Report - www.chase.prevdept.com/

Report Overview

Submitted URL
www.chase.prevdept.com/
IP
50.31.177.89
ASN
#23352 SERVERCENTRAL
Submitted
2024-04-17 03:41:26
Access
public
Website Title
Nombre de la empresa
Final URL
www.chase.prevdept.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.chase.prevdept.com	unknown	unknown	No data	No data	2.3 kB	5.9 kB	50.31.177.89
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-16	454 B	5.2 kB	104.17.25.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-16	981 B	62 kB	151.101.1.229

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	www.chase.prevdept.com/	Chase Personal Banking
2024-04-16	medium	www.chase.prevdept.com/	Chase Personal Banking
2024-04-16	medium	www.chase.prevdept.com/	Chase Personal Banking
2024-04-16	medium	www.chase.prevdept.com/	Chase Personal Banking
2024-04-16	medium	www.chase.prevdept.com/	Chase Personal Banking

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	www.chase.prevdept.com/validador.js	610 B	2024-04-17	2024-04-17
Pretty URL www.chase.prevdept.com/validador.js IP 50.31.177.89 ASN #23352 SERVERCENTRAL Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 05:41:32 Last Seen2024-04-17 05:41:33 Times Seen2 Hash 1ed4c1954a4b1afd3e0447f2ede5c6a4 7b73500b94ff9465f15fbcb921f2f13dc281f795 bf7471c4db4d6093eb20ad95fff08701c44115cfe0b49537aabafc5acca3d05a Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js	81 kB	2024-02-25	2024-04-22
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-25 11:27:02 Last Seen2024-04-22 02:01:52 Times Seen69 Hash 2e477967e482f32e65d4ea9b2fd8e106 ddc6e9ead6d16ae9237399ce41e8c1620cc59c36 0833b2e9c3a26c258476c46266e6877fc75218625162e0460be9a3a098a61c6c Loading...

HTTP Transactions (8)

URL IP Response Size

www.chase.prevdept.com/

50.31.177.89

200 OK

1.0 kB

URL User Request GET HTTP/2
www.chase.prevdept.com/
IP
50.31.177.89:443
ASN
#23352 SERVERCENTRAL

Certificate
IssuercPanel, Inc.
Subjectchase.prevdept.com
Fingerprint2A:E7:73:75:46:9A:69:7C:DA:57:2A:A3:52:90:58:2C:4B:60:8B:62
ValidityTue, 16 Apr 2024 00:00:00 GMT - Mon, 15 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
1.0 kB (1007 bytes)
Hash
5cdcc5e5b6b647c6ae2b99dd2209bdfd
e9ba73466a4755b03388352986fc32d387914841
63fc6149c3df110d59fe9a47599629998d61459b7a0d59ef9312a54399d9a4e2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Chase Personal Banking

HTTP Headers

GET / HTTP/1.1
Host: www.chase.prevdept.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 1007
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 03:40:59 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css

104.17.25.14

200 OK

4.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.chase.prevdept.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65348)
Size
4.2 kB (4216 bytes)
Hash
c0be8e53226ac34833fd9b5dbc01ebc5
b81ef1b22de26af8a7a4656f565fbc91a69d7518
5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f

HTTP Headers

GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.chase.prevdept.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 03:41:01 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12699433
expires: Mon, 07 Apr 2025 03:41:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tk1wW6AKB3J2uB%2BfLi382SAOdvneAb0mFXjvYZ779SerJr%2F%2BwLlYqE9gKoZAU%2BHWjdfpAA1YmTY%2FAl6nRbMY5dktkYw41YjoJvM3h2dBoc59W4Wrtkxqu2mLPtOg4hHFPo%2Bd17X7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875965a53c2f56b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css

151.101.1.229

200 OK

35 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://www.chase.prevdept.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (65342)
Size
35 kB (34908 bytes)
Hash
a549af2a81cd9900ee897d8bc9c4b5e9
c5ac1dee961cb59a045256ec203f69e317872f7c
3c8f27e6009ccfd710a905e6dcf12d0ee3c6f2ac7da05b0572d3e0d12e736fc8

HTTP Headers

GET /npm/bootstrap@5.3.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.chase.prevdept.com
DNT: 1
Connection: keep-alive
Referer: https://www.chase.prevdept.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.3.3
x-jsd-version-type: version
etag: W/"38d63-xawd7pYctZoEUlbsID9p4xeHL3w"
content-encoding: br
accept-ranges: bytes
date: Wed, 17 Apr 2024 03:41:01 GMT
age: 4882639
x-served-by: cache-fra-eddf8230118-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34908
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js

151.101.1.229

200 OK

25 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://www.chase.prevdept.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (65299)
Size
25 kB (25103 bytes)
Hash
2e477967e482f32e65d4ea9b2fd8e106
ddc6e9ead6d16ae9237399ce41e8c1620cc59c36
0833b2e9c3a26c258476c46266e6877fc75218625162e0460be9a3a098a61c6c

HTTP Headers

GET /npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.chase.prevdept.com
DNT: 1
Connection: keep-alive
Referer: https://www.chase.prevdept.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.3.3
x-jsd-version-type: version
etag: W/"13b51-3cbp6tbRaukjc5nOQejBYgzFnDY"
content-encoding: br
accept-ranges: bytes
date: Wed, 17 Apr 2024 03:41:01 GMT
age: 4882640
x-served-by: cache-fra-eddf8230062-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25103
X-Firefox-Spdy: h2

www.chase.prevdept.com/assets/main.css

50.31.177.89

200 OK

844 B

URL GET HTTP/2
www.chase.prevdept.com/assets/main.css
IP
50.31.177.89:443
ASN
#23352 SERVERCENTRAL

Requested by
https://www.chase.prevdept.com/
Certificate
IssuercPanel, Inc.
Subjectchase.prevdept.com
Fingerprint2A:E7:73:75:46:9A:69:7C:DA:57:2A:A3:52:90:58:2C:4B:60:8B:62
ValidityTue, 16 Apr 2024 00:00:00 GMT - Mon, 15 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
844 B (844 bytes)
Hash
4154930876eaeec5c37c350f7e0e567e
5360b5d34a830ae91b75288783ca95520893c284
3a38fe0f20e9ebe0fdb8483794e069eeada666d80b83c6e26d2cdb89775a62f6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Chase Personal Banking

HTTP Headers

GET /assets/main.css HTTP/1.1
Host: www.chase.prevdept.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.chase.prevdept.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 03:41:00 GMT
content-type: text/css
last-modified: Sat, 13 Apr 2024 01:44:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 844
date: Wed, 17 Apr 2024 03:41:00 GMT
X-Firefox-Spdy: h2

www.chase.prevdept.com/assets/brandlogo.svg

50.31.177.89

200 OK

764 B

URL GET HTTP/2
www.chase.prevdept.com/assets/brandlogo.svg
IP
50.31.177.89:443
ASN
#23352 SERVERCENTRAL

Requested by
https://www.chase.prevdept.com/
Certificate
IssuercPanel, Inc.
Subjectchase.prevdept.com
Fingerprint2A:E7:73:75:46:9A:69:7C:DA:57:2A:A3:52:90:58:2C:4B:60:8B:62
ValidityTue, 16 Apr 2024 00:00:00 GMT - Mon, 15 Jul 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
764 B (764 bytes)
Hash
81bfda7dd23d777afc03dc4fee03f613
621bb3dbf5d802e87cb911eadeacc16fb257989c
d24ec1643743a471a0d71e2a171cd271dc090461acfdd260501b03858a03ba12

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Chase Personal Banking

HTTP Headers

GET /assets/brandlogo.svg HTTP/1.1
Host: www.chase.prevdept.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.chase.prevdept.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 03:41:00 GMT
content-type: image/svg+xml
last-modified: Tue, 09 Apr 2024 23:55:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 764
date: Wed, 17 Apr 2024 03:41:00 GMT
X-Firefox-Spdy: h2

www.chase.prevdept.com/validador.js

50.31.177.89

200 OK

204 B

URL GET HTTP/2
www.chase.prevdept.com/validador.js
IP
50.31.177.89:443
ASN
#23352 SERVERCENTRAL

Requested by
https://www.chase.prevdept.com/
Certificate
IssuercPanel, Inc.
Subjectchase.prevdept.com
Fingerprint2A:E7:73:75:46:9A:69:7C:DA:57:2A:A3:52:90:58:2C:4B:60:8B:62
ValidityTue, 16 Apr 2024 00:00:00 GMT - Mon, 15 Jul 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
204 B (204 bytes)
Hash
1ed4c1954a4b1afd3e0447f2ede5c6a4
7b73500b94ff9465f15fbcb921f2f13dc281f795
bf7471c4db4d6093eb20ad95fff08701c44115cfe0b49537aabafc5acca3d05a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Chase Personal Banking

HTTP Headers

GET /validador.js HTTP/1.1
Host: www.chase.prevdept.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.chase.prevdept.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 03:41:00 GMT
content-type: application/javascript
last-modified: Sat, 13 Apr 2024 21:01:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 204
date: Wed, 17 Apr 2024 03:41:00 GMT
X-Firefox-Spdy: h2

www.chase.prevdept.com/assets/favicon.png

50.31.177.89

200 OK

1.5 kB

URL GET HTTP/2
www.chase.prevdept.com/assets/favicon.png
IP
50.31.177.89:443
ASN
#23352 SERVERCENTRAL

Requested by
https://www.chase.prevdept.com/
Certificate
IssuercPanel, Inc.
Subjectchase.prevdept.com
Fingerprint2A:E7:73:75:46:9A:69:7C:DA:57:2A:A3:52:90:58:2C:4B:60:8B:62
ValidityTue, 16 Apr 2024 00:00:00 GMT - Mon, 15 Jul 2024 23:59:59 GMT

File type
PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1494 bytes)
Hash
481e37cfe969da636ec95c5f8c8a74eb
d0b67a15d71a1a18eb11ec8d4bd80bf202c1d268
00a2468049e4d91a712f376dc987d2636d47fd638871af866b11a8cf00f3bb01

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Chase Personal Banking

HTTP Headers

GET /assets/favicon.png HTTP/1.1
Host: www.chase.prevdept.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.chase.prevdept.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 03:41:00 GMT
content-type: image/png
last-modified: Sat, 13 Apr 2024 06:50:06 GMT
accept-ranges: bytes
content-length: 1494
date: Wed, 17 Apr 2024 03:41:00 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (8)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN