Report - crm2.ascentismedia.com/MatrixCRM2/CommunicationsCentre/publicpages/LinkTrackers.aspx?link=https://khillec.com/polasiko/indexglitch.html%23YWtrc2hheS5jaHVnaEBjcmVkaXQtc3Vpc3NlLmNvbQ==&blastid=HaJwKgulsuhThrevQ-bg1A==&cc=k7ybaJOHC1q7mw3Z9UVdFw==&linkid=n6XO784zESaOPkbEOEOx87g4IWcBarkC2D1Tdl8CJciDFYwgGprfRd-XvUJO4gpJ&MID=gbzhqmttgi2dknbxgyza&CNO=&isCXComm=1

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
khillec.com	unknown	2005-01-22	2019-05-31	2025-07-28	454 B	0 B	0.0.0.0
logo.clearbit.com	27344	2003-07-04	2015-06-30	2025-07-31	1.4 kB	27 kB	54.240.174.116
crm2.ascentismedia.com	unknown	2020-04-17	2025-08-04	2025-08-04	824 B	2.3 kB	104.20.28.151
s3.eu-north-1.amazonaws.com	129646	2005-08-18	2018-12-12	2025-07-30	2.2 kB	404 kB	3.5.218.195
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-07-30	2.0 kB	246 kB	104.17.25.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2025-07-30	1.0 kB	246 kB	151.101.1.229

Detection System	Indicator	Verdict	Alert
OpenPhish	khillec.com	phishing	Phishing - Generic/Spear Phishing

URL GET HTTPS

logo.clearbit.com/credit-suisse.com

IP / ASN

54.240.174.116

#16509 AMAZON-02

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typePNG image data, 128 x 128, 8-bit/color RGB, non-interlaced

First Seen2024-02-24

Last Seen2025-08-04

Times Seen45

Size8.5 kB (8497 bytes)

MD5e8c3bc6667cebeb3b2ff6d44f20cdede

SHA19c775e6e97518916ebbc921d282652d71e7f9d10

SHA256529e3697814b18fec3351be6a3745f6b6942c4c38b9d537b273ab1c2017b1a3d

Certificate Info

IssuerAmazon

Subjectclearbit.com

Fingerprint91:80:1A:DB:BB:67:A9:69:FC:29:AC:91:61:B8:94:78:5B:01:F1:00

ValiditySat, 21 Dec 2024 00:00:00 GMT - Sun, 18 Jan 2026 23:59:59 GMT

Technology Fingerprints

Amazon CloudFront (CDN)

Amazon Web Services (PaaS)

HTTP Headers

GET /credit-suisse.com HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
cache-control: public, max-age=2592000
date: Fri, 25 Jul 2025 17:53:25 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ikGAWsOr18Bxyda7ckHqME01GgjhPFRCbNAnF6RgORwB2TxAKfu5cQ==
age: 859135
X-Firefox-Spdy: h2

URL User Request GET HTTP

crm2.ascentismedia.com/MatrixCRM2/CommunicationsCentre/publicpages/LinkTrackers.aspx?link=https://khillec.com/polasiko/indexglitch.html%23YWtrc2hheS5jaHVnaEBjcmVkaXQtc3Vpc3NlLmNvbQ==&blastid=HaJwKgulsuhThrevQ-bg1A==&cc=k7ybaJOHC1q7mw3Z9UVdFw==&linkid=n6XO784zESaOPkbEOEOx87g4IWcBarkC2D1Tdl8CJciDFYwgGprfRd-XvUJO4gpJ&MID=gbzhqmttgi2dknbxgyza&CNO=&isCXComm=1

IP / ASN

104.20.28.151

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-10

Times Seen5753463

Size878 B (878 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Technology Fingerprints

Cloudflare (CDN)

Microsoft ASP.NET (Web frameworks)

