Report - dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/

Report Overview

Submitted URL
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
IP
76.76.21.241
ASN
#16509 AMAZON-02
Submitted
2023-11-22 01:01:49
Access
public
Website Title
DHL - GPI
Final URL
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
42

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	1997-09-15	2015-05-10	2023-11-19	444 B	1.5 kB	216.58.207.228
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-11-21	556 B	192 kB	142.250.74.35
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2023-11-21	340 B	942 B	143.204.53.97
vitals.vercel-insights.com	15037	2020-11-20	2020-11-24	2023-11-21	1.1 kB	508 B	52.48.104.75
cdn.cookielaw.org	502	2011-06-20	2013-12-28	2023-11-21	8.7 kB	243 kB	104.18.131.236
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app	unknown	unknown	No data	No data	11 kB	1.6 MB	76.76.21.241

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.
2023-11-21	medium	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/	DHL Airways, Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	cdn.cookielaw.org/scripttemplates/otSDKStub.js	21 kB	2023-11-21	2024-03-23
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.18.131.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-21 03:18:07 Last Seen2024-03-23 05:26:11 Times Seen5183 Hash 653dc5af4212698688db76a143fdd61a 393fada41c29c4d6c85a7857def729bc4d2cecce 9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a Loading...

	www.google.com/recaptcha/api.js	850 B	2023-11-14	2023-12-09
Pretty URL www.google.com/recaptcha/api.js IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 09:30:00 Last Seen2023-12-09 00:06:05 Times Seen5765 Hash 57e10dcd72dd2953878092014eae522b 95ba7e48825c26c5d9395ef2edb73e790bce6fa7 c7b54326365940d062bce26ed41579eebcb4946a86ba280790b603926692bd59 Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/1664-9cffbbd623b4240d.js	6.3 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/1664-9cffbbd623b4240d.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen12 Hash 77a5d9db1f35abef2468193c1b3f609c 824e1b4cbf706e1f163c2528a350d5968e516703 51332cd7e2582f09372832c662271cf8fafe1fbb1b4794d3173bf6948066019b Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/framework-7f2eb667d43508b3.js	141 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/framework-7f2eb667d43508b3.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen16 Hash 2cdf631f7c362a433b60b15aa56ff5fb 745f24f0e6d8fc35c6d40de45739c641de40216e 88b967bd2580f618d215a4ac0367863bb15eb754c25edf11aa03cefadd00b5a1 Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/7397-5cfd49845f83407a.js	67 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/7397-5cfd49845f83407a.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen16 Hash 13964d74d81c6447c29edb0e6448f067 59bf8831c3d7725cd32554ea7092ea74d261b20b e39fcfdac64ee023347e959fd3c61657dc778dc9e62238eec764c2cc90481338 Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/5675-ba696e2944891cbb.js	9.2 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/5675-ba696e2944891cbb.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen12 Hash 4c7dcc7f000640b4915911ad43166881 2f9f6538bf587b9f8f90e492a23cc8ce2a497ab9 c56234374fa65b9b9029d4c46cc2d9923c06cf4b8e6ff7428f9f070016f5275f Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/4853-80838185500543e6.js	12 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/4853-80838185500543e6.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen16 Hash 1ae5ca20fa9b62e5a824625d93880b98 dd4528a326d870613a8e94be0c24a3c9c3731081 bc60f210bbaf77c0fdcc107445870bc37f7aecf3a8e819d419030cef01e0e6f4 Loading...

	cdn.cookielaw.org/scripttemplates/202309.1.0/otBannerSdk.js	434 kB	2023-09-30	2024-07-18
Pretty URL cdn.cookielaw.org/scripttemplates/202309.1.0/otBannerSdk.js IP 104.18.131.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-30 01:29:20 Last Seen2024-07-18 00:23:20 Times Seen72588 Hash 96f89e028e2b8ae303a6ffde5bfe37c6 3429420d79fb0054f98c483f0a6e42054a64ba27 803f9665533b781ac3abb157ba32b9a1f48d3b7a30bada354656d4b89be22610 Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/webpack-9916b8d7f6f29450.js	4.0 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/webpack-9916b8d7f6f29450.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen7 Hash 1733eb7aa6ee019289e2cccf5d98116f 0af330752fc73a2a0126a7ff9deb18b670095b0c aafcae1dd07a12e27b947a7226fefe8c4150a64eea929e9ef3cab5e08ba3f7c7 Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/_app-bcfbcbbeb8c91266.js	473 B	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/_app-bcfbcbbeb8c91266.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen15 Hash 7c61bfee2a605ff3590bc8ffd8aed420 2915b1a7034d6f3ec100b364218cc53d12db3b57 e449e5c02f8ac97c7d6bcd2bb9716b6cbb53d8391f252c8c5288c596ea8a90f3 Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/index-d72143e46dfe6b13.js	7.4 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/index-d72143e46dfe6b13.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen13 Hash 612a1ada99d5f17548c43c1dab712f88 f41686e58dc5ef8f3db7318e9414f22fb7725142 dcecbaebc7cd7a0c7165f500f3369d6700cffcc61415bd986401c0b4b39b5c1b Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_buildManifest.js	7.4 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_buildManifest.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen7 Hash 8f4594c88c1f2c7d002362e846f2074e 250dc27792dfb6a157280f5db11b5c21cb57592a 2fbdce1f64282036917b789dc3b43101e28a576a106eea08272256e9de8f0903 Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_ssgManifest.js	77 B	2023-03-07	2024-07-27
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_ssgManifest.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-07-27 06:42:56 Times Seen99083 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/main-6dbaaaafb15883e2.js	99 kB	2023-11-22	2024-04-18
Pretty URL dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/main-6dbaaaafb15883e2.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 02:01:56 Last Seen2024-04-18 06:28:01 Times Seen16 Hash 46b27b6ccd456b45dd880e55513a5634 d1c8c2fddf40615b384fe760fadbd393702f9968 b3ce67b9423245d4f5557db184c6e5486bd96b50c064065c0177227c465ce48d Loading...

