afd
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /images/header-center.png HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: image/png
content-length: 8162
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "c5f4c0a071e86d9bacbc8c7e1d4b79f1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UAwhwR5DNA656K3TRbUIOETz6BrTlC8HPYY5iIFHeCgR%2FaNSde0uhu1Y4%2BJKAzfigQda5lbH5l8IltwoLPirRxLd0QdgqGx066me2CAix5EEZO6xn24lNNQW0oy74g3o5lrOH8E%2Bt7c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee1b3356be-OSL
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/images/cover.jpeg
188.114.96.1200 OK 244 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/images/cover.jpeg
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=791, bps=218, PhotometricInterpretation=RGB, description=Diverse culture people using mobile smartphone outdoor - Happy friends having fun with technology trends - Youth, new generatio, manufacturer=SONY, model=ILCE-7M2, orientation=upper-left, width=1326], progressive, precision 8, 960x960, components 3
Size 244 kB (243919 bytes)
Hash b259c4797d838add41da1047021d2480
13de10f5a348efa8ff3d856f2e347eeff8a33579
c4966ab5e78e2270952b89576c4a0a386e8a7ea673c56f0f396d620abf4f81b8
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /images/cover.jpeg HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/style.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: image/jpeg
content-length: 243919
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b69d7dbd75d9673adbb9046a10081159"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=geUqt5%2FJSAjiVsS60%2BOfysDMbYLHL7bEtujTdpnu2h47P4mFaRKaCoqPitzOH8pUtoCZKkgOT4JkcX0lQVB2%2BqfJJQA7PPvLVDavQu84aLI4vzgaIxOH9WqDUArFdSwVoh9lXfJHrxI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee7baf56be-OSL
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/images/fav.png
188.114.96.1200 OK 12 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/images/fav.png
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Hash 1672798339d9857c71d319a441c13ece
ba562e9eb51185f653d43093a285c78d34bdc346
3358b6f2d9351fd1fec303210400a4514cc55a851ad97d202cfc0f840e3f54a7
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /images/fav.png HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: image/png
content-length: 11546
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "47538803264279af3cbf57bef40282ca"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QQo8356mS0uRD2ia7EnwN4DKikrVDOMl5R2aCb1cEzKDlHQLSTrYbP1CjT2nQmSOdPhi0lYCQe1dOvfZucT5tBUz1DFqUpfl6fOKIa14xFle%2B6A9ZuCGWLMJlma3ZjK5zxnD47VL4lw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ef0c1a56be-OSL
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/robots.txt
188.114.96.1200 OK 10 kB URL User Request GET HTTP/2 cr-agrcl-fr.pages.dev/robots.txt
IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type HTML document, Unicode text, UTF-8 text
Hash 4b662993c1bb4cb90ac328c5b2d19d7c
afb669b65218b5f24800206b1aa39884306f24c6
3cca1f777a23123e076f77271ffaf2a731e488ffc9aba12b9f6cff2af27d7ffa
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /robots.txt HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 06:09:36 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1ff3a57dfadf11b8c60d5856a77a0050"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MSz3E1jxJVLN5YWq3pRUlJFLDlffBiiX56zu5tS1TFko%2BQMwJY8UBpHuA4cO0rl%2BHOd6SmGzUK%2Byxvc3YhxxsDI8JJPiZK3iGvimJrcxxs0WcqGW8jdRFam1EubwPr1yMmMZbpPmlcQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ec4d5856c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cr-agrcl-fr.pages.dev/style.css
188.114.96.1200 OK 5.2 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/style.css
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type ASCII text, with very long lines (5522), with no line terminators
Hash 998724cce3a8ca3f368ef453873d6368
d4c7d1da28be862726eecc164975f0ff7e1bd002
620d6b6e6013f3a0883634c51eb8187603bd598647d7e54157ab1133fe3a5655
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /style.css HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"390892563244c3b05dec22d0fe016029"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5wLkj25UE4Bn1IK%2F%2BWwkWfyuQfxOXCJ08qgwZ5EjQUXULITGA%2BlZXMjmeiuxl0Cy%2BKUmILan%2B1Xqj5dj8F5HdgqlBebNM2P0bzjeOJpoTgOVK7QA%2F1LAQg107Tz1bMbrM6%2FMDIJmtYY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee1b3256be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/script.js
