Report - horizonglobalbank.com/

Report Overview

Visited public
2025-04-25 08:57:09
Tags
URL
horizonglobalbank.com/
Finishing URL
horizonglobalbank.com/
IP / ASN
198.251.83.106
#53667 PONYNET
Title
Home - Horizon Global Bank

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
horizonglobalbank.com	unknown	2025-02-22	2025-04-25	2025-04-25	24 kB	3.9 MB	198.251.83.106
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-23	2.7 kB	258 kB	142.250.178.67
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-23	568 B	34 kB	142.250.178.74
code.jquery.com	634	2005-12-10	2012-05-21	2025-04-23	417 B	90 kB	151.101.194.137
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2025-04-23	452 B	112 kB	104.18.187.31

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed
2025-04-25	medium	horizonglobalbank.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (13)

	URL	From	Size	First Seen	Last Seen
	horizonglobalbank.com/front/js/wow.js	ScriptElement	6.3 kB	2023-03-07	2025-05-13
Pretty URL horizonglobalbank.com/front/js/wow.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38 Last Seen2025-05-13 14:21 Times Seen854 Hash 105fb3799fcf14f1ea8fcff23f2686dc 00a8a01378a8259b38cba29dc69ddf761450053f 704ae255ab62df5481884eb0db69b552c686e7094b21581b1cbc86a9b6c3800b Loading...

	code.jquery.com/jquery-3.6.1.min.js	ScriptElement	90 kB	2023-03-07	2025-05-14
Pretty URL code.jquery.com/jquery-3.6.1.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-05-14 03:48 Times Seen14450 Hash 00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74 Loading...

	horizonglobalbank.com/front/js/popper.min.js	ScriptElement	18 kB	2023-03-07	2025-05-13
Pretty URL horizonglobalbank.com/front/js/popper.min.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22 Last Seen2025-05-13 14:21 Times Seen656 Hash 0269e72ea643261447a59e685750b1cf 89e76a70f48a2dcb5359a5b6a57badbf77cc5239 18b80e40bb93ae5f8f1d3253b03d8e5d55b51341a27ed78cf42feadd012bcf9f Loading...

	horizonglobalbank.com/front/js/jquery.js	ScriptElement	97 kB	2023-03-07	2025-05-14
Pretty URL horizonglobalbank.com/front/js/jquery.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-14 00:53 Times Seen29124 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	horizonglobalbank.com/front/js/bootstrap.min.js	ScriptElement	62 kB	2023-03-07	2025-05-13
Pretty URL horizonglobalbank.com/front/js/bootstrap.min.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-13 14:53 Times Seen898 Hash cabc5d07dec4c381f521bbcd41c009db ca329d086682a4d75b5528d326a66a6d3fffab13 2909d4fa86cf09191e768576e1a6eab7f2635a2627549c45d29595ffac9c0da9 Loading...

	horizonglobalbank.com/front/js/jquery.mCustomScrollbar.concat.min.js	ScriptElement	40 kB	2023-03-07	2025-05-13
Pretty URL horizonglobalbank.com/front/js/jquery.mCustomScrollbar.concat.min.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05 Last Seen2025-05-13 14:21 Times Seen1018 Hash 71951b246c4726520dce912a5ac7f03c 56906b9b9f41df67063091b7a66c8584d87d748f dd3bda90c210c66fd618bb0c35f4b21f871ce1dae7396053cb4b3a90b3ec51b0 Loading...

	horizonglobalbank.com/front/js/jquery.fancybox.js	ScriptElement	146 kB	2023-09-16	2025-05-13
Pretty URL horizonglobalbank.com/front/js/jquery.fancybox.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-16 07:21 Last Seen2025-05-13 14:21 Times Seen529 Hash 217c1667b830e818ad4e170c25d5222f e4baa41f4d86be0dc1b127a5d6d8901263216e10 b52a13e34a3c8009c820a585a20add686c108104297527ba38f9c34e15d633c3 Loading...

	horizonglobalbank.com/front/js/appear.js	ScriptElement	4.2 kB	2023-03-07	2025-05-13
Pretty URL horizonglobalbank.com/front/js/appear.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11 Last Seen2025-05-13 14:21 Times Seen1447 Hash cbbd68c06c9cdb2481b7050f6e64375e 1ee3d2e29b6279f1986cd878072780d596250878 4aded4f99d9aa82ccf099bfc6ddb735e25a6de44a124791c1e258cd05daee11c Loading...

	horizonglobalbank.com/	ScriptElement	817 B	2023-09-16	2025-05-13
Pretty URL horizonglobalbank.com/ IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-16 07:21 Last Seen2025-05-13 14:21 Times Seen356 Hash b03bb578d238cbcea414a6854473a4bf b35507351dc6f31cf3a101696074994ca898d43f b4512c3afac11f4c22bbda9e1e2d67529435f80eebfc738a79c463a8cde9dcc6 Loading...