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js	476 kB	2023-11-14	2024-02-06
Pretty URL www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 09:02:02 Last Seen2024-02-06 23:55:04 Times Seen40347 Hash 23b9dd721490a4062ba8d01454ef6ba9 efdbb7331585411f7d397dacbf51fd3e95f3031d 4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7 Loading...

HTTP Transactions (42)

URL IP Response Size

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.18.131.236

200 OK

6.8 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (21099)
Size
6.8 kB (6841 bytes)
Hash
653dc5af4212698688db76a143fdd61a
393fada41c29c4d6c85a7857def729bc4d2cecce
9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: application/javascript
content-length: 6841
content-encoding: gzip
content-md5: /EzX6ku1+i8ak28m1WuIrw==
last-modified: Mon, 20 Nov 2023 21:15:15 GMT
etag: 0x8DBEA0DCA84310B
x-ms-request-id: 633f9b9a-f01e-0004-2b1f-1cb484000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78946
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dd7592e56ae-OSL
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/_app-bcfbcbbeb8c91266.js

76.76.21.241

200 OK

473 B

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/_app-bcfbcbbeb8c91266.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (473), with no line terminators
Size
473 B (473 bytes)
Hash
7c61bfee2a605ff3590bc8ffd8aed420
2915b1a7034d6f3ec100b364218cc53d12db3b57
e449e5c02f8ac97c7d6bcd2bb9716b6cbb53d8391f252c8c5288c596ea8a90f3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/pages/_app-bcfbcbbeb8c91266.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_app-bcfbcbbeb8c91266.js"
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: "7c61bfee2a605ff3590bc8ffd8aed420"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/pages/_app-bcfbcbbeb8c91266.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::nj2l8-1700614890099-071ad5190d8a
content-length: 473
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/1d95f459-6167-408b-962e-a5696635fac1/1d95f459-6167-408b-962e-a5696635fac1.json

104.18.131.236

200 OK

2.0 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/1d95f459-6167-408b-962e-a5696635fac1/1d95f459-6167-408b-962e-a5696635fac1.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (4801), with no line terminators
Size
2.0 kB (1983 bytes)
Hash
737bfde9431832b06d7d67e2c410f2e9
2104da0734324093647c07fa17de914c02e1f628
d1786d3cab215740ebe74d1ba82edd74f7c88aa19ecf8a00fcaeb80ef4a85d94

HTTP Headers

GET /consent/1d95f459-6167-408b-962e-a5696635fac1/1d95f459-6167-408b-962e-a5696635fac1.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: application/x-javascript
content-length: 1983
cf-ray: 829d3dd7c9420b55-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBC57ABEA23346
expires: Thu, 23 Nov 2023 01:01:30 GMT
last-modified: Thu, 05 Oct 2023 08:11:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: w8pnp7SmZKjHfaLcRHH7eA==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d1ecf567-b01e-0015-151f-1c2e30000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js

216.58.207.228

200 OK

1.0 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT

File type
gzip compressed data\012- data
Size
1.0 kB (1027 bytes)
Hash
9330e673b9a164ed8c682e05efaf5ddd
a78a86fc814a958aa4d7c10524166ad4ce39f60e
25b71bf635bf51a90cc6dff7ca9e1cc258d10e983be825f1d5d0bc1961bbc9cd

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 22 Nov 2023 01:01:30 GMT
date: Wed, 22 Nov 2023 01:01:30 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_ssgManifest.js

76.76.21.241

200 OK

77 B

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_ssgManifest.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/MdslMV38lOFNGdYLGAI6z/_ssgManifest.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_ssgManifest.js"
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: "b6652df95db52feb4daf4eca35380933"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/MdslMV38lOFNGdYLGAI6z/_ssgManifest.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::z28hz-1700614890110-07f8ad80e91b
content-length: 77
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/1664-9cffbbd623b4240d.js

76.76.21.241

200 OK

107 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/1664-9cffbbd623b4240d.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (6340), with no line terminators
Size
107 kB (106919 bytes)
Hash
77a5d9db1f35abef2468193c1b3f609c
824e1b4cbf706e1f163c2528a350d5968e516703
51332cd7e2582f09372832c662271cf8fafe1fbb1b4794d3173bf6948066019b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/1664-9cffbbd623b4240d.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1664-9cffbbd623b4240d.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"77a5d9db1f35abef2468193c1b3f609c"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/1664-9cffbbd623b4240d.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::mnftf-1700614890100-3082bc7b385e
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/index-d72143e46dfe6b13.js

