| att-105168-105353.square.site/ | 74.115.51.4 | 302 Found | 394 B |
URL User Request GET HTTP/1.1att-105168-105353.square.site/ IP74.115.51.4:80
File typeHTML document, ASCII text Hash19e194bf51abb600e1ab92f6907201e9 2b18d19bc884f6fd4f184cc601cdc947892779d7 477d2b306abe8b3d780896e99a1e93f58b151c20d76b1df462e3c5aaa332657e
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. |
GET / HTTP/1.1
Host: att-105168-105353.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: publishedsite-xsrf=eyJpdiI6Ik54N3pseGhiaitQekJLZm5EZFg3MVE9PSIsInZhbHVlIjoiUGN6dy9TS2FMdVVsMVA0R015S3RhcVRoMzNBb2VtNCsrbGUvaVpMY3p6Z2NLU1VVL0QrQVhndU5Odk9CZ2RNWXJTMEx3Y1owRytXajdKK1JMV0JvQktUVm9pYU5COUNVRG1HWXZ5ZG1vdHlWV1pFaUY0MmZMWlZOY3VxSFd1dUkiLCJtYWMiOiI1OTUyY2M3MDExMjQzMDQ3YmZkYThmMzllYmU0ZGI5MGFmMTk2NzQ1M2VmYzEzY2VhYTEzZjVmNWYxZjkxMWM3IiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IlROZWpHMXN4NTMzZWZmOHVyOS9vc3c9PSIsInZhbHVlIjoiaVdzVVNuVDFuVEJzRHVrQW1rejhtQ3oyNXV0dXBKbTBudXUwUkxoV29YOFlsVExKWFJzR1pscE1yUmxGcGVKTHJZZTA5Ni9JZzFpMWh5RTFQZ2hhbmZJcWdSYXFvTDFoM2I2YmlqanY4cG02UzI1S09RWE9XaDU0dENHOERFTjQiLCJtYWMiOiI4ODI0YWZmNDFlZGFlZWE3YTY1ZmUxMDAzMmNjOWJlMTBjYzljOTAxZDQxNTRiNDIxNTI3ZDk1MTZhNWJhM2VlIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6InRsK1VWWFhuVDd0QXU1WG41WTJGbGc9PSIsInZhbHVlIjoic2hxMjEvREt2UndzTmFXajNJYjhpYVZKandlRGRlYVE2ZmxwRExJeVdXZ1JYa2I2N3RCb0tjY1dBdXlSaVNXVUVHZEhUQ2M1N3JkSjd3enZnUnFQalRZWlJwWmdJMVhtanQxKzZxOEtZSVBlMjk2alUyOUFZZVA1cjVrSW84cjkiLCJtYWMiOiIyYzg2NTRjNjA1NGJlNDEwYWNmZDk3ZjI3MGY3YWZjM2Q5ZWQ3NDlhZTJhMWNmYmRhOTVmNDlhOWQ3YzRlOWZkIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 24 Apr 2024 06:04:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://att-105168-105353.square.site
CF-Ray: 8793e510384456b5-OSL
CF-Cache-Status: DYNAMIC
Cache-Control: no-cache, private
X-Host: grn124.sf2p.intern.weebly.net
X-Request-ID: 740748e70b8d756bf8adb329f756bef8
X-Revision: f255cb7aee26d0a4d6045a89e6cf4977980a997a
Set-Cookie: publishedsite-xsrf=eyJpdiI6IkV1eldxOUErNTVZZjk0M0JaY08ydVE9PSIsInZhbHVlIjoiT2tZRDlUUkwyb1RGbm1vMmJZS1BjeTRCSXRzTUUxQ1RCUkIxU0g3V1hEcmQ3eDFhSDR3ak1FWFRKOXV3VlNyU2lza3FVN1p3OVJaT1duazV1SVFyUEJlaEorRHlDTjdwMnM3QXliUWUzWGRHNVIxd2QyeUhLZlI3ZkE4ZHBLLzYiLCJtYWMiOiIyZjk5OTlhYTA0OWQ0ZGFjZTUzMmU1ODQyZWY4NWRhMjc3MjBlMzZlOTA4OWZlMGZlMTE4OWQ3MDA0MTQ5NDE0IiwidGFnIjoiIn0%3D; expires=Wed, 08-May-2024 06:04:14 GMT; Max-Age=1209600; path=/; samesite=lax
XSRF-TOKEN=eyJpdiI6IllVOGRVd2xDSXJob2p3dFUyNmNVTkE9PSIsInZhbHVlIjoiM1FNMmp6NkdpN2FkTTUvWGsvQi9mcS82ZjdORHh1Smd4anE1NXBtMEt0cVlPdFE4SE5hdUZnaVM0VmJScjdvWU53b2dvdDZ2cFltc2pJLzh5RllwYVR3T3lmam1WaFlubk05QW40RWpaQ3hQMHFlenIvUGpzeWV2Yi84dy8wdHUiLCJtYWMiOiJhN2Q1OGU4NWQ0NWU1NGQ1Mjg3MThlMzIyYmY4OWMwMjM2ZGIzYzU1NzI3YjczZjYwNmU3YTg2YzBlZWVjYzdhIiwidGFnIjoiIn0%3D; expires=Wed, 08-May-2024 06:04:14 GMT; Max-Age=1209600; path=/; samesite=lax
PublishedSiteSession=eyJpdiI6Ik81SUtXVHBWaC9YekRrbnVyM2R2RUE9PSIsInZhbHVlIjoiek1GZm9KajRZZjJaZ3d2SUZMc2NnbUdNNVNxeXRGWWI3TENSZFdiOHBjSElSKzdaV1NTcDN4QWlRZ05iOGZ3a20rYTFFcjk4Q3hiNkxTaEJ3VEZPZjNsZTNEWGVuMzhlbUlLdUdEV3RiR3pRVUtBT0dNN0REcEtuUlhodCtvVksiLCJtYWMiOiJkNmE2MTBkMTVjNTFlOTY2YThlMzNmNGMyMGM2OGI1YzA0ZjMyNjA3MTFkZTcxNTBiM2NmMzBlOWM3YTdmN2ZjIiwidGFnIjoiIn0%3D; expires=Wed, 08-May-2024 06:04:14 GMT; Max-Age=1209600; path=/; httponly; samesite=lax
__cf_bm=Iwc47EppforrHC9hz64fOJglXfXacHsz5YGVAzDVkNs-1713938655-1.0.1.1-Jv5nluimZ4y3Om6bc.j26sha.H0uKeP_sdKIaJislUx_6FiiMkDgoXJqdaWOS4eTPYByQgu56SBSdJcTXBdfOA; path=/; expires=Wed, 24-Apr-24 06:34:15 GMT; domain=.square.site; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
|
| att-105168-105353.square.site/favicon.ico | 74.115.51.4 | 200 OK | 1 B |
URL GET HTTP/2att-105168-105353.square.site/favicon.ico IP74.115.51.4:443
Requested byhttps://att-105168-105353.square.site/ CertificateIssuerLet's Encrypt Subjectsquare.site Fingerprint52:97:AC:6B:DF:39:22:E7:27:37:98:58:0F:73:67:A2:E1:35:05:34 ValidityMon, 01 Apr 2024 00:25:07 GMT - Sun, 30 Jun 2024 00:25:06 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. |
GET /favicon.ico HTTP/1.1
Host: att-105168-105353.square.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://att-105168-105353.square.site/
Cookie: publishedsite-xsrf=eyJpdiI6IjBmNzkvYzRiMVRKV2dqdWpjVFhIMEE9PSIsInZhbHVlIjoiSmNEc0lkem9pT3FYd3Q0NnFwc3ZJb1lCNExZYnJXZkNweFFTV0J3QjhOWWttaFYrbURORGhBS01pd212ZDlGKzZidUVBbHJXcVhvc0VUQjVFWURQemlLTE5hcVBoc3dTRGNGTkg3R0pkRWVXZ3ZpdDVwUEdRQUtIQ09kSFVQYlkiLCJtYWMiOiI5M2M2Y2Y0ZTUzOWRmYTYyMDM2MGFlMTVmMzVkNTM3MDFkOTUzNmMyNGE2MzE5MWEyYWMxMjQyNGYzYWRhOGRkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6ImhtTVFiQlk0d1QwVnZFWDZYWE9SVGc9PSIsInZhbHVlIjoiaWpjTUVwZmtvYmdVNlFuSDI1VUhhdWFmbVFUbm0xWXNWRHpTejQ3dUdjMDNBY3p0cEh3TXlDUEVJM2NNckhZUW1qZ1lURTdOVWllT1h5RUJ1SCtRUHMzRE1KT0NWUXdSWTFJRExQcnFqWXNRSDZpeTBoQ1picGI5SUtGWjM3QVAiLCJtYWMiOiJkYzY0Mzk2ZWJmYjY5MDVhYjQ1ZjE4N2IxYWZkZjM4NmFhMGI3MmI1NjBkNGExMGIwZDQ0NTI2YTUwMWM4MDhjIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6Im1BRkViZlM1elJqWXhLY0QyM29zNUE9PSIsInZhbHVlIjoiWWUwZng0Y09leTROQllxTFVrZDE0NUtqcGxpbGZyNEtPbjZBQXNHNkhlMVFmS0lvaElDN1pZdW9PN2F0QzlhRzNFRWUzRVJmTnYxTkx4UG0xNHlDNkV5QStadWRGSzVML1pya0dObTJrK21jNVZONUpUKzZOdWFJSjFFVHA5bGQiLCJtYWMiOiI2ZjYyNGU5YzBhZWU5MTM5NzYyZmNhNTg0Nzc2OTJmNzk5OTVhZjU0YTI4ZjY3Yzg2N2UzYTNkMTA5NTMyMWE2IiwidGFnIjoiIn0%3D; __cf_bm=5hCpyu03AXrgIpjWHjx8ubha_ZReZF8ydAB7oztYuNY-1713938654-1.0.1.1-sMTsuGPE.tuFzrj4Ze.n_Jq_4a9mNAqXVNAsswwXsc8x3tFUWoiGvbLDY3ogSTuRAgX3ZZuPTomBnwg_Qh.dnw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 06:04:16 GMT
content-type: application/octet-stream
content-length: 1
cf-ray: 8793e5144c0e1c0e-OSL
cf-cache-status: DYNAMIC
accept-ranges: bytes
cache-control: max-age=315360000
etag: "93b885adfe0da089cdf634904fd59f71"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 14 Apr 2020 20:17:36 GMT
x-amz-meta-s3cmd-attrs: atime:1586895392/ctime:1586718963/gid:0/gname:root/md5:93b885adfe0da089cdf634904fd59f71/mode:33188/mtime:1586718963/uid:0/uname:root
x-amz-request-id: tx000002c505bc9ee339724-0065d8548c-e9549c7-sfo1
x-host: blu83.sf2p.intern.weebly.net
x-request-id: a69e4bd28ecf74c12dcbba5144e1c795
x-revision: f255cb7aee26d0a4d6045a89e6cf4977980a997a
x-rgw-object-type: Normal
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
|