HTTP Headers

GET /MatrixCRM2/CommunicationsCentre/publicpages/LinkTrackers.aspx?link=https://khillec.com/polasiko/indexglitch.html%23YWtrc2hheS5jaHVnaEBjcmVkaXQtc3Vpc3NlLmNvbQ==&blastid=HaJwKgulsuhThrevQ-bg1A==&cc=k7ybaJOHC1q7mw3Z9UVdFw==&linkid=n6XO784zESaOPkbEOEOx87g4IWcBarkC2D1Tdl8CJciDFYwgGprfRd-XvUJO4gpJ&MID=gbzhqmttgi2dknbxgyza&CNO=&isCXComm=1 HTTP/1.1
Host: crm2.ascentismedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 04 Aug 2025 16:32:18 GMT
content-type: text/html; charset=utf-8
location: https://khillec.com/polasiko/indexglitch.html#YWtrc2hheS5jaHVnaEBjcmVkaXQtc3Vpc3NlLmNvbQ==
cache-control: private
pragma: no-cache
expires: -1
content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline' *.gstatic.com *.ascentis.com.sg *.ascentis.com.sg:9090 *.googleapis.com *.datatables.net *.google.com login.microsoftonline.com; connect-src 'self' wss://*.ascentis.com.sg bam.nr-data.net *.ascentis.com.sg *.googleapis.com *.google.com login.microsoftonline.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.ascentis.com.sg *.ascentis.com.sg:9090 webclientprint: *.gstatic.com ajax.aspnetcdn.com  *.cloudflare.com *.datatables.net *.bootstrapcdn.com *.googleapis.com *.google.com *.google-analytics.com bi3.ascentis.com.sg *.newrelic.com bam.nr-data.net editor.unlayer.com *.ascentislab.biz; frame-src 'self' webclientprint: *.ascentis.com.sg *.googleapis.com *.google.com  editor.unlayer.com *.ascentislab.biz; frame-ancestors 'self'  *.ascentis.com.sg; img-src * data:; font-src * data:;
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-frame-options: ALLOW-FROM https://web3.ascentis.com.sg
cf-cache-status: DYNAMIC
server: cloudflare
set-cookie: ASP.NET_SessionId=3trtuixw4yjhav0iwofo2jv0; HttpOnly; Secure; Path=/
cf-ray: 969f73335b135696-OSL
X-Firefox-Spdy: h2

URL User Request GET HTTP

s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html#akkshay.chugh@credit-suisse.com

IP / ASN

3.5.218.195

#16509 AMAZON-02

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (8699), with CRLF line terminators

First Seen2025-07-28

Last Seen2025-08-05

Times Seen82

Size201 kB (201335 bytes)

MD578244e01e864be574a01fe6b1ca96abb

SHA16a5c7f9d1cc48723b5db68aeb3d18623d11f2cd6

SHA256b3662218d26a1b83163bd15d9af04a82e949039ba4c3165a3fbdaf9f17942df4

Technology Fingerprints

jQuery:3.6.0 (JavaScript libraries)

jsDelivr (CDN)

Amazon Web Services (PaaS)

Amazon S3 (CDN)

Bootstrap:4.5.3 (UI frameworks)

Axios:0.21.1 (JavaScript libraries)

cdnjs (CDN)

Cloudflare (CDN)

HTTP Headers

GET /eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html HTTP/1.1
Host: s3.eu-north-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://khillec.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: WAJMC0GOPmDdsGroIV86T2Jv1wmOOiA/fDTygEdqeRy8M0LnH0YlBC61awMeKpgrsnwqN6hMe6ABAGPlfnFDoinNLyGPiHiY
x-amz-request-id: M0PE435QAD2QYSPC
Date: Mon, 04 Aug 2025 16:32:20 GMT
Last-Modified: Sun, 03 Aug 2025 17:05:57 GMT
ETag: "78244e01e864be574a01fe6b1ca96abb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 201335
Server: AmazonS3

URL User Request GET HTTPS

s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

IP / ASN

3.5.218.195

#16509 AMAZON-02

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (8699), with CRLF line terminators

First Seen2025-07-28

Last Seen2025-08-05

Times Seen82

Size201 kB (201335 bytes)

MD578244e01e864be574a01fe6b1ca96abb

SHA16a5c7f9d1cc48723b5db68aeb3d18623d11f2cd6

SHA256b3662218d26a1b83163bd15d9af04a82e949039ba4c3165a3fbdaf9f17942df4

Certificate Info

IssuerAmazon

Subject*.s3.eu-north-1.amazonaws.com

FingerprintD4:B2:B0:A0:1E:A4:59:26:5A:1C:FF:67:B5:FF:EE:CE:F8:AD:6C:5A

ValidityThu, 10 Jul 2025 00:00:00 GMT - Wed, 01 Jul 2026 23:59:59 GMT

Technology Fingerprints

Bootstrap:4.5.3 (UI frameworks)

Axios:0.21.1 (JavaScript libraries)

cdnjs (CDN)

Cloudflare (CDN)

jQuery:3.6.0 (JavaScript libraries)

jsDelivr (CDN)

Amazon S3 (CDN)

Amazon Web Services (PaaS)