76.76.21.241

200 OK

14 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/index-d72143e46dfe6b13.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (7427), with no line terminators
Size
14 kB (13695 bytes)
Hash
612a1ada99d5f17548c43c1dab712f88
f41686e58dc5ef8f3db7318e9414f22fb7725142
dcecbaebc7cd7a0c7165f500f3369d6700cffcc61415bd986401c0b4b39b5c1b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/pages/index-d72143e46dfe6b13.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="index-d72143e46dfe6b13.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"612a1ada99d5f17548c43c1dab712f88"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/pages/index-d72143e46dfe6b13.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::799wv-1700614890109-e67b58de292c
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/media/Delivery_W_Rg.0cb34587.woff

76.76.21.241

200 OK

41 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/media/Delivery_W_Rg.0cb34587.woff
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
Web Open Font Format, TrueType, length 41084, version 1.66\012- data
Size
41 kB (41084 bytes)
Hash
03f859bf58e4d37841070de34be7d978
3436d4fa17e7ee470c3d62b08787cfa7de408408
5af5c3746b03792640b9cafdabddfb2c5407f72988e128541a88fa439607d940

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/media/Delivery_W_Rg.0cb34587.woff HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/css/fd9febbc56d274a8.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="Delivery_W_Rg.0cb34587.woff"
content-type: font/woff
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: "03f859bf58e4d37841070de34be7d978"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/media/Delivery_W_Rg.0cb34587.woff
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::vjcts-1700614890388-ab3c157aeac1
content-length: 41084
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/1d95f459-6167-408b-962e-a5696635fac1/d0b2d24a-3f10-412a-b16e-f41b837161b3/en.json

104.18.131.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/1d95f459-6167-408b-962e-a5696635fac1/d0b2d24a-3f10-412a-b16e-f41b837161b3/en.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (49599), with no line terminators
Size
13 kB (13092 bytes)
Hash
d6808de49e3153d8851a0b01fa5d9643
41c67102c1efc40c5d96464d75061be64b36e3c6
d3042a1576f36911c006ddf095717e52e66f57046caa97745bde17b71812cad9

HTTP Headers

GET /consent/1d95f459-6167-408b-962e-a5696635fac1/d0b2d24a-3f10-412a-b16e-f41b837161b3/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: application/x-javascript
content-length: 13092
cf-ray: 829d3dd9aa070b55-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBC57AC4A36BB3
expires: Thu, 23 Nov 2023 01:01:30 GMT
last-modified: Thu, 05 Oct 2023 08:12:07 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: 9+Fjv8CR7LSBNG/3DRKn1Q==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 58b77aa6-601e-0006-3c1f-1c0a3c000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otFlat.json

104.18.131.236

200 OK

3.0 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otFlat.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (11171)
Size
3.0 kB (3017 bytes)
Hash
4d4429a2dfaa8a27fbe9659e8e717f74
28ad4885ff33594fa46eced61bd42874926aa17c
ea5db5581e262d77d1a43fbb3f0fa3661b51d097b40ca38f584b4943f47cf2e0

HTTP Headers

GET /scripttemplates/202309.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: application/json
content-length: 3017
content-encoding: gzip
content-md5: Ku3O1VFWoltPW4n5m1lGVQ==
last-modified: Thu, 19 Oct 2023 03:29:22 GMT
etag: 0x8DBD053964DC527
x-ms-request-id: 088b2284-401e-0097-529f-1c6f8e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dda1a1d0b55-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202309.1.0/assets/v2/otPcCenter.json

104.18.131.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202309.1.0/assets/v2/otPcCenter.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (51243)
Size
13 kB (12708 bytes)
Hash
901793eec95c3211c0297e8f2f7e9d3a
9e1e8c45cd1f68f9ac3ef71beee4579df6215d0e
0b0a210e89ac35b54a9b4ccb0336ea91c561e6dc5f8bda49574da98d40799c6e

HTTP Headers

GET /scripttemplates/202309.1.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: application/json
content-length: 12708
content-encoding: gzip
content-md5: Xznrm5/jaKmHSjGeIIkHOA==
last-modified: Thu, 19 Oct 2023 03:29:24 GMT
etag: 0x8DBD05397A0A023
x-ms-request-id: 25473e72-301e-0069-541f-1c00cf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dda1a1f0b55-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/233dac18-317c-4c2c-9914-7fac4789526f/95b2bf3e-0ba5-4e38-8cfb-d19cfa4f5bf6/DHL_Logo.PNG

104.18.131.236

200 OK

1.8 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/233dac18-317c-4c2c-9914-7fac4789526f/95b2bf3e-0ba5-4e38-8cfb-d19cfa4f5bf6/DHL_Logo.PNG
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
PNG image data, 197 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1756 bytes)
Hash
c11081bd2b7d36eafeb9e5c5d396d356
38b54ccb126e0b1f98b837bf0d086b44d8935b1b
904b70e4997d2154d462c8514522e03846ba539466c01c3b310a824ea4418caa

HTTP Headers

GET /logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/233dac18-317c-4c2c-9914-7fac4789526f/95b2bf3e-0ba5-4e38-8cfb-d19cfa4f5bf6/DHL_Logo.PNG HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: image/png
content-length: 1756
content-md5: wRCBvSt9Nur+ueXF05bTVg==
last-modified: Wed, 30 Dec 2020 04:42:33 GMT
etag: 0x8D8AC7D53226189
x-ms-request-id: dad01b6a-e01e-0135-28a5-9230e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 71198
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dda9b6e56ae-OSL
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/4853-80838185500543e6.js

76.76.21.241

200 OK

435 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/4853-80838185500543e6.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (9339)
Size
435 kB (434958 bytes)
Hash
1ae5ca20fa9b62e5a824625d93880b98
dd4528a326d870613a8e94be0c24a3c9c3731081
bc60f210bbaf77c0fdcc107445870bc37f7aecf3a8e819d419030cef01e0e6f4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/4853-80838185500543e6.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4853-80838185500543e6.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"1ae5ca20fa9b62e5a824625d93880b98"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/4853-80838185500543e6.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::qkjgq-1700614890108-c688253e547e
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.18.131.236

200 OK

6.8 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (21099)
Size
6.8 kB (6841 bytes)
Hash
653dc5af4212698688db76a143fdd61a
393fada41c29c4d6c85a7857def729bc4d2cecce
9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: application/javascript
content-length: 6841
content-encoding: gzip
content-md5: /EzX6ku1+i8ak28m1WuIrw==
last-modified: Mon, 20 Nov 2023 21:15:15 GMT
etag: 0x8DBEA0DCA84310B
x-ms-request-id: 633f9b9a-f01e-0004-2b1f-1cb484000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 78946
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3ddb3c2256ae-OSL
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_buildManifest.js

76.76.21.241

200 OK

5.6 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/MdslMV38lOFNGdYLGAI6z/_buildManifest.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (7427), with no line terminators
Size
5.6 kB (5607 bytes)
Hash
8f4594c88c1f2c7d002362e846f2074e
250dc27792dfb6a157280f5db11b5c21cb57592a
2fbdce1f64282036917b789dc3b43101e28a576a106eea08272256e9de8f0903

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/MdslMV38lOFNGdYLGAI6z/_buildManifest.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_buildManifest.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"8f4594c88c1f2c7d002362e846f2074e"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/MdslMV38lOFNGdYLGAI6z/_buildManifest.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::j24x5-1700614890111-334bfde84255
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js

142.250.74.35

200 OK

191 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (563)
Size
191 kB (190682 bytes)
Hash
23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7

HTTP Headers

GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Nov 2023 15:17:47 GMT
expires: Tue, 19 Nov 2024 15:17:47 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 121423
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202309.1.0/otBannerSdk.js

104.18.131.236

200 OK

104 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202309.1.0/otBannerSdk.js
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
104 kB (104423 bytes)
Hash
96f89e028e2b8ae303a6ffde5bfe37c6
3429420d79fb0054f98c483f0a6e42054a64ba27
803f9665533b781ac3abb157ba32b9a1f48d3b7a30bada354656d4b89be22610

HTTP Headers

GET /scripttemplates/202309.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: application/javascript
content-length: 104423
content-encoding: gzip
content-md5: wp4bduWb8cLN8oREjFODhQ==
last-modified: Thu, 19 Oct 2023 03:29:28 GMT
etag: 0x8DBD0539A07337D
x-ms-request-id: dbd74625-001e-004d-1f95-02f66f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 64135
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3ddc1cc956ae-OSL
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ac64b045b0cda36677ddc2f32862ff77
5389cfc6caaad0c4845dbfa4c996e4ab044419a1
5eef51faf4a9a2d55d850743f5046f582edb995065d2818d4681e4b8deefa9e1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 22 Nov 2023 01:01:30 GMT
Last-Modified: Tue, 21 Nov 2023 23:50:46 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: S04298ylsqZlrtTxHfC5At9Oz4Zg_av03JNz2iumrnVbz9qAukPMAQ==
Age: 4244

vitals.vercel-insights.com/v1/vitals

52.48.104.75

200 OK

2 B

URL POST HTTP/2
vitals.vercel-insights.com/v1/vitals
IP
52.48.104.75:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerAmazon
Subjectvercel-insights.com
Fingerprint6E:D3:87:6C:53:FE:19:37:3A:70:C1:CF:7F:E6:17:99:3B:86:65:63
ValidityWed, 23 Aug 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /v1/vitals HTTP/1.1
Host: vitals.vercel-insights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 182
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-ratelimit-limit: 1000
x-ratelimit-remaining: 999
x-ratelimit-reset: 60
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/1d95f459-6167-408b-962e-a5696635fac1/d0b2d24a-3f10-412a-b16e-f41b837161b3/en.json

104.18.131.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/1d95f459-6167-408b-962e-a5696635fac1/d0b2d24a-3f10-412a-b16e-f41b837161b3/en.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (49599), with no line terminators
Size
13 kB (13092 bytes)
Hash
d6808de49e3153d8851a0b01fa5d9643
41c67102c1efc40c5d96464d75061be64b36e3c6
d3042a1576f36911c006ddf095717e52e66f57046caa97745bde17b71812cad9

HTTP Headers

GET /consent/1d95f459-6167-408b-962e-a5696635fac1/d0b2d24a-3f10-412a-b16e-f41b837161b3/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:31 GMT
content-type: application/x-javascript
content-length: 13092
cf-ray: 829d3ddceb560b55-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 1
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBC57AC4A36BB3
expires: Thu, 23 Nov 2023 01:01:31 GMT
last-modified: Thu, 05 Oct 2023 08:12:07 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: 9+Fjv8CR7LSBNG/3DRKn1Q==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 58b77aa6-601e-0006-3c1f-1c0a3c000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otFlat.json

104.18.131.236

200 OK

3.0 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otFlat.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (11171)
Size
3.0 kB (3017 bytes)
Hash
4d4429a2dfaa8a27fbe9659e8e717f74
28ad4885ff33594fa46eced61bd42874926aa17c
ea5db5581e262d77d1a43fbb3f0fa3661b51d097b40ca38f584b4943f47cf2e0

HTTP Headers

GET /scripttemplates/202309.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:31 GMT
content-type: application/json
content-length: 3017
content-encoding: gzip
content-md5: Ku3O1VFWoltPW4n5m1lGVQ==
last-modified: Thu, 19 Oct 2023 03:29:22 GMT
etag: 0x8DBD053964DC527
x-ms-request-id: 088b2284-401e-0097-529f-1c6f8e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 1
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3ddd6bac0b55-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202309.1.0/assets/v2/otPcCenter.json

104.18.131.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202309.1.0/assets/v2/otPcCenter.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (51243)
Size
13 kB (12708 bytes)
Hash
901793eec95c3211c0297e8f2f7e9d3a
9e1e8c45cd1f68f9ac3ef71beee4579df6215d0e
0b0a210e89ac35b54a9b4ccb0336ea91c561e6dc5f8bda49574da98d40799c6e

HTTP Headers

GET /scripttemplates/202309.1.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:31 GMT
content-type: application/json
content-length: 12708
content-encoding: gzip
content-md5: Xznrm5/jaKmHSjGeIIkHOA==
last-modified: Thu, 19 Oct 2023 03:29:24 GMT
etag: 0x8DBD05397A0A023
x-ms-request-id: 25473e72-301e-0069-541f-1c00cf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 1
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3ddd6bae0b55-OSL
X-Firefox-Spdy: h2

vitals.vercel-insights.com/v1/vitals

52.48.104.75

200 OK

2 B

URL POST HTTP/2
vitals.vercel-insights.com/v1/vitals
IP
52.48.104.75:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerAmazon
Subjectvercel-insights.com
Fingerprint6E:D3:87:6C:53:FE:19:37:3A:70:C1:CF:7F:E6:17:99:3B:86:65:63
ValidityWed, 23 Aug 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /v1/vitals HTTP/1.1
Host: vitals.vercel-insights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 182
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:31 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-ratelimit-limit: 1000
x-ratelimit-remaining: 999
x-ratelimit-reset: 60
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/images/logo.png

76.76.21.241

200 OK

11 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/images/logo.png
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
PNG image data, 1181 x 167, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10607 bytes)
Hash
6ca57abf5741a5ac9ae8100ff5469b6e
f596e4f8f725b5281768b38ef561573c268648a8
4971fe9d28caa4bb569fa335ab2949528d97d76a97938b0ece6c86b6d306adfb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept: image/avif,image/webp,*/*
accept-language: en-US,en;q=0.5
accept-ranges: bytes
access-control-allow-origin: *
age: 54830
cache-control: no-cache
content-disposition: inline; filename="logo.png"
content-security-policy: default-src 'self' https://v2.dhlgpi.com https://cdn.cookielaw.org; script-src 'self' https://www.google.com https://www.gstatic.com https://cdn.cookielaw.org 'nonce-Zm9vYmFy' 'nonce-8ihJloga9'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; frame-src www.google.com/recaptcha/; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://v2.dhlgpi.com https://vitals.vercel-insights.com https://cdn.cookielaw.org; frame-ancestors 'self'; form-action 'self';
content-type: image/png
date: Wed, 22 Nov 2023 01:01:30 GMT
dnt: 1
etag: "6ca57abf5741a5ac9ae8100ff5469b6e"
forwarded: for=91.90.42.154;host=dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app;proto=https
pragma: no-cache
referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
sec-fetch-dest: image
sec-fetch-mode: no-cors
sec-fetch-site: same-origin
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
x-forwarded-for: 91.90.42.154
x-forwarded-host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
x-forwarded-proto: https
x-matched-path: /images/logo.png
x-nonce: MDE0NjgxNGUtY2RhZi00YzMzLWFiNDUtZTJhODlmZDI2MzNi
x-real-ip: 91.90.42.154
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-deployment-url: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
x-vercel-edge-region: arn1
x-vercel-id: arn1:arn1::qkjgq-1700614890389-384b677c986b
x-vercel-ip-city: Lorenskog
x-vercel-ip-country: NO
x-vercel-ip-country-region: 30
x-vercel-ip-latitude: 59.9381
x-vercel-ip-longitude: 10.9551
x-vercel-ip-timezone: Europe/Oslo
x-vercel-proxied-for: 91.90.42.154
content-length: 10607
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otCommonStyles.css

104.18.131.236

200 OK

22 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otCommonStyles.css
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (21778), with no line terminators
Size
22 kB (21778 bytes)
Hash
73bc4067d312180a1b19a4d883f42d6a
ad328a9a572fbea43f295e7769835ff08f6ff1fd
d3f7b0ec4de079928a999641e781e80f33597a392a561bc460276dfb4efb6eec

HTTP Headers

GET /scripttemplates/202309.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: text/css
content-md5: c7xAZ9MSGAobGaTYg/Qtag==
last-modified: Thu, 19 Oct 2023 03:29:33 GMT
x-ms-request-id: d48fa1ef-e01e-0008-7a1f-1c238c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dda1a200b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/privacy-d58d650ac4366715.js

76.76.21.241

200 OK

0 B

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/privacy-d58d650ac4366715.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/pages/privacy-d58d650ac4366715.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="privacy-d58d650ac4366715.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:31 GMT
etag: W/"d389af616dfcc2f8a0e5d29173d39f03"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/pages/privacy-d58d650ac4366715.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::4vgl4-1700614891028-b8f9a12739e2
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/framework-7f2eb667d43508b3.js

76.76.21.241

200 OK

141 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/framework-7f2eb667d43508b3.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (65201)
Size
141 kB (141011 bytes)
Hash
2cdf631f7c362a433b60b15aa56ff5fb
745f24f0e6d8fc35c6d40de45739c641de40216e
88b967bd2580f618d215a4ac0367863bb15eb754c25edf11aa03cefadd00b5a1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/framework-7f2eb667d43508b3.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="framework-7f2eb667d43508b3.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"2cdf631f7c362a433b60b15aa56ff5fb"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/framework-7f2eb667d43508b3.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::vjcts-1700614890098-ad0afb319758
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otCommonStyles.css

104.18.131.236

200 OK

22 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202309.1.0/assets/otCommonStyles.css
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (21778), with no line terminators
Size
22 kB (21778 bytes)
Hash
73bc4067d312180a1b19a4d883f42d6a
ad328a9a572fbea43f295e7769835ff08f6ff1fd
d3f7b0ec4de079928a999641e781e80f33597a392a561bc460276dfb4efb6eec

HTTP Headers

GET /scripttemplates/202309.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:31 GMT
content-type: text/css
content-md5: c7xAZ9MSGAobGaTYg/Qtag==
last-modified: Thu, 19 Oct 2023 03:29:33 GMT
x-ms-request-id: d48fa1ef-e01e-0008-7a1f-1c238c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3ddd6baf0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/favicon.ico

76.76.21.241

200 OK

163 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/favicon.ico
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
MS Windows icon resource - 1 icon, 256x-102, 32 bits/pixel\012- data
Size
163 kB (162686 bytes)
Hash
ef3891cb7a34d5f61cb9b6dbd88c0baa
a7e79602ef9b32646db299fa2e8f1772e5c258a2
c2a2fa60f2c8460d4670f96737f56fc890a7118645feb58a9ebe49a3b4a82b26

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="favicon.ico"
content-encoding: br
content-type: image/vnd.microsoft.icon
date: Wed, 22 Nov 2023 01:01:31 GMT
etag: W/"ef3891cb7a34d5f61cb9b6dbd88c0baa"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /favicon.ico
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::799wv-1700614890777-8e1db61c71ed
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/

76.76.21.241

200 OK

6.1 kB

URL User Request GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6371), with no line terminators
Size
6.1 kB (6089 bytes)
Hash
803fec8a89373d02fc247b0ab0dbfda9
933027b57993544a3afc192db2178b0f3250e1ad
0f77aff4b76a693bd5f3ab6452400b20990a33d1f0b66fed969208ca70526fd7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET / HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
accept-language: en-US,en;q=0.5
access-control-allow-origin: *
age: 82586
cache-control: no-cache
content-disposition: inline
content-encoding: br
content-security-policy: default-src 'self' https://v2.dhlgpi.com https://cdn.cookielaw.org; script-src 'self' https://www.google.com https://www.gstatic.com https://cdn.cookielaw.org 'nonce-Zm9vYmFy' 'nonce-8ihJloga9'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; frame-src www.google.com/recaptcha/; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://v2.dhlgpi.com https://vitals.vercel-insights.com https://cdn.cookielaw.org; frame-ancestors 'self'; form-action 'self';
content-type: text/html; charset=utf-8
date: Wed, 22 Nov 2023 01:01:29 GMT
dnt: 1
etag: W/"9485f0e8add4369ae24a689a77c84438"
forwarded: for=91.90.42.154;host=dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app;proto=https
pragma: no-cache
sec-fetch-dest: document
sec-fetch-mode: navigate
sec-fetch-site: cross-site
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
x-forwarded-for: 91.90.42.154
x-forwarded-host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
x-forwarded-proto: https
x-matched-path: /
x-nonce: NGI4MGFjMGQtMmU4Yi00YmYxLTg5ZWQtYmYyNDdjNmFiZThi
x-real-ip: 91.90.42.154
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-deployment-url: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
x-vercel-edge-region: arn1
x-vercel-id: arn1:arn1::4vgl4-1700614889090-75ac2009496f
x-vercel-ip-city: Lorenskog
x-vercel-ip-country: NO
x-vercel-ip-country-region: 30
x-vercel-ip-latitude: 59.9381
x-vercel-ip-longitude: 10.9551
x-vercel-ip-timezone: Europe/Oslo
x-vercel-proxied-for: 91.90.42.154
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/7397-5cfd49845f83407a.js

76.76.21.241

200 OK

67 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/7397-5cfd49845f83407a.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (63906)
Size
67 kB (66884 bytes)
Hash
13964d74d81c6447c29edb0e6448f067
59bf8831c3d7725cd32554ea7092ea74d261b20b
e39fcfdac64ee023347e959fd3c61657dc778dc9e62238eec764c2cc90481338

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/7397-5cfd49845f83407a.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="7397-5cfd49845f83407a.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"13964d74d81c6447c29edb0e6448f067"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/7397-5cfd49845f83407a.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::4vgl4-1700614890101-7a3786f9ff2d
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/tnc-9e8913eb04df4956.js

0.0.0.0

0 B

URL GET
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/pages/tnc-9e8913eb04df4956.js
IP
0.0.0.0:0
ASN
#0

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/pages/tnc-9e8913eb04df4956.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/images/login-bg.jpg

76.76.21.241

200 OK

431 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/images/login-bg.jpg
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2401, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=3600], baseline, precision 8, 1920x1089, components 3\012- data
Size
431 kB (430779 bytes)
Hash
21701304f993f4f78ef53658a0e36496
f538106869ede3d89fe99bfe97754d5f04620815
143f456188f25191ac5d169bee839295dae78beaddb763b564853b285b530961

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /images/login-bg.jpg HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/css/fd9febbc56d274a8.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept: image/avif,image/webp,*/*
accept-language: en-US,en;q=0.5
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: no-cache
content-disposition: inline; filename="login-bg.jpg"
content-security-policy: default-src 'self' https://v2.dhlgpi.com https://cdn.cookielaw.org; script-src 'self' https://www.google.com https://www.gstatic.com https://cdn.cookielaw.org 'nonce-Zm9vYmFy' 'nonce-8ihJloga9'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; frame-src www.google.com/recaptcha/; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://v2.dhlgpi.com https://vitals.vercel-insights.com https://cdn.cookielaw.org; frame-ancestors 'self'; form-action 'self';
content-type: image/jpeg
date: Wed, 22 Nov 2023 01:01:30 GMT
dnt: 1
etag: "21701304f993f4f78ef53658a0e36496"
forwarded: for=91.90.42.154;host=dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app;proto=https
pragma: no-cache
referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/css/fd9febbc56d274a8.css
sec-fetch-dest: image
sec-fetch-mode: no-cors
sec-fetch-site: same-origin
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
x-forwarded-for: 91.90.42.154
x-forwarded-host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
x-forwarded-proto: https
x-matched-path: /images/login-bg.jpg
x-nonce: ZmM0NzFkYWYtODBlZC00MWMxLTlhYzEtMWUzYmUzZWNiYzMy
x-real-ip: 91.90.42.154
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-deployment-url: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
x-vercel-edge-region: arn1
x-vercel-id: arn1:arn1::4vgl4-1700614890387-53df357e40df
x-vercel-ip-city: Lorenskog
x-vercel-ip-country: NO
x-vercel-ip-country-region: 30
x-vercel-ip-latitude: 59.9381
x-vercel-ip-longitude: 10.9551
x-vercel-ip-timezone: Europe/Oslo
x-vercel-proxied-for: 91.90.42.154
content-length: 430779
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/powered_by_logo.svg

104.18.131.236

200 OK

5.2 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5220), with no line terminators
Size
5.2 kB (5194 bytes)
Hash
38b5388f36f8f885deb26afdac0e3116
112eccab1891a3a7cab1c5602ba72c9e127136e0
a8562f11c5a80a5c1c4ab388cfa2a69598203a57a5c67d1f80512bddd80d09ef

HTTP Headers

GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Mon, 20 Nov 2023 21:15:22 GMT
x-ms-request-id: 32f180fb-b01e-0093-2a2e-1ce289000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 64301
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dda9b6f56ae-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/data/MdslMV38lOFNGdYLGAI6z/tnc.json

76.76.21.241

200 OK

3 B

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/data/MdslMV38lOFNGdYLGAI6z/tnc.json
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
fdf48e6b3239e0b378031fb47d5b202a
b1806f381758bc595c29988c05ef5e0ef580c90a
fcd393d2c13bad308661b62b34d9c3234a3ce840e22909b0a180e85f76b5d24d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/data/MdslMV38lOFNGdYLGAI6z/tnc.json HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
purpose: prefetch
x-middleware-prefetch: 1
x-nextjs-data: 1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
date: Wed, 22 Nov 2023 01:01:31 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /tnc
x-middleware-skip: 1
x-robots-tag: noindex
x-vercel-id: arn1::qkjgq-1700614890814-90e065e9fe70
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/ot_guard_logo.svg

104.18.131.236

200 OK

497 B

URL GET HTTP/2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (507), with no line terminators
Size
497 B (497 bytes)
Hash
4cefeea2da1f500b581d4842d6454a50
9939dd4c1394641f53655e558bfdca7499480c52
220f235f0188ff469b92b56eb86adf4e828b8a90c587ebfa073383b8583aaeb2

HTTP Headers

GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:31 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Mon, 20 Nov 2023 21:15:21 GMT
x-ms-request-id: ade5ac52-401e-0063-361f-1ca478000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dde5c5d0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/5675-ba696e2944891cbb.js

76.76.21.241

200 OK

9.2 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/5675-ba696e2944891cbb.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (9383), with no line terminators
Size
9.2 kB (9163 bytes)
Hash
43cb1fc808a318fedde2e4cebadab92a
b8610f741c8c55eb44a2723713b05513b10fbf52
bacf8a6c05a405f6193b17ea0f38aa112e4f54c8cd0b30b266080d34884215b8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/5675-ba696e2944891cbb.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="5675-ba696e2944891cbb.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"4c7dcc7f000640b4915911ad43166881"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/5675-ba696e2944891cbb.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::z28hz-1700614890103-9a6bb63e1086
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/ot_guard_logo.svg

104.18.131.236

200 OK

497 B

URL GET HTTP/2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (507), with no line terminators
Size
497 B (497 bytes)
Hash
4cefeea2da1f500b581d4842d6454a50
9939dd4c1394641f53655e558bfdca7499480c52
220f235f0188ff469b92b56eb86adf4e828b8a90c587ebfa073383b8583aaeb2

HTTP Headers

GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Origin: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 22 Nov 2023 01:01:30 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Mon, 20 Nov 2023 21:15:21 GMT
x-ms-request-id: ade5ac52-401e-0063-361f-1ca478000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 829d3dda9a450b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/data/MdslMV38lOFNGdYLGAI6z/privacy.json

76.76.21.241

200 OK

3 B

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/data/MdslMV38lOFNGdYLGAI6z/privacy.json
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
fdf48e6b3239e0b378031fb47d5b202a
b1806f381758bc595c29988c05ef5e0ef580c90a
fcd393d2c13bad308661b62b34d9c3234a3ce840e22909b0a180e85f76b5d24d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/data/MdslMV38lOFNGdYLGAI6z/privacy.json HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
purpose: prefetch
x-middleware-prefetch: 1
x-nextjs-data: 1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
date: Wed, 22 Nov 2023 01:01:30 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /privacy
x-middleware-skip: 1
x-robots-tag: noindex
x-vercel-id: arn1::mnftf-1700614890818-c051b3f2a0e1
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/css/fd9febbc56d274a8.css

76.76.21.241

200 OK

20 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/css/fd9febbc56d274a8.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (19524)
Size
20 kB (19588 bytes)
Hash
bf074d9f6782ac1c696d1305da8a96fd
9519ff3a7e275d3eb0e03c270c16de6de068f333
9201ab50e84746ae6644396ba304f69b636773b59959bfc067302b87a03d4e98

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/css/fd9febbc56d274a8.css HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="fd9febbc56d274a8.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"bf074d9f6782ac1c696d1305da8a96fd"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/css/fd9febbc56d274a8.css
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::swcbc-1700614890096-4f545c2bad41
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/main-6dbaaaafb15883e2.js

76.76.21.241

200 OK

99 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/main-6dbaaaafb15883e2.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
99 kB (99186 bytes)
Hash
46b27b6ccd456b45dd880e55513a5634
d1c8c2fddf40615b384fe760fadbd393702f9968
b3ce67b9423245d4f5557db184c6e5486bd96b50c064065c0177227c465ce48d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/main-6dbaaaafb15883e2.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="main-6dbaaaafb15883e2.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"46b27b6ccd456b45dd880e55513a5634"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/main-6dbaaaafb15883e2.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::4vgl4-1700614890098-1b9b55889d9f
X-Firefox-Spdy: h2

dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/webpack-9916b8d7f6f29450.js

76.76.21.241

200 OK

4.0 kB

URL GET HTTP/2
dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/_next/static/chunks/webpack-9916b8d7f6f29450.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
FingerprintBB:8B:2C:D9:45:95:D5:D8:FC:8A:8D:67:56:71:D5:99:AD:F6:D5:FE
ValidityMon, 25 Sep 2023 03:14:47 GMT - Sun, 24 Dec 2023 03:14:46 GMT

File type
ASCII text, with very long lines (4103), with no line terminators
Size
4.0 kB (4022 bytes)
Hash
47ac5fb0f934a251de049a4b25f8b2ec
9ad4eb45230c81e38e7006e7ea9bf725260bf731
b0ffdc89d268fd44fe26c9621b521ee624ae38f64f3766fc3947c63bf8372a2d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /_next/static/chunks/webpack-9916b8d7f6f29450.js HTTP/1.1
Host: dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhlgpi-v2-frontend-fog0edws8-darvinhuangg.vercel.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="webpack-9916b8d7f6f29450.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 22 Nov 2023 01:01:30 GMT
etag: W/"1733eb7aa6ee019289e2cccf5d98116f"
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-matched-path: /_next/static/chunks/webpack-9916b8d7f6f29450.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::nj2l8-1700614890097-877bad87041f
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by