	horizonglobalbank.com/front/js/validate.js	ScriptElement	21 kB	2023-04-07	2025-05-13
Pretty URL horizonglobalbank.com/front/js/validate.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-07 05:25 Last Seen2025-05-13 14:21 Times Seen597 Hash e0a7fe67021f7028791330511820da17 1716002d22dfde1c0855ad504b527864896022b7 79e8230fcd2cc9b5362a68960c2734d6c929e52465861d47b5caa03efc1a66d2 Loading...

	horizonglobalbank.com/front/js/jquery-ui.js	ScriptElement	521 kB	2023-03-07	2025-05-13
Pretty URL horizonglobalbank.com/front/js/jquery-ui.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27 Last Seen2025-05-13 14:21 Times Seen565 Hash 45bedc12dcfee87eeec2fab0eacc4282 a9209013b11229858c017d6fbd1ba4320a0e8b61 73b6f5a1857f503b293bd34466cf196cc7dc8f340ce397ebc9b2a3d19b12208c Loading...

	horizonglobalbank.com/front/js/owl.js	ScriptElement	85 kB	2023-03-07	2025-05-14
Pretty URL horizonglobalbank.com/front/js/owl.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-14 00:23 Times Seen1171 Hash 54428880ec8df798ac3d666f5113c7ff 9e43e74b8677f39e87f1b11be4d536c618b14bb3 0402874ff311f284b18af9e4c453ee5bf0916a3b7335f0be52dcb54a1a31338b Loading...

	horizonglobalbank.com/front/js/script.js	ScriptElement	11 kB	2023-09-16	2025-05-13
Pretty URL horizonglobalbank.com/front/js/script.js IP 198.251.83.106 ASN #53667 PONYNET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-16 07:21 Last Seen2025-05-13 14:21 Times Seen533 Hash 2e35777a87a72bcee5772e044ceb1893 b536cf78e7a555ce5f6fdb035edd03969b482786 f0fb3769cc69d61957b52c434ccace34582e351c33d877348ad09df1faf925c8 Loading...

HTTP Transactions (56)

URL IP Response Size

horizonglobalbank.com/front/js/owl.js

198.251.83.106

200 OK

85 kB

URL GET
horizonglobalbank.com/front/js/owl.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text, with very long lines (360)
Size
85 kB (85303 bytes)
Hash
54428880ec8df798ac3d666f5113c7ff
9e43e74b8677f39e87f1b11be4d536c618b14bb3
0402874ff311f284b18af9e4c453ee5bf0916a3b7335f0be52dcb54a1a31338b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/owl.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17911
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/animation.css

198.251.83.106

200 OK

12 kB

URL GET
horizonglobalbank.com/front/css/animation.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
12 kB (11734 bytes)
Hash
283a999ced8386b4eccf27cf8714fb30
a40459fc7fac6656335d708cce9c9de87594b9d0
d39a8775a6fa3b47a46d8962aa270de02cdd10f303f39c44d3e158dfbc5f07ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/animation.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 857
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/clients/5.png

198.251.83.106

200 OK

5.2 kB

URL GET
horizonglobalbank.com/front/images/clients/5.png
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
PNG image data, 200 x 85, 8-bit/color RGBA, non-interlaced
Size
5.2 kB (5221 bytes)
Hash
dcbced3fa2394523e7ea0f5e9f4d97d8
ebd5aa25062b570f641a3ea3fb53fd66ea2b4179
1c39ce50059038537ed88974043ee85a3aafe3d6560577c9cb1b33604653d042

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/clients/5.png HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/png
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 5221
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/bootstrap.min.css

198.251.83.106

200 OK

153 kB

URL GET
horizonglobalbank.com/front/css/bootstrap.min.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Unicode text, UTF-8 text, with very long lines (65300)
Size
153 kB (153123 bytes)
Hash
22392817c7c85f71231b55d89f7cdc5f
9aed24a179a656eeaac2d9796a8daaa7504d6b10
49911016ed3edb968ac5b0ed5431d025766354a593e7d8a14ac8c9740b851cf9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/bootstrap.min.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19930
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/main-slider/intro-1.jpg

198.251.83.106

200 OK

118 kB

URL GET
horizonglobalbank.com/front/images/main-slider/intro-1.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1000, components 3
Size
118 kB (117480 bytes)
Hash
272626a4ccb4a414f7d465f56e572795
5ce3ac19863680fba42964c5ce13ac5efc3dc245
bd28313661b73bd4e338dec230ff812acd2040b84e58e28ce2cd342b2f72ec4c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/main-slider/intro-1.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:50 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 117480
date: Fri, 25 Apr 2025 08:56:50 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/fonts/fa-brands-400.woff2

198.251.83.106

200 OK

77 kB

URL GET
horizonglobalbank.com/front/fonts/fa-brands-400.woff2
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 76612, version 331.524
Size
77 kB (76612 bytes)
Hash
a06da7f0950f9dd366fc9db9d56d618a
509988477da79c146cb93fb728405f18e923c2de
5d9190292acdd48ba0fc35080f7e7448f3cdf0d79199a4d23f0f49b5341fdf29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/fonts/fa-brands-400.woff2 HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/fontawesome.min.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:50 GMT
content-type: font/woff2
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 76612
date: Fri, 25 Apr 2025 08:56:50 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/responsive.css

198.251.83.106

200 OK

23 kB

URL GET
horizonglobalbank.com/front/css/responsive.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
23 kB (22873 bytes)
Hash
1fe653ef8db1036a373977da05622595
97c49a44650525ec2848832feec7f71f1884d3ec
2d5275f25b5c88598632488e56e10d3a91892dd4f9d2f6833307e3af7db5c315

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/responsive.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3306
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/assets/images/logo/AddText_02-22-08.38.01.png

198.251.83.106

200 OK

48 kB

URL GET
horizonglobalbank.com/assets/images/logo/AddText_02-22-08.38.01.png
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
PNG image data, 1337 x 332, 8-bit/color RGBA, non-interlaced
Size
48 kB (47966 bytes)
Hash
0edc6af62afdfc35d0f3223d7892e534
532138fb9fcb16c2c49704c4628d5db7aa77d09a
5debbd26294627bae863b2ea39abe27996ccdd634c567e5bf2fcbc773396f598

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/logo/AddText_02-22-08.38.01.png HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/png
last-modified: Sat, 22 Feb 2025 20:01:19 GMT
accept-ranges: bytes
content-length: 47966
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/appear.js

198.251.83.106

200 OK

4.2 kB

URL GET
horizonglobalbank.com/front/js/appear.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text
Size
4.2 kB (4228 bytes)
Hash
cbbd68c06c9cdb2481b7050f6e64375e
1ee3d2e29b6279f1986cd878072780d596250878
4aded4f99d9aa82ccf099bfc6ddb735e25a6de44a124791c1e258cd05daee11c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/appear.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1226
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/jquery-ui.css

198.251.83.106

200 OK

36 kB

URL GET
horizonglobalbank.com/front/css/jquery-ui.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text, with very long lines (2363)
Size
36 kB (36249 bytes)
Hash
ac79a49731d732cc8f28a691d88ac743
35b060071041620f3a886adfcc812fa82385661b
b904a75d7ec761c670bdc67cb92247bf9116522bf685b19af1e9d2836a41c232

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/jquery-ui.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7892
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/fonts/fa-solid-900.woff2

198.251.83.106

200 OK

79 kB

URL GET
horizonglobalbank.com/front/fonts/fa-solid-900.woff2
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 79444, version 331.524
Size
79 kB (79444 bytes)
Hash
b15db15f746f29ffa02638cb455b8ec0
75a88815c47a249eadb5f0edc1675957f860cca7
7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/fonts/fa-solid-900.woff2 HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/fontawesome.min.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:50 GMT
content-type: font/woff2
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 79444
date: Fri, 25 Apr 2025 08:56:50 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

horizonglobalbank.com/front/fonts/SignericaMedium.woff

198.251.83.106

200 OK

70 kB

URL GET
horizonglobalbank.com/front/fonts/SignericaMedium.woff
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Web Open Font Format, TrueType, length 69832, version 0.0
Size
70 kB (69832 bytes)
Hash
fe8345ade4b69c50b69d31638cb495f2
7923c45e6008c01790b4e2df7a5ddf0eff4a60c5
23f02d3c3eca3daf85b5af7f31c1bc943c0b188773f883a8afe8383c74dcdd6b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/fonts/SignericaMedium.woff HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:50 GMT
content-type: font/woff
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 69832
date: Fri, 25 Apr 2025 08:56:50 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/themify-icons.css

198.251.83.106

200 OK

17 kB

URL GET
horizonglobalbank.com/front/css/themify-icons.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
17 kB (17088 bytes)
Hash
da1a78679102863ef98740690878cc73
a72c8cb318b70efee83c07d880b2ffa71bd8b294
3aba6fdad68533dfcc2285e0b8572faea7a3527ad857135fb2659f2e1d266d81

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/themify-icons.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2735
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/gallery/4.jpg