HTTP Headers

GET /eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc HTTP/1.1
Host: s3.eu-north-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: Mzrowdl96sHe0o+pbYn4ZkpGKJUjL2LFT8H35r9Hrs0R9d/US/xGFFRdTkuNc1/uwFCBCnz30d4tImhcCwvnyWOvmdShfxeo
x-amz-request-id: 96NTKHHMVS37QW5M
Date: Mon, 04 Aug 2025 16:32:21 GMT
Last-Modified: Sun, 03 Aug 2025 17:05:57 GMT
ETag: "78244e01e864be574a01fe6b1ca96abb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/html
Content-Length: 201335
Server: AmazonS3

URL GET HTTPS

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

IP / ASN

104.17.25.14

#13335 CLOUDFLARENET

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65447)

First Seen2023-03-07

Last Seen2025-08-10

Times Seen269384

Size90 kB (89501 bytes)

MD58fb8fee4fcc3cc86ff6c724154c49c42

SHA1b82d238d4e31fdf618bae8ac11a6c812c03dd0d4

SHA256ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC

ValiditySun, 20 Jul 2025 17:08:10 GMT - Sat, 18 Oct 2025 18:08:03 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 16:32:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
cf-ray: 969f733f896f0b69-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 44617
expires: Sat, 25 Jul 2026 16:32:20 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lgK2IYsyoRMA4bu0QMRYwyi%2Bz%2FnpS1sI9BGQPH%2BNvPCgarF7mM2Yfv8SQZom%2FOZe0WC6BAS6XohIotv8KJK1A6yv3s%2BLVjAipPHdFtfg4VQ38hwXA51c0hLxbJk0kApUEag9kcDG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

URL GET HTTPS

cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/css/bootstrap.min.css

IP / ASN

151.101.1.229

#54113 FASTLY

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typeASCII text, with very long lines (65326)

First Seen2023-04-05

Last Seen2025-08-09

Times Seen7545

Size160 kB (160392 bytes)

MD5023b3876bb73aa541367fc40a193d2b7

SHA18ed2d6350d23f857d92805737d0f97c675de666b

SHA256f77c0d1739b618edc4a01ca3f6b2990b01a3009030af49ee8cf68e83052df194

Certificate Info

IssuerGlobalSign nv-sa

Subjectjsdelivr.net

Fingerprint21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4

ValidityMon, 02 Jun 2025 15:43:52 GMT - Sat, 04 Jul 2026 15:43:51 GMT

Technology Fingerprints

HTTP Headers

GET /npm/bootstrap@4.5.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s3.eu-north-1.amazonaws.com
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.5.3
x-jsd-version-type: version
etag: W/"27288-jtLWNQ0j+FfZKAVzfQ+XxnXeZms"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Aug 2025 16:32:20 GMT
age: 3563805
x-served-by: cache-fra-etou8220099-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26099
X-Firefox-Spdy: h2

URL GET HTTPS

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css

IP / ASN

104.17.25.14

#13335 CLOUDFLARENET

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typeASCII text, with very long lines (59158)

First Seen2023-04-05

Last Seen2025-08-10

Times Seen24237

Size59 kB (59344 bytes)

MD574bab4578692993514e7f882cc15c218

SHA1b6293bcfd851f963edbe859498570c4c0c7eaae4

SHA256d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC

ValiditySun, 20 Jul 2025 17:08:10 GMT - Sat, 18 Oct 2025 18:08:03 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /ajax/libs/font-awesome/5.15.3/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 16:32:20 GMT
content-type: text/css; charset=utf-8
content-length: 10482
cf-ray: 969f733f69260b69-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6599bda5-28f2"
last-modified: Sat, 06 Jan 2024 21:52:53 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 310497
expires: Sat, 25 Jul 2026 16:32:20 GMT
accept-ranges: bytes
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CW%2BGFsEGGRXt00YZ%2FGhvKjpamrko6dKn%2Bs6%2FLyacown3XKY3Oqh8ohZfPIr7oNs6WpJm1SPghz9MYac9ekrFVlghwmpyIHVbQg6UBfGQ7LXqvJ8cJ6PWca%2B2Nyko%2FQxV%2FQtPzdbg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

URL GET HTTPS

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2

IP / ASN

104.17.25.14

#13335 CLOUDFLARENET

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 78196, version 331.-31261

First Seen2023-04-05

Last Seen2025-08-10

Times Seen35812

Size78 kB (78196 bytes)

MD5e8a427e15cc502bef99cfd722b37ea98

SHA1a9922842a120a7f1eaced667480c5e185a106d69

SHA256d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC

ValiditySun, 20 Jul 2025 17:08:10 GMT - Sat, 18 Oct 2025 18:08:03 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://s3.eu-north-1.amazonaws.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 16:32:20 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 78196
cf-ray: 969f733fea6356bd-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "6599bdc3-13174"
last-modified: Sat, 06 Jan 2024 21:53:23 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 311478
expires: Sat, 25 Jul 2026 16:32:20 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0dM503N57YOl5NQFah0CDNstCO4lVCf7bhNkCfD4R6neuY4ilcr2f69ewM5diSZw%2B4CPBYPkAoBETc%2F0fvDQ8KUBI1R0uy10jDvnKCXYoY9t7o%2FW%2BUytLfguKz7n1jsjgSepIDnh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

URL GET HTTPS

logo.clearbit.com/credit-suisse.com

IP / ASN

54.240.174.116

#16509 AMAZON-02

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typePNG image data, 128 x 128, 8-bit/color RGB, non-interlaced

First Seen2024-02-24

Last Seen2025-08-04

Times Seen45

Size8.5 kB (8497 bytes)

MD5e8c3bc6667cebeb3b2ff6d44f20cdede

SHA19c775e6e97518916ebbc921d282652d71e7f9d10

SHA256529e3697814b18fec3351be6a3745f6b6942c4c38b9d537b273ab1c2017b1a3d

Certificate Info

IssuerAmazon

Subjectclearbit.com

Fingerprint91:80:1A:DB:BB:67:A9:69:FC:29:AC:91:61:B8:94:78:5B:01:F1:00

ValiditySat, 21 Dec 2024 00:00:00 GMT - Sun, 18 Jan 2026 23:59:59 GMT

Technology Fingerprints

Amazon Web Services (PaaS)

Amazon CloudFront (CDN)

HTTP Headers

GET /credit-suisse.com HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
cache-control: public, max-age=2592000
date: Fri, 25 Jul 2025 17:53:25 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nn_ComntfrhHfpM4J0oBD-9Jsl4COFzDXCoZVMdnlJgy6Pas1Hj44Q==
age: 859135
X-Firefox-Spdy: h2

URL GET HTTPS

cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/js/bootstrap.bundle.min.js

IP / ASN

151.101.1.229

#54113 FASTLY

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65299)

First Seen2023-03-07

Last Seen2025-08-09

Times Seen6993

Size84 kB (84152 bytes)

MD57f389f5d2622ce2090eca7c36bcb90bc

SHA1ab27031159724e2421f6ff5c70f48e657abe9d39

SHA2568d7089253dca29c9cd8d9deb7ec69b0a3d445f88f6a26478c719be1f90adcb01

Certificate Info

IssuerGlobalSign nv-sa

Subjectjsdelivr.net

Fingerprint21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4

ValidityMon, 02 Jun 2025 15:43:52 GMT - Sat, 04 Jul 2026 15:43:51 GMT

Technology Fingerprints

HTTP Headers

GET /npm/bootstrap@4.5.3/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s3.eu-north-1.amazonaws.com
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 23383
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.5.3
x-jsd-version-type: version
etag: W/"148b8-qycDEVlyTiQh9v9ccPSOZXq+nTk"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Aug 2025 16:32:20 GMT
age: 4158006
x-served-by: cache-fra-etou8220114-FRA, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

URL GET HTTPS

s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/wallpaper.png

IP / ASN

3.5.218.195

#16509 AMAZON-02

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typeXML 1.0 document, ASCII text

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size263 B (263 bytes)

MD5b04e12f61fa959c524282759227d38f3

SHA18e75259607714a6ce8214ba7438a9b8c8c19921a

SHA256eadca56e06381bd3ccdd21e49c681bf5475e5483cb2355160fb588573dc9d527

Certificate Info

IssuerAmazon

Subject*.s3.eu-north-1.amazonaws.com

FingerprintD4:B2:B0:A0:1E:A4:59:26:5A:1C:FF:67:B5:FF:EE:CE:F8:AD:6C:5A

ValidityThu, 10 Jul 2025 00:00:00 GMT - Wed, 01 Jul 2026 23:59:59 GMT

Technology Fingerprints

Amazon Web Services (PaaS)

Amazon S3 (CDN)

HTTP Headers

GET /eu-north-1.console.aws.amazon00907897656jik000lj/wallpaper.png HTTP/1.1
Host: s3.eu-north-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
x-amz-request-id: 96NG3KCZ7GZ76898
x-amz-id-2: ykosl6PG3ctEPqzjXEI2BP1l5bii+uW5vun+TpNuAzV3j3emqynAe4oKBpYiruMKcM/sJsiN5JsG3ZQGfkNJf3r2V62BAsmW
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Mon, 04 Aug 2025 16:32:19 GMT
Server: AmazonS3

URL GET HTTPS

logo.clearbit.com/credit-suisse.com

IP / ASN

54.240.174.116

#16509 AMAZON-02

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typePNG image data, 128 x 128, 8-bit/color RGB, non-interlaced

First Seen2024-02-24

Last Seen2025-08-04

Times Seen45

Size8.5 kB (8497 bytes)

MD5e8c3bc6667cebeb3b2ff6d44f20cdede

SHA19c775e6e97518916ebbc921d282652d71e7f9d10

SHA256529e3697814b18fec3351be6a3745f6b6942c4c38b9d537b273ab1c2017b1a3d

Certificate Info

IssuerAmazon

Subjectclearbit.com

Fingerprint91:80:1A:DB:BB:67:A9:69:FC:29:AC:91:61:B8:94:78:5B:01:F1:00

ValiditySat, 21 Dec 2024 00:00:00 GMT - Sun, 18 Jan 2026 23:59:59 GMT

Technology Fingerprints

Amazon CloudFront (CDN)

Amazon Web Services (PaaS)

HTTP Headers

GET /credit-suisse.com HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s3.eu-north-1.amazonaws.com/
Origin: https://s3.eu-north-1.amazonaws.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
cache-control: public, max-age=2592000
date: Fri, 25 Jul 2025 17:53:25 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: X2DnwGtD5tgNOWbZ0DpsXGNKVQFFrSp89yLM_vgKtaYag8ANXE6RcQ==
age: 859135
X-Firefox-Spdy: h2

URL GET HTTPS

khillec.com/favicon.ico

IP / ASN

0.0.0.0

#0

Requested byhttps://khillec.com/polasiko/indexglitch.html#YWtrc2hheS5jaHVnaEBjcmVkaXQtc3Vpc3NlLmNvbQ==

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-10

Times Seen5753463

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subject*.khillec.com

Fingerprint5D:AA:C2:B7:C8:01:39:D7:9E:B6:15:02:29:8E:AC:35:14:44:2C:73

ValidityTue, 22 Jul 2025 21:12:45 GMT - Mon, 20 Oct 2025 21:12:44 GMT

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Phishing - Generic/Spear Phishing

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: khillec.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://khillec.com/polasiko/indexglitch.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

URL GET HTTPS

cdnjs.cloudflare.com/ajax/libs/axios/0.21.1/axios.min.js

IP / ASN

104.17.25.14

#13335 CLOUDFLARENET

Requested byhttps://s3.eu-north-1.amazonaws.com/eu-north-1.console.aws.amazon00907897656jik000lj/starterpak.html?err=UfsVtqfz9U0oE8aOypzJOa2H4G6WQYH6bE05jkrLRw1b8VjhkmFZo5eJ2HtpU6Y2gqRdee3NfA9iLUk2YS7CQnDRaQlwesmGfvFTYWUcdzIiVvCavHTPyxeCDMW&dispatch=c0c074C0a422cc0ab82855AbacacAc015&id=7b845C7ca6cc29c4297677417cCbcc#akkshay.chugh@credit-suisse.com

Resource Info

File typeJavaScript source, ASCII text, with very long lines (14271)

First Seen2023-03-07

Last Seen2025-08-09

Times Seen2962

Size14 kB (14355 bytes)

MD570489d9432ef978db53bebda3e9f4c14

SHA1f24d0bcc36027bce45c86acfba57b248edb6a3f9

SHA25624b9a49d375465e659dbaecb3fda81fbf0d3eedbf138e29cb5229e502d8a4fa1

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC

ValiditySun, 20 Jul 2025 17:08:10 GMT - Sat, 18 Oct 2025 18:08:03 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /ajax/libs/axios/0.21.1/axios.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s3.eu-north-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 16:32:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
cf-ray: 969f733f89630b69-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fe182ae-3813"
last-modified: Tue, 22 Dec 2020 05:22:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2556099
expires: Sat, 25 Jul 2026 16:32:20 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P%2FgZAVFF1QDHYg27ndbCY1qHYLc6Oalk1fsZRc5ZqbWAbB6m1EyiqFkkIGc0VnVjzQHxiPdp45Ysa1eukEk4eWyihR9poMbYKvQU2rqAOmU8qg9Y43uY3xPvkR9KaBYKPx6EZsUc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

Detections

Host Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

JavaScript (0)

HTTP Transactions (14)

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

Detections

HTTP Headers

HTTP Headers