188.114.96.1200 OK 1.3 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/script.js
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type JavaScript source, ASCII text, with very long lines (1402), with no line terminators
Hash 41245269fefb1206ca68377ca172010a
9e0356156bba0525c0e0262b7c288495adca8ca8
c788c780ef28edb96e1f9ba348aabee4a984302a2cd89aa924f3f5ea7707b8c1
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /script.js HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"341e0b58a3ed5a3646da8fe97ce222d6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AEGrl1JBe8fy%2BQBaoIlfO%2FguD6tXzUMzLlqS7VJKOSivD3BoZoKHoQ%2FdMG8k1lY6U0eQHAovvhXRQC%2FlYWi3zssa4sFJE%2FOkB22tvsfuIPvuTglZPfoOM%2F2JpnOC%2BSMdVDPHT8V4p6A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee2b3a56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/fonts/Roboto-Bold.ttf
188.114.96.1200 OK 167 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/fonts/Roboto-Bold.ttf
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo
Size 167 kB (167336 bytes)
Hash b8e42971dec8d49207a8c8e2b919a6ac
62442a18a9fe9457c1afeabf683d263a691b7798
ec685a46105296fe46c8744da4a11cf8118ba6c11271941766f7a546df6aa7c7
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /fonts/Roboto-Bold.ttf HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/style.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: font/ttf
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f8945f378d58411db1bca70fedf03933"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tJog5xk5nhlv51dDAJ6MjTPOpyK%2BzADm74h2v2BhLm%2BZilgxb4m89wZvs4A7pM7OXBKAXY29s7pBYgLQSeEFOrWOTliIUabYS6A7Imah3WaTTh0GdXvi2ianIPpj%2FJPF2tnFSsHIYpo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee8bba56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/fonts/Roboto-Regular.ttf
188.114.96.1200 OK 168 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/fonts/Roboto-Regular.ttf
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob
Size 168 kB (168260 bytes)
Hash 8a36205bd9b83e03af0591a004bc97f4
56c5c0d38bde4c1f1549dda43db37b09c608aad3
4e147ab64b9fdf6d89d01f6b8c3ca0b3cddc59d608a8e2218f9a2504b5c98e14
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /fonts/Roboto-Regular.ttf HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/style.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: font/ttf
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c409fafc6687f55d6bfa3a192e4db4a1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BsS6Dt0BqMmSAEQCrenPonA7edSyG2%2B3vTDGuQCfvHrNU%2FmmYzX515s7HAKaGaUuqHTJHXQRhisXba5GzKERsbkhv2rviCynYp0PiwzL%2BuDftZwGwW%2FvP3PAPZ3XGUWv%2FLx%2Flc3H%2B6w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee8bb456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cr-agrcl-fr.pages.dev/fonts/Roboto-Light.ttf
188.114.96.1200 OK 167 kB URL GET HTTP/3 cr-agrcl-fr.pages.dev/fonts/Roboto-Light.ttf
IP 188.114.96.1:443
Requested by https://cr-agrcl-fr.pages.dev/robots.txt
Certificate IssuerGoogle Trust Services LLC
Subjectcr-agrcl-fr.pages.dev
Fingerprint7F:FC:B6:F0:B0:17:DE:C0:56:79:97:51:D5:22:28:CD:48:7B:16:4B
ValiditySat, 13 Apr 2024 20:16:12 GMT - Fri, 12 Jul 2024 20:16:11 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto LightRegularVersion 2.137; 2017Roboto-Ligh
Size 167 kB (167000 bytes)
Hash 881e150ab929e26d1f812c4342c15a7c
18788c5d630fa695f9283f6393bfa541b2031508
c576c50642271bcdbfffed04f92dc8d6a981daf300914d0a20c8a5a5a57015c7
Analyzer Verdict Alert urlquery phishing Phishing - Credit Agricole
OpenPhish phishing Credit Agricole S.A.
PhishTank phishing Other
Quad9 DNS malicious Sinkholed
GET /fonts/Roboto-Light.ttf HTTP/1.1
Host: cr-agrcl-fr.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cr-agrcl-fr.pages.dev/style.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 06:09:37 GMT
content-type: font/ttf
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d3d3e95d378ba0e7b61f6a3dea3d2300"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2B%2FCj%2FXeJdL66Fdj0Qe4muIZz9wR4q4lDPWpeMuSV3C1pHXbfNpOF%2FtaSfgTmJOAodZwEwbIURbkPtqE6g%2FeF1m5xAQfZDOHyVuJkCCDM%2BsNoZ29j3ukck3sqxPokY74%2Fqs105KMx2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875201ee8bbc56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400