198.251.83.106

200 OK

68 kB

URL GET
horizonglobalbank.com/front/images/gallery/4.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x474, components 3
Size
68 kB (67887 bytes)
Hash
1f9da573e27fde11f3a624fee3687923
af92799660c16d10ed4206de2788348dfa7d9dfb
294bc68cf847ac2eb62d1e517e53fdd15339f678465eeef95f5660863bee6cbf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/gallery/4.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 67887
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/gallery/1.jpg

198.251.83.106

200 OK

200 kB

URL GET
horizonglobalbank.com/front/images/gallery/1.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 955x955, components 3
Size
200 kB (199884 bytes)
Hash
81e3f5c30f67898eefdc150f675ad744
902c1040e797fe3ab9627e3249ff7ad7c4235be0
f5e4016ea2c0bb43a78fa4d03d2ad86b920bf589bd53bffcd3efd3a719dfc7e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/gallery/1.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 199884
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/clients/1.png

198.251.83.106

200 OK

5.3 kB

URL GET
horizonglobalbank.com/front/images/clients/1.png
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
PNG image data, 200 x 85, 8-bit/color RGBA, non-interlaced
Size
5.3 kB (5293 bytes)
Hash
ce51a51d5a40ad2b3bc416feda36662b
48f0aabfe647b6e5d2787d6a366a122e2b4e006e
9f6d5e0a5e65b0fe165a9db8c4b06e10e3adce7e46b153353c5cbfd65e3e3bd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/clients/1.png HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/png
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 5293
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/clients/4.png

198.251.83.106

200 OK

3.3 kB

URL GET
horizonglobalbank.com/front/images/clients/4.png
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
PNG image data, 200 x 85, 8-bit/color RGBA, non-interlaced
Size
3.3 kB (3310 bytes)
Hash
3144536b122ea301d260a09205cd0282
d067fc569a70e598be196fe13e068ee3a8488570
8c24b15d0840d74eb7c403aa6ae0e4e44d53fe814638e4ffc0258a3109b79eee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/clients/4.png HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/png
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 3310
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/resource/news-1.jpg

198.251.83.106

200 OK

78 kB

URL GET
horizonglobalbank.com/front/images/resource/news-1.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x390, components 3
Size
78 kB (78244 bytes)
Hash
984686243122f0a369c12a6566913b4a
76ea56544990190ff07d9a825f91847a524b0ca6
0efeaebdc10854fc1836972fb626df94a49b48ff6b3148d8bf348f6fbe92c522

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/resource/news-1.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 78244
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/owl.css

198.251.83.106

200 OK

4.2 kB

URL GET
horizonglobalbank.com/front/css/owl.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
4.2 kB (4166 bytes)
Hash
9e5b4a71d17785de854224c2284b06b5
f468c847a146b389adc1f7b2aa97b6dfa8dd46e0
adc69ed1b3f5da2a8874da014b3e14f98e9ceaa85fdc947737c1e57c454e3260

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/owl.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1067
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://horizonglobalbank.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50668, version 1.0
Size
51 kB (50668 bytes)
Hash
dafd0a2e599f63fa9d7ee1d98fce7f51
f8c0cb57f10acd8f96623fbd2a7021253c860937
6912f7388531e949bd5406b5668cd6b55fea4cc7e2d123dbaed489054dd98438

HTTP Headers

GET /s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://horizonglobalbank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 18:17:52 GMT
expires: Fri, 24 Apr 2026 18:17:52 GMT
cache-control: public, max-age=31536000
age: 52737
last-modified: Thu, 14 Sep 2023 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

horizonglobalbank.com/

198.251.83.106

200 OK

34 kB

URL User Request GET
horizonglobalbank.com/
IP
198.251.83.106:443
ASN
#53667 PONYNET

Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (418), with CRLF, LF line terminators
Size
34 kB (34172 bytes)
Hash
0f85ce4f266c4d58e087b6092289e3c2
aeba062672363ad26401d2cacdfbf7bd2bfdf686
374237ffd1f035cacef2a047c4dcd1edcf827d25a38bf1463acd1d6eb1646183

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/8.2.28
set-cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Apr 2025 08:56:47 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Heebo:wght@100;500;600;700;900&family=Libre+Baskerville:wght@400;700&family=Work+Sans:wght@100;200;300;400;500;600;700;800;900&display=swap

142.250.178.74

200 OK

33 kB

URL GET
fonts.googleapis.com/css2?family=Heebo:wght@100;500;600;700;900&family=Libre+Baskerville:wght@400;700&family=Work+Sans:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
142.250.178.74:443
ASN
#15169 GOOGLE

Requested by
https://horizonglobalbank.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text, with very long lines (1572)
Size
33 kB (32926 bytes)
Hash
7bbaae630fc3c3b4ab0b81109e089707
4a8292673f82755f6e7f8a988059851a3cf82dc9
6a009e11da10a8df82db166829b0979285faae58eb81e981f16d8638116308c5

HTTP Headers

GET /css2?family=Heebo:wght@100;500;600;700;900&family=Libre+Baskerville:wght@400;700&family=Work+Sans:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Apr 2025 08:56:48 GMT
date: Fri, 25 Apr 2025 08:56:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/wow.js

198.251.83.106

200 OK

6.3 kB

URL GET
horizonglobalbank.com/front/js/wow.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text, with very long lines (6269)
Size
6.3 kB (6299 bytes)
Hash
105fb3799fcf14f1ea8fcff23f2686dc
00a8a01378a8259b38cba29dc69ddf761450053f
704ae255ab62df5481884eb0db69b552c686e7094b21581b1cbc86a9b6c3800b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/wow.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2035
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/icofont.min.css

198.251.83.106

200 OK

110 kB

URL GET
horizonglobalbank.com/front/css/icofont.min.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
110 kB (109689 bytes)
Hash
4ec323d45eddd092db34adae046326d9
c482734e626450e8c5a21dd0937811b330a80d9f
495078a407a12d308b30715a0d3563dc3046414328d0a3ca2c4e3512c27facac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/icofont.min.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15664
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/clients/2.png

198.251.83.106

200 OK

4.0 kB

URL GET
horizonglobalbank.com/front/images/clients/2.png
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
PNG image data, 200 x 85, 8-bit/color RGBA, non-interlaced
Size
4.0 kB (3967 bytes)
Hash
ecc117188f83d241b46026f9d939f043
fcdcb640310bf0b87c8c268e1e378b19417f84ba
fdbda551f75c52d504ad1d0de2b598d92bbc9d899363c560c9c3ce2eaf26f28e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/clients/2.png HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/png
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 3967
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/animate.css

198.251.83.106

200 OK

76 kB

URL GET
horizonglobalbank.com/front/css/animate.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
76 kB (75690 bytes)
Hash
9553df5b101bfd7910ed3637f4479e09
180a945af9a97e3d13c481a56e935be48048bba9
c61d53c6505e7604efa05c6ccef932f18d110d33cc7970696533e72ebdf732d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/animate.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4281
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/linearicons.css

198.251.83.106

200 OK

8.3 kB

URL GET
horizonglobalbank.com/front/css/linearicons.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
8.3 kB (8334 bytes)
Hash
c7bfd6b68aa6ff3a7d355ecb83508265
35bb6dbdc842921aee1940641c1af050043ecbd3
05b4f1bfb6c8050752c208bf4ff7b0811a466d23d1f0fe1d8bf28ef5d4fd242b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/linearicons.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1496
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/bootstrap.min.js

198.251.83.106

200 OK

62 kB

URL GET
horizonglobalbank.com/front/js/bootstrap.min.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text, with very long lines (62126)
Size
62 kB (62411 bytes)
Hash
cabc5d07dec4c381f521bbcd41c009db
ca329d086682a4d75b5528d326a66a6d3fffab13
2909d4fa86cf09191e768576e1a6eab7f2635a2627549c45d29595ffac9c0da9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/bootstrap.min.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15376
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/jquery.mCustomScrollbar.min.css

198.251.83.106

200 OK

43 kB

URL GET
horizonglobalbank.com/front/css/jquery.mCustomScrollbar.min.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text, with very long lines (42962), with no line terminators
Size
43 kB (42962 bytes)
Hash
e315766f9faba131997b2eede211089a
9a9dd5c15e387bce7e771c4f993be55c0719f4d7
1bb652d030aa77242a2e7eb0626a3e95576f817a85c6a10445c0a27c2dc5f7a4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3834
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/fonts/Linearicons-Free.woff2_w118d

198.251.83.106

200 OK

22 kB

URL GET
horizonglobalbank.com/front/fonts/Linearicons-Free.woff2_w118d
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21780, version 1.0
Size
22 kB (21780 bytes)
Hash
03e91f122aa5fd425abbe23c85546eb0
c87a3db06c5db4e75e639382f174eafa439aeb27
296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/fonts/Linearicons-Free.woff2_w118d HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/linearicons.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 21780
date: Fri, 25 Apr 2025 08:56:50 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/jquery-ui.js

198.251.83.106

200 OK

521 kB

URL GET
horizonglobalbank.com/front/js/jquery-ui.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text, with very long lines (1002)
Size
521 kB (520717 bytes)
Hash
45bedc12dcfee87eeec2fab0eacc4282
a9209013b11229858c017d6fbd1ba4320a0e8b61
73b6f5a1857f503b293bd34466cf196cc7dc8f340ce397ebc9b2a3d19b12208c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/jquery-ui.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 120941
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://horizonglobalbank.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50668, version 1.0
Size
51 kB (50668 bytes)
Hash
dafd0a2e599f63fa9d7ee1d98fce7f51
f8c0cb57f10acd8f96623fbd2a7021253c860937
6912f7388531e949bd5406b5668cd6b55fea4cc7e2d123dbaed489054dd98438

HTTP Headers

GET /s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://horizonglobalbank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 18:17:52 GMT
expires: Fri, 24 Apr 2026 18:17:52 GMT
cache-control: public, max-age=31536000
age: 52737
last-modified: Thu, 14 Sep 2023 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/gallery/3.jpg

198.251.83.106

200 OK

56 kB

URL GET
horizonglobalbank.com/front/images/gallery/3.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 477x477, components 3
Size
56 kB (55560 bytes)
Hash
29e5b1c36d6acc32b85cba14bd18e06d
d170c83d74cfa7f1c835ae2ffaa070cc58f904a0
8720e2398d229b7f2004ca28edc0142e69a36de4a63d021577294f7e13a7ad75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/gallery/3.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 55560
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/favicon.png

198.251.83.106

200 OK

13 kB

URL GET
horizonglobalbank.com/front/images/favicon.png
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
PNG image data, 28 x 36, 8-bit/color RGBA, non-interlaced
Size
13 kB (13255 bytes)
Hash
31b384fe74cb1e6efc24aba97e054fd2
6ee09b3ce22692617cd3807d6e97bd3b227f403f
ac4b8a8b395115919ca6fd546ccf5fa5012892dfbc95aa764f1cd0b8f751418a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/favicon.png HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:50 GMT
content-type: image/png
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 13255
date: Fri, 25 Apr 2025 08:56:50 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/gallery/2.jpg

198.251.83.106

200 OK

38 kB

URL GET
horizonglobalbank.com/front/images/gallery/2.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 477x477, components 3
Size
38 kB (37673 bytes)
Hash
8bb45de94f91fdf23ac01ee2a78485fe
7f0da2db48739ce7feeeb19d7d05aecf634159fb
19a1f518042c23ea61e07222ea485e39c0f0d88352a371ebceca0b9b56c9af10

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/gallery/2.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 37673
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/jquery.fancybox.min.css

198.251.83.106

200 OK

14 kB

URL GET
horizonglobalbank.com/front/css/jquery.fancybox.min.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Unicode text, UTF-8 text, with very long lines (13734), with no line terminators
Size
14 kB (13735 bytes)
Hash
35d290afd71a6053d8195ea13170b4e9
a64676403bb5c23f9800963b0b8f0475b532601f
e467f75601e845da217ae845b688b227a19fbf1e8fc776a42a4905869496d2e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/jquery.fancybox.min.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2938
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/validate.js

198.251.83.106

200 OK

21 kB

URL GET
horizonglobalbank.com/front/js/validate.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (20730)
Size
21 kB (20888 bytes)
Hash
e0a7fe67021f7028791330511820da17
1716002d22dfde1c0855ad504b527864896022b7
79e8230fcd2cc9b5362a68960c2734d6c929e52465861d47b5caa03efc1a66d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/validate.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6021
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/fontawesome.min.css

198.251.83.106

200 OK

71 kB

URL GET
horizonglobalbank.com/front/css/fontawesome.min.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
71 kB (70850 bytes)
Hash
810fc89b3cb5bdad387a5bf5304c3c78
1b0450a6db44d4479b7043ba13e92aa51d1cd59b
7eef44924185c74fd34e071e396104940ec6a795b339e74f757c816eeb3ebdb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/fontawesome.min.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12493
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://horizonglobalbank.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50668, version 1.0
Size
51 kB (50668 bytes)
Hash
dafd0a2e599f63fa9d7ee1d98fce7f51
f8c0cb57f10acd8f96623fbd2a7021253c860937
6912f7388531e949bd5406b5668cd6b55fea4cc7e2d123dbaed489054dd98438

HTTP Headers

GET /s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://horizonglobalbank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 18:17:52 GMT
expires: Fri, 24 Apr 2026 18:17:52 GMT
cache-control: public, max-age=31536000
age: 52737
last-modified: Thu, 14 Sep 2023 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

horizonglobalbank.com/front/fonts/icofont.woff

198.251.83.106

200 OK

646 kB

URL GET
horizonglobalbank.com/front/fonts/icofont.woff
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Web Open Font Format, TrueType, length 645604, version 1.0
Size
646 kB (645604 bytes)
Hash
f6ab04aed30a8643bf94fe00f7ff0b59
3a6d3ab13e750d77c6b7dae1cc5365db02bbae4c
53bbbda5480a031a71fc168352c18a81654a330c78784eb303c51e8a8dee66c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/fonts/icofont.woff HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:49 GMT
content-type: font/woff
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 645604
date: Fri, 25 Apr 2025 08:56:49 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://horizonglobalbank.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50668, version 1.0
Size
51 kB (50668 bytes)
Hash
dafd0a2e599f63fa9d7ee1d98fce7f51
f8c0cb57f10acd8f96623fbd2a7021253c860937
6912f7388531e949bd5406b5668cd6b55fea4cc7e2d123dbaed489054dd98438

HTTP Headers

GET /s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://horizonglobalbank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 18:17:52 GMT
expires: Fri, 24 Apr 2026 18:17:52 GMT
cache-control: public, max-age=31536000
age: 52737
last-modified: Thu, 14 Sep 2023 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/resource/news-3.jpg

198.251.83.106

200 OK

27 kB

URL GET
horizonglobalbank.com/front/images/resource/news-3.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x390, components 3
Size
27 kB (26822 bytes)
Hash
a5726bf7277abf1c87ebffb5c7da1923
22e8a70f3f7cbbad873bc0c7325685742367a6f7
6cd8f98f206059a5d0028c504030cd39d6901b5deac7db1c1cfecee5ed449b5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/resource/news-3.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 26822
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.178.67

200 OK

51 kB

URL GET
fonts.gstatic.com/s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://horizonglobalbank.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50668, version 1.0
Size
51 kB (50668 bytes)
Hash
dafd0a2e599f63fa9d7ee1d98fce7f51
f8c0cb57f10acd8f96623fbd2a7021253c860937
6912f7388531e949bd5406b5668cd6b55fea4cc7e2d123dbaed489054dd98438

HTTP Headers

GET /s/worksans/v19/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://horizonglobalbank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 18:17:52 GMT
expires: Fri, 24 Apr 2026 18:17:52 GMT
cache-control: public, max-age=31536000
age: 52737
last-modified: Thu, 14 Sep 2023 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/simple-line-icons.css

198.251.83.106

200 OK

13 kB

URL GET
horizonglobalbank.com/front/css/simple-line-icons.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
13 kB (12968 bytes)
Hash
b59f8965dfca3963a8ac681b859aaa05
a8bf6b10fc99c4de59e0977c1232b5fdcf9c443a
c440ab5fef47b932087fe156a3b715a0033607533f9f7a4553b0e8612fa2ae0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/simple-line-icons.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2536
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/main.css

198.251.83.106

200 OK

102 kB

URL GET
horizonglobalbank.com/front/css/main.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
102 kB (101666 bytes)
Hash
dbc47cffc3d32605f01a227ed790023e
a463258b408559fef4bbe718824d6669e5f9dee0
dc10e64c8f9318269786adda86cc11c5d381a95e24d2b1d51c7b88e6ddb85648

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/main.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11879
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.1.min.js

151.101.194.137

200 OK

90 kB

URL GET
code.jquery.com/jquery-3.6.1.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://horizonglobalbank.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89664 bytes)
Hash
00727d1d5d9c90f7de826f1a4a9cc632
ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2
a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74

HTTP Headers

GET /jquery-3.6.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15e40"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 25 Apr 2025 08:56:48 GMT
age: 4413236
x-served-by: cache-lga13629-LGA, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 20, 142246
x-timer: S1745571408.261385,VS0,VE0
vary: Accept-Encoding
content-length: 30957
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css

104.18.187.31

200 OK

110 kB

URL GET
cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css
IP
104.18.187.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT

File type
ASCII text
Size
110 kB (110438 bytes)
Hash
a8aec561d3b9b905472b815cb2b818c2
300eda4d6282a06d056239258fd3d3c344df4853
13e29a29baade86f4e7a88d8e076d6a6f3ac8950757b50a0f8bbea1c33658d5c

HTTP Headers

GET /npm/remixicon@2.5.0/fonts/remixicon.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 25 Apr 2025 08:56:48 GMT
content-type: text/css; charset=utf-8
content-length: 13745
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.5.0
x-jsd-version-type: version
etag: W/"1af66-MA7aTWKCoG0FYjklj9PTw0TfSFM"
content-encoding: br
x-served-by: cache-fra-eddf8230041-FRA, cache-lga21933-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 6145013
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P616okbbyoNA%2BVcUGw0wFNpYCElnXcD9B1d6irEMvo3IqvhZmka5F%2FRa%2F%2FNfRNrj3sSzpvNlCAPOHxT52ORhUeaq8Ph1JDTz3xl7zHZuqcxaSOjwELXYXWAQbP%2Ft2DFMOds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 935ca1150e19b527-OSL
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/about/home-about.png

198.251.83.106

200 OK

523 kB

URL GET
horizonglobalbank.com/front/images/about/home-about.png
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
PNG image data, 605 x 605, 8-bit/color RGBA, non-interlaced
Size
523 kB (522834 bytes)
Hash
840ece1fdc07e214a71de76cfa27a073
e11e6a8c4e544fbea7727868d0f617f653ee6813
c480433d4765e6802c855c3fbdb8b851ccfe62fbb7ef4978146ac2be3bb03d33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/about/home-about.png HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/png
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 522834
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/jquery.js

198.251.83.106

200 OK

97 kB

URL GET
horizonglobalbank.com/front/js/jquery.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text, with very long lines (32077)
Size
97 kB (97163 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/jquery.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32851
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/script.js

198.251.83.106

200 OK

11 kB

URL GET
horizonglobalbank.com/front/js/script.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text
Size
11 kB (10744 bytes)
Hash
2e35777a87a72bcee5772e044ceb1893
b536cf78e7a555ce5f6fdb035edd03969b482786
f0fb3769cc69d61957b52c434ccace34582e351c33d877348ad09df1faf925c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/script.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2577
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/images/resource/news-2.jpg

198.251.83.106

200 OK

33 kB

URL GET
horizonglobalbank.com/front/images/resource/news-2.jpg
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x390, components 3
Size
33 kB (33110 bytes)
Hash
270b08087723ab4e439e995c07464032
4d52d7fb9d88da56d2edb9bda7d9932cbe403572
b6d75971d9e392206389da778c036d884564c797524323a2a2688e63f3efdb6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/images/resource/news-2.jpg HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: image/jpeg
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 33110
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/jquery.mCustomScrollbar.concat.min.js

198.251.83.106

200 OK

40 kB

URL GET
horizonglobalbank.com/front/js/jquery.mCustomScrollbar.concat.min.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text, with very long lines (32009)
Size
40 kB (40547 bytes)
Hash
71951b246c4726520dce912a5ac7f03c
56906b9b9f41df67063091b7a66c8584d87d748f
dd3bda90c210c66fd618bb0c35f4b21f871ce1dae7396053cb4b3a90b3ec51b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11725
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/css/elegenticon.css

198.251.83.106

200 OK

26 kB

URL GET
horizonglobalbank.com/front/css/elegenticon.css
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
ASCII text
Size
26 kB (25544 bytes)
Hash
2ff2aec2ac74d1d10d260da41250638b
9cefb332dc7c7b610d9a62a02d89d261b7c23c27
a982c5727d6726a230f1f288b0f67c0811eabbceb902e40f87384da02eec91d7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/css/elegenticon.css HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 May 2025 08:56:48 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4344
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/fonts/themify.woff_-fvbane

198.251.83.106

200 OK

56 kB

URL GET
horizonglobalbank.com/front/fonts/themify.woff_-fvbane
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
Web Open Font Format, CFF, length 56108, version 1.0
Size
56 kB (56108 bytes)
Hash
a1ecc3b826d01251edddf29c3e4e1e97
9394f35bd2addd24666b79bfc36d4f9d247cb01d
0db5c5a1475eb7a3e5028983ea1e642d1b2c00faff6a250a37502b0f3832a4a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/fonts/themify.woff_-fvbane HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/front/css/main.css
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-length: 56108
date: Fri, 25 Apr 2025 08:56:50 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/popper.min.js

198.251.83.106

200 OK

18 kB

URL GET
horizonglobalbank.com/front/js/popper.min.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, ASCII text, with very long lines (18274)
Size
18 kB (18362 bytes)
Hash
0269e72ea643261447a59e685750b1cf
89e76a70f48a2dcb5359a5b6a57badbf77cc5239
18b80e40bb93ae5f8f1d3253b03d8e5d55b51341a27ed78cf42feadd012bcf9f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/popper.min.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6175
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

horizonglobalbank.com/front/js/jquery.fancybox.js

198.251.83.106

200 OK

146 kB

URL GET
horizonglobalbank.com/front/js/jquery.fancybox.js
IP
198.251.83.106:443
ASN
#53667 PONYNET

Requested by
https://horizonglobalbank.com/
Certificate
IssuerLet's Encrypt
Subjecthorizonglobalbank.com
FingerprintAC:9E:8A:0D:18:DA:4E:AF:01:50:39:9E:DC:7B:7A:16:90:31:64:C5
ValidityThu, 24 Apr 2025 21:22:42 GMT - Wed, 23 Jul 2025 21:22:41 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
146 kB (146244 bytes)
Hash
217c1667b830e818ad4e170c25d5222f
e4baa41f4d86be0dc1b127a5d6d8901263216e10
b52a13e34a3c8009c820a585a20add686c108104297527ba38f9c34e15d633c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /front/js/jquery.fancybox.js HTTP/1.1
Host: horizonglobalbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://horizonglobalbank.com/
Cookie: PHPSESSID=k9r75k9cjok1pkms1vjf3vobak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 11:49:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34069
date: Fri, 25 Apr 2025 08:56:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML