ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/clientlib-core.min.css
104.21.13.74200 OK 29 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/clientlib-core.min.css
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with no line terminators
Hash b104a4a85c21511ada13e2c6e7552d37
475c6eb572d41f86d612ef9d8d64c2cd9ae95980
34a8d4f240f1b7a01d0472d5367e1bc57e17f70a12a91aae37dcac3b33b24732
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/clientlib-core.min.css HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/css
content-length: 29
last-modified: Fri, 01 Dec 2023 18:20:14 GMT
etag: "1d-60b76d1d32d10"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1492
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wmMfJG5tkdjZIzK2ir%2FxDWmxiHGiSOsdyfU0qCvcSFC%2BLNImfIs6E5C6%2FIOcsjMZEo1N4rDG2yeHeO60m%2BKCxlxtu09%2FAaZHXyRAezTtKCIihgqy%2BEi%2BydUDkxrkvco0rLnE6KPsN9zVGyVdyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833778b6d7128-OSL
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/deliverer-opening-vehicle-0001.jpeg
104.21.13.74200 OK 121 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/deliverer-opening-vehicle-0001.jpeg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 121 kB (120559 bytes)
Hash d88640f91e9b6e4ad6bda07acc86275c
3db45806f903667617c6683a131322002f44c3ef
14e8bf2e2854123e05fb7b000ac51f98afc8528ef028d9f2a5f542a96dfdc924
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/deliverer-opening-vehicle-0001.jpeg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/jpeg
content-length: 120559
last-modified: Fri, 01 Dec 2023 18:20:17 GMT
etag: "1d6ef-60b76d1f8aab7"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gtw%2BYAYdkuZg2mtEn%2FWvMwPWcD0iMT0K9YsH25zEFazhOVj%2Ft3vkE0ANO8o8Vz%2BUzwOUxU7izsQKJ3xK%2BK%2B0H9YpbNOumRLlvxxGHWLTLYwu5563WhkhzFZKXO6fBnwylpN6d%2BKsuILRBh4S7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b7d7128-OSL
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/workers-in-warehouse-0001.jpeg
104.21.13.74200 OK 266 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/workers-in-warehouse-0001.jpeg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 266 kB (266186 bytes)
Hash 90a376c3cd4faa4c3579c2e8d5540071
8acaf40b974c53ee1645e1820e1f41b6e5964db8
9f709c306c5c297d7c00d80ca9f9e84680b0f1eb9f072a21b66a9cc5c7a1a182
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/workers-in-warehouse-0001.jpeg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/jpeg
content-length: 266186
last-modified: Fri, 01 Dec 2023 18:20:39 GMT
etag: "40fca-60b76d34f593a"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5KzesiMJ2I4fpQKOHjAkwMwNzlZRDQNhL9QoMi4n5oj9FzmbYDIxyQeshVNbvFJHZjvogZH5Oq%2BdnVI95wfCosbbWwrVVDbiujjPm9dxDy1zZTniC71AarXxkZtTDW7ZKs7EOtltVCRWg18m6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b807128-OSL
alt-svc: h3=":443"; ma=86400
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-5a6dd86f272b304a8b83.woff
96.6.17.154200 OK 41 kB URL GET HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-5a6dd86f272b304a8b83.woff
IP 96.6.17.154:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT
File type Web Open Font Format, TrueType, length 41352, version 1.66\012- data
Hash 4e23ecf085132857bdb54b4da7373151
a50215c22a591536b21e509100d1707c6886ffd6
b033eff45e6e8ecd5c5bccd8ef9a96c4dc37325adc64c5aed8b1d909b24c4eb4
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-5a6dd86f272b304a8b83.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ftp.rastreo-es-mx-home.com/
Origin: https://ftp.rastreo-es-mx-home.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Thu, 27 Apr 2023 18:48:09 GMT
etag: "a188-5fa55cc3a1bf1-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 41322
content-type: application/font-woff
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:34:01 GMT
date: Tue, 05 Dec 2023 00:34:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2
ftp.rastreo-es-mx-home.com/
172.67.198.200200 OK 72 kB URL User Request GET HTTP/2 ftp.rastreo-es-mx-home.com/
IP 172.67.198.200:443
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (682)
Hash 4bfc1f68ed15df2ef32792047948e334
f90086c36777543113a5a4c6dd8d9eba0fc4b237
3cc96d09ba8a286bfe41076f1046a8c1f29a9ac6e59fa81c0574e7184647bad1
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET / HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OoNAbdPbTuE8DAxbxFTvSv60OHRFfHj4BDOV22L4pwABZpRVHyXiwYqBNlvOI%2By8qiCtYVuBTeu%2BAMjcq8KFiLJvgzyHLAOPShSdBr4eeREIyAu2%2FMmArtdqHjkdO8WCycMAzREfgH%2FFzKNRTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833758d0a5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-815fcbb4d2c579017011.woff
96.6.17.154200 OK 41 kB URL GET HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-815fcbb4d2c579017011.woff
IP 96.6.17.154:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT
File type Web Open Font Format, TrueType, length 41328, version 1.66\012- data
Hash e39bd2e2657ce5dd6f9c33df18529233
6db81ebb91bfa67cef8f2f870f03046150568799
19d0bda83ecbc986620468801adf000c77c3c38398650903c63fac8dcbac4383
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-815fcbb4d2c579017011.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ftp.rastreo-es-mx-home.com/
Origin: https://ftp.rastreo-es-mx-home.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Thu, 27 Apr 2023 08:32:05 GMT
etag: "a170-5fa4d310c72f5-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 41263
content-type: application/font-woff
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:34:01 GMT
date: Tue, 05 Dec 2023 00:34:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-3e828e80f6e985c352eb.woff
96.6.17.154200 OK 44 kB URL GET HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-3e828e80f6e985c352eb.woff
IP 96.6.17.154:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT
File type Web Open Font Format, TrueType, length 44260, version 1.66\012- data
Hash 4a350e02a03ac62e72e9ea575b31ce84
d47b03b96b6e7034a1473a293bb594e597a41dc2
87c40e3961e21f759770615ae67568a3de3ec6e0735f1238a6aae062f4ea15d5
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-3e828e80f6e985c352eb.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ftp.rastreo-es-mx-home.com/
Origin: https://ftp.rastreo-es-mx-home.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 12:35:44 GMT
etag: "ace4-5eda9d3ee5eff-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 44219
content-type: application/font-woff
mpulse_cdn_cache: MISS
mpulse_origin_time: 168
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:34:01 GMT
date: Tue, 05 Dec 2023 00:34:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/iconfont-f2a1844613e842cf9c18.woff
96.6.17.154200 OK 35 kB URL GET HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/iconfont-f2a1844613e842cf9c18.woff
IP 96.6.17.154:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT
File type Web Open Font Format, TrueType, length 34668, version 1.0\012- data
Hash 5246f1e9f94c13d3f889d24b1f777993
24df48c43d5a4d9375489b5bbc45aff203bcf59d
4335b993b1e481eaaa5aa6bc30daf862ebf973e704a491092db5a72b35d338a5
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/iconfont-f2a1844613e842cf9c18.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ftp.rastreo-es-mx-home.com/
Origin: https://ftp.rastreo-es-mx-home.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Thu, 27 Apr 2023 08:33:27 GMT
etag: "876c-5fa4d35eed4ff-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 34661
content-type: application/font-woff
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:34:01 GMT
date: Tue, 05 Dec 2023 00:34:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/lGGYB
104.21.13.74200 OK 229 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/lGGYB
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
Size 229 kB (228787 bytes)
Hash 8a0d11560ba2f93233d2f727a93604f2
f48afc49824433e43b2d058a05a22ad6476db88b
5f9e199f23b80f24166017f602b9f32335d63c8a83286b002e3fa841eb65ee8f
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/lGGYB HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-length: 228787
last-modified: Fri, 01 Dec 2023 18:20:29 GMT
etag: "37db3-60b76d2b835d7"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MjAERCMANC%2FpsahgsdM%2BbwAvHH7ylvt9dRW5MIkoiQirxVr3pyIW2%2BJcoNSpm8eFx8HMy3jGELNZMD3m6zGOl7l9inpEHHg45CjUjHm9RpM%2FF0jz%2FkuGOTyXIjtnTEy5sMdFDSSF8FxkMcqG5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83083377ab8f7128-OSL
alt-svc: h3=":443"; ma=86400
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
23.38.200.237200 OK 12 kB URL GET HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP 23.38.200.237:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32768)
Hash d860c16ac938f7d839f0ec158d02d0f0
8710f81ed151233677f7e32b229cb35293dd6840
9219086b4f2c3bf77854b2e06ccd97ad32b9b7a140e65ff8b974a3bae6c7854c
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
expires: Tue, 05 Dec 2023 01:34:02 GMT
date: Tue, 05 Dec 2023 00:34:02 GMT
cache-control: no-cache
access-control-allow-origin: https://ftp.rastreo-es-mx-home.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
23.38.200.237200 OK 1.6 kB URL GET HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP 23.38.200.237:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3155)
Hash 2d1382c349d480b6b41574ac0c1af066
53ddf017aa6b66b4d54ea0818dc5c04789b9e5ae
462a66acbf50e933685e7587e9f1441df8225b2bb4d6b7bc5e757eccf4ff6575
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Tue, 05 Dec 2023 01:34:02 GMT
date: Tue, 05 Dec 2023 00:34:02 GMT
cache-control: no-cache
access-control-allow-origin: https://ftp.rastreo-es-mx-home.com
timing-allow-origin: *
X-Firefox-Spdy: h2
ftp.rastreo-es-mx-home.com/assets/fonts/default-3e828e80f6e985c352eb.woff
104.21.13.74404 Not Found 7.1 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/assets/fonts/default-3e828e80f6e985c352eb.woff
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
Hash ad6bddd5cdb137b9828c259120654035
dd0f382a13e50ecfef917fafce9c7df6c4632313
0b2d6ce1469c6df67871d8ef915e076917cbd80a1573b9356e215df99a027063
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /assets/fonts/default-3e828e80f6e985c352eb.woff HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F1%2BTbj%2FAwMadoRWabKaYtci4EUaRhjWdwK7MpXh4Psx3HYkoP3zbdvVtY7zNvHqX15iB2vLumvs%2Bmk6VMTpMLp%2BJ094mfndh8ZBQ4cic870KelSCD9OntL2OI98u9voH70H3G8TJKMNOED5BDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8308337c7d317128-OSL
alt-svc: h3=":443"; ma=86400
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png
96.6.17.154200 OK 1.2 kB URL GET HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png
IP 96.6.17.154:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 6e5f4e072a2793f9d9cd2a6974d5ccc9
df0d0b28ae71a37dd321d33435c3143a446e2741
148a09a41b13df86b44d2a1f70e2482e5d31fd91ce540a0dbe016011a5fd29b9
GET /etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Thu, 09 Nov 2023 16:12:33 GMT
etag: "495-609ba78a6a442"
accept-ranges: bytes
content-length: 1173
content-type: image/png
expires: Tue, 12 Dec 2023 00:34:02 GMT
date: Tue, 05 Dec 2023 00:34:02 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
cache-control: public, max-age=604800, stale-while-revalidate=86400
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/favicon.ico
96.6.17.154 325 B URL GET www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/favicon.ico
IP 96.6.17.154:0
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash d8106bf3a1d00ab43b01e6e3c92500eb
202b5e8654ab1b28351378293bca3b9d844cc29b
9ada5709e264c31b04a05bd85448a9bd5e91925e8d83df5cef0762ec97cc283e
GET /etc/clientlibs/dhl/clientlib-all/assets/favicon.ico HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Thu, 09 Nov 2023 18:45:31 GMT
etag: "47e-609bc9bb4ef14-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 325
content-type: image/vnd.microsoft.icon
expires: Tue, 12 Dec 2023 00:34:02 GMT
date: Tue, 05 Dec 2023 00:34:02 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
cache-control: public, max-age=604800, stale-while-revalidate=86400
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-ui.a076c9e355ebaef1a87910cd47836dfa.js
104.21.13.74200 OK 4.0 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-ui.a076c9e355ebaef1a87910cd47836dfa.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (4056), with no line terminators
Hash 1aa69829da09501fef3ac0845b6d5e3c
a4d35f50e44414ddfd052a790eda605778133f53
92bb12e4cbc1cc4708967f31bd7d6e24a4f92c48f594a648cc5cbf0aec1ebc76
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-ui.a076c9e355ebaef1a87910cd47836dfa.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:04 GMT
etag: W/"f76-60b76d13d51ce-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bQ3aXJfzd%2FPn%2BvhJHr6%2BLfd41kqwFdusvmjt1xCpPJFsVAZYzhRqeEc96wzAmYIC%2Fr%2FCTkEKitkmzAc8FqHeEBrrcQF1xDLvwJjyTnj6uolHnaF%2FYTtF4LWucjeNa%2BfPC08q4VKoxnXnRfQ9lQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83083377ab8d7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/glo-footer-logo.svg
104.21.13.74200 OK 4.5 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/glo-footer-logo.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (4587), with no line terminators
Hash 8f37de832621c4bdc03b3ec5dc89102f
0d541c551bd89a54f728da1742c87cc839f25333
3993bd27849b8e4418664102b2a7d84b37e39a8f77dc1e6457c45ad4098c8514
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/glo-footer-logo.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:19 GMT
etag: W/"1197-60b76d21be255"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X%2F7a2Uh282f9vZWGGygvgRZHgcl%2B6zoqUCFaQdvPlHUFGY8LziaJxyCuolSjmsI43T5DBJwnLjEp8ktAZKyZFLuzGCj0v%2BVlbsLmUk%2Bfz6VlfuRcGeUlrsaqW9Ew%2BBKSCZzXcxY0SXe5QqXNkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b837128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/linkedIn-new.svg
104.21.13.74200 OK 1.6 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/linkedIn-new.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1687), with no line terminators
Hash 730bcfccbcc08137f809f22dc2d123db
f7a1d9f253df1e93b9b3db8636d25cbdeee5787b
e8d1c56a40d02306a8a570b9dbb490b04e50b4c27c40f59d3b8ff137326d79e6
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/linkedIn-new.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:30 GMT
etag: W/"66f-60b76d2c2e437"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XoVczgqMmtRVg0CdLyqxFhGq8y3tkTJxGINLC1yU%2BCxAU2XGdnGya3H2z%2BiYc0xaQLBhxCDfo4AQx56me6LxvAD4KDM81T70ZTcrGZ%2FL1XL0iMQkLqxDGZkKJAiqJlKjmIT7kTg7GR2KJmyQtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b887128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/instagram-new.svg
104.21.13.74200 OK 4.5 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/instagram-new.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4548), with no line terminators
Hash 00065a4ffd8620e0daca6af7aefbfb39
92cc496ae1f427693d6b891c7e5db9266cbba999
6a1d2fa05879d3712869458c8c95cf7a21d2c8e922097bf659f9faaab5a232a3
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/instagram-new.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:20 GMT
etag: W/"119c-60b76d227c935"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gx75gyI50SUgm0oaCmDB%2FIo5vjYG2mh%2BR9b8ZqyUC58eI2dghPUB38fhutBlyG%2BLBZVcMU8yQANJqFY7WJWCudAn%2BTe4xedGsxOyGtNSrDlPd7qF8jpqfedsp3uE8J6y7zoEBO2AJ%2Fl3PnSiKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b897128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-logic.a076c9e355ebaef1a87910cd47836dfa.js
104.21.13.74200 OK 217 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-logic.a076c9e355ebaef1a87910cd47836dfa.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 217 kB (216812 bytes)
Hash 733888b0401acdc249534007f6283177
3681ff52c537a675dca5d6072962386459c1fa73
acf4802e351104cef852e1b1504ca0bcf123b7ea72d4d0e8dde9e3dd81d0e861
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-logic.a076c9e355ebaef1a87910cd47836dfa.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:03 GMT
etag: W/"34eec-60b76d126957f-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bzby4P1vuEEeTSoUnKKcLV8CYCBve81itZAkj9BrBZ8bMUHUXH05kHAr9ZazmRhjtU6J1douvirMiJzjSwv3YgW1H%2FOJk51ZGhm2OrTkcDgtz%2BbFioui%2FlKjuBO6p6OAGduGlXGdy9ML5ZOpbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83083377ab8b7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-logic.a076c9e355ebaef1a87910cd47836dfa.css
104.21.13.74200 OK 37 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-logic.a076c9e355ebaef1a87910cd47836dfa.css
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (36838), with no line terminators
Hash edd356b2e11829c260c8ac38f84fe920
597d0f3de2785fde690624dd58f8f87d26c82fd9
0b3727c4992b4befa43f3c9602727314383cbe5448a47553b1d6e473566015cc
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-logic.a076c9e355ebaef1a87910cd47836dfa.css HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/css
last-modified: Fri, 01 Dec 2023 18:20:01 GMT
etag: W/"8fe6-60b76d1105dff-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fjpS0z9Bu6M0j5B3LAssrnVPWEQqHZfJbn6fXea5pDGkvOgDJIagez%2FckOmwEWxSzVkDAS19UzK3LBnDkoSAbNWrVbKnxMCBIS9ZMOnh3ZrhEYsYOzHxTl5lN1YBw3Xbiehctu6VCseiB649Pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833778b687128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/dhl-logo.svg
104.21.13.74200 OK 1.6 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/dhl-logo.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1727), with no line terminators
Hash 81da319018ec6b19d902b2403f7b017d
fc9e5d348bf1394d29114340e224e8f92b543e19
5a3d930217a60c991040b3bcd1d3c42e5860a395461cc04454d5626cf0869bfc
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/dhl-logo.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:17 GMT
etag: W/"643-60b76d204763e"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n91yK8PHjuqC3EyIoh8bPkBCsdRZ5g3FPCSyQ2X24LpByABCBffr3BUIQwe13B62c7hHzReuT9HYqL7zquyPACx91V8YSVYhwPN4t0dBZFtVkai%2FonsD41lcPl%2F9Pq7tGm4ulpfUJT2v%2BYvKbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b7c7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/script.js
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/script.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /script.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G05LRzJuu6%2F39Ct8efEFNE6sSSDz8eBub5DvfUbhEo7mxokStZ4Ps4KCmB6GfFE2SdJhRA3JYxQq2TVcBJj9MkG%2Fnf0JZT7U3GJczkFrGNIOZA%2Fok8oUl451QeC35Vo9I05xOO8wo%2FvPKoe2wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b817128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/sec-4-0.css
104.21.13.74200 OK 2.1 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/sec-4-0.css
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (2078), with no line terminators
Hash 498fb006bbf66be1eed85ad3cc6c9e3f
0ebd31bcf90489d6cf259352d71d8130dc531e0c
aff4c2b7f1bb2c2dc7fc37c048a152d29afb634530d4874e3372f28722d97bdf
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/sec-4-0.css HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/css
last-modified: Fri, 01 Dec 2023 18:20:36 GMT
etag: W/"81b-60b76d321157b-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BcsKrQ%2FPva4fteJ16AweYpHe5BWSYkztsb9zd6y0rtq%2F7q3tF%2B9K1vkrcUfSzAHnVJ8hse0FI8h2NwKvcBN9JRftvzm66YMrPgKOX1rsmYFioFMuLj5fdmZAA0A7NBGeBtGaF2XsBRrvjNrQ2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83083377ab907128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OSlmx2aGh%2B3dNhir6tKRxSDHM66HpCJqAA8nYSSAkXbeNqZMuwy1CSILauZxYe7Y6yxL3lfj%2F47T19VpBy9OvivCenhmkuSdu6DbaYUfppUlNi4%2FGkWasN2yV1VZUX4L5oWE2NnV2M%2FkavNz8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8308337bcce57128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/clientlib-core.min.js
104.21.13.74200 OK 7.4 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/clientlib-core.min.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (7584), with no line terminators
Hash 17d575121252fc26043a6a56f5d83954
62ea06ce4a8d6872751166e710ca4a2c2ec05abb
748728ba97db050f60bae400a9e7bee700b435f1113290ecb15019a492dfb055
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/clientlib-core.min.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:15 GMT
etag: W/"1cf9-60b76d1de48d0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=paVykoxV%2BYIizETml78xnmrCT6AvDLmCbOpiN1NfMO8dlSzJ49vpwU0AVMOZM4%2Bb4PoaUtXSUwI32DnlyvFrnlhJBP%2FgRzXSXtjvlpJz%2Bqdanm0V2%2FBhRqo30QyMLknm0ovnwLR8OLYNvL2hyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833778b717128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js
104.21.13.74200 OK 21 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (21066)
Hash cf426cd1788c8356ee58c7abf14c38be
609b5a8f0b4c7b5d3d955152a76db699d0eb5382
6b1fc966c38b12c845f9fd8bdb76027106b776783fd44eeed917663942b5fd16
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:35 GMT
etag: W/"524b-60b76d30b9d64-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AxNs1UyG8xWudt4a31cuU4w0e1I0zCuKXWObq4EHkv16YzFozHk7Frm8%2BTEaVXegODNpRe%2BDRxIFmzzAjkoJDhY925oOUGjh9eK1RhcUH1m30VJzPogUPd65CV0fg9QWJkQ1mRzUe9Huax1RWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833779b797128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/calendar-rgb-red.svg
104.21.13.74200 OK 235 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/calendar-rgb-red.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash a76acfa4b8b3fb3b48161f0aec6363da
2b0b0bc29a3c8681dfa34547ac6ac09a2e5f26ba
cdf88b747566b0157d581c823581d362ceb8b448dc658339aa4b4b9144bfdbb9
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/calendar-rgb-red.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:13 GMT
etag: W/"eb-60b76d1c6fbf9"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pnS2tRx1o%2Bc%2FO5LjLFwe4a4UUvMuDowykTQ%2Fz6z1PYZwHFRebHeYlj748%2FlQytbEGXTvNJXCHSdVO6LpaXBDWzRJHcyLWVMbjEhYXAQX7zhXek0bxrzxhEz%2F5%2B4Hy7sCkhSyeXgOEdfGwxGm5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b7f7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/assets/fonts/default-274a65bae9742377aaf0.woff
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/assets/fonts/default-274a65bae9742377aaf0.woff
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /assets/fonts/default-274a65bae9742377aaf0.woff HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FnqIyy2fchjFaJRobw7cMyxeK582%2Bx0D7map4MGwkDQ%2FES%2B39wVsRTwwGFXYu9l6sNUl5B2M%2FW1vyCWQa9pDc3KEbWb08NreRe3rcnC%2FZTglM3s4yj05IrgQP9%2FbNP8mfOUfF2D65IiPs88j8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8308337c6d2e7128-OSL
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otBannerSdk.js
104.21.13.74200 OK 414 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otBannerSdk.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
Size 414 kB (413605 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/otBannerSdk.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:34 GMT
etag: W/"64fa5-60b76d2fff8ed-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 1281
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pA1GVXV4j8ii%2Btm8DH026IFglIwVaYahOlpcFlkGDvpqSPbnQ3fzL5tYb7v2f8uRjAaoi886Gyq2u1rxzIOUgfrbusJm9cLUFmhmHT9skL9Yh%2BgVdqQ4Rjgd%2Bd2CToodN71rEhhBsel4WWtUbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833779b7a7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.js
104.21.13.74200 OK 349 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
Size 349 kB (349441 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:13 GMT
etag: W/"55501-60b76d1bc0b31-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P92C0Vx4G%2Bn2pKFq1ISHlq0ItcXGnFGENTG7kpBVBj%2BrBMLj4IiDFqCn2zTRprlGZ3c5FSY7RyJWWtfduvGAvr2OTTfoXmHlVAe0QNiZfmdnO%2BRfij%2BvBVUwJsqbTinyLT4jTd1JqfTL%2BqTQWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833779b8a7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.18.131.236200 OK 21 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.18.131.236:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (21099)
Hash 653dc5af4212698688db76a143fdd61a
393fada41c29c4d6c85a7857def729bc4d2cecce
9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: application/javascript
content-length: 6841
content-encoding: gzip
content-md5: /EzX6ku1+i8ak28m1WuIrw==
last-modified: Sat, 02 Dec 2023 03:06:57 GMT
etag: 0x8DBF2E3BEBA7F04
x-ms-request-id: 5707c839-a01e-0026-6b95-25719b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 62490
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8308337d0954b509-OSL
X-Firefox-Spdy: h2
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/manifest-received-rgb-red.svg
104.21.13.74200 OK 437 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/manifest-received-rgb-red.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (454), with no line terminators
Hash 6ed50d3e71a66343489a379a5ae262df
17f74ecb225bf91df48a2f721317cb116d59cf7b
017547860b7e703c1e89d12094dddc353a18d96f91a7ad16e7d0fe76d59375ac
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/manifest-received-rgb-red.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:31 GMT
etag: W/"1b5-60b76d2cda236"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1bvNgLHeh5meW1ORSQ7KZj417KmBef1%2Bh5SFMqckNv%2Bg70M5rlzna%2BpA05qusWho%2FAC23D6VegfpYCP%2BZFhIbdiPk5TStluE0r5bvrJ71l9RXUI%2FwCPjtLQq7X3KHTMsCL4lmqsH%2FxwMXybeuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b7e7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IYQFcVeVxH5q6WEmj%2FGy3jfYTh7d6xFmu58OynnjZhc%2B197ujlOo3uCnCSA0UTSNxJoK7iez05MMmCxU0RNwOZx0hr0cDUXt7XwLB0ndi12rLYW1DoTmvOZul12FMeqtATT%2F7qPLvBcFVbKo2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8308337e1dcf7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/script.js
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/script.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /script.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VYlyFIIyafCwVPSHZWVj5t4kZWwji56dXp845ZWhTVsUxqfqYvLBBN0ude5gwYcOcVNn0oyeEOGrOHJ5bP1nGEcvxhuw1GsttVfglBK3Hhp34phnPT2Jc3LL6%2FScC%2BGeZnLkWfwCF8MfwS7ydw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8308337bfcf47128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/assets/fonts/iconfont-f2a1844613e842cf9c18.woff
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/assets/fonts/iconfont-f2a1844613e842cf9c18.woff
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /assets/fonts/iconfont-f2a1844613e842cf9c18.woff HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5SMeHVzsUMstmdwjtAdUKOXOmq1OPMdmHM1MugsAOzRRtgHSRQS4HNNm6yoftF9H3PlIGluUVMZV%2FTnJ%2Fmxp2ocZPFGKtHa1BR587RbQ9hRHmGqOl1xrDgoDuEQGpNM34N0mnrMAN9minkyNSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8308337c6d307128-OSL
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
104.21.13.74200 OK 877 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with CRLF line terminators
Size 877 kB (876673 bytes)
Hash 2ae04f2f9c7eb7dcf5956a2dc463fbde
e45143390bd988ebbfc058cc4249dd364a17efc7
d45345fc6248da6bd05d7df5b76f571523f6270742829dc67d12e11dcc426784
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/css
last-modified: Fri, 01 Dec 2023 18:20:09 GMT
etag: W/"d6081-60b76d187acf3-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F4LqM2WBsVC%2F8ExxoV0tBo7UWCSfsgQT1OfTFHqHhTaIHEQ68AP%2FIU28n7i5z0O11PfHRBuKtvliEkKgTM0V1TvfPhV%2FiM22MGuOfBrgAK9tkPKs5o7Mrz7W54mhrwsPazeEa8hu3rqn32xcIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833776b617128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/global/dhl/news-alerts.gnf.json
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/global/dhl/news-alerts.gnf.json
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /global/dhl/news-alerts.gnf.json HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v4G5wB%2Fq5UkuZnymAMI%2FQvH2tanw0nTQUn%2BCRIFz0zDE9dew%2Fg%2FysGiFq0owDxskDQC9RdjYEaOHI0hAUXnpdu4t6rG6zS5KegtEeriaK%2Ff1wbmIZEO%2Fd8ThVosOvhoA6cebYzdn%2BUoGacDShQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8308337e6de97128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/youtube-new.svg
104.21.13.74200 OK 1.4 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/youtube-new.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1452), with no line terminators
Hash 2829dbd0e273cc479b3b76228366c561
d61df11e3f0f20ce954ad0633f93c6bf99e6e674
02c065202f5cd15d0c116421d7a3e9d2f7298062e4c24de3c9290d9109b795f0
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/youtube-new.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:40 GMT
etag: W/"584-60b76d35ae259"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bGCF9UypEgwTxirsHs07vgeNNhoJcu1Z0QRVJ1WTbRD2m9bqkIliuuXVd4cVyTCH9owf0H8S%2FLEt8iSKorN3cx3upNIcGs1LxhXBpX%2BW7kSFzWifUr9KG7wD0F3crapl7mTwlparoQWY0RYSOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b857128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/facebook-new.svg
104.21.13.74200 OK 1.4 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/facebook-new.svg
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1446), with no line terminators
Hash 761c42dbcbd83dd03c6e0e0358ced519
18435ed527b40140523e7c935c12200f3044b81e
f324ef6a0a5597d012faea961499ce97df905e35a4be4e8570fd2f4c951781cd
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/facebook-new.svg HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: image/svg+xml
last-modified: Fri, 01 Dec 2023 18:20:18 GMT
etag: W/"57e-60b76d20ff3a6"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CmFUHrUazf%2Bqeh37%2FFcef2zDRrv0zOIjefSIzfh%2BFTSJt0Rp%2BHpe3mvyz8kn7TtSNjfQOmcLaEO3KRY2qn6RqB6CJ53fZHXaSO4eL%2FmjjRO%2BToqpzqyrjhgI86dptf4SDMITHK4%2BmTFHh1tuSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830833779b867128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/saved_resource.html
104.21.13.74200 OK 315 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/saved_resource.html
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (325), with no line terminators
Hash 6ab7966719bb4e2dcf63df03ccac3dc5
34845bc41f03829f72c444d76eb418d1d8dabaab
dc56c486014639b9e5798e996f7ed7b7c06f4a9372e9d3f37b9ddcc2d091b234
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/saved_resource.html HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iF8Zp80zmQsOEdOE8NaTZibm3hFBvQfARaPxLyCIWmwN53KvyJ5y2C%2BfR6IWmXaR8Ybj3SPX%2By52uWRzWybOWZ5XyFmcrcnqn1lcLcN31AIfpGzpkd5NW0VnEWPYhF%2BXmX2keRtZzaYsrQywqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8308337becee7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/AppMeasurement_Module_ActivityMap.min.js
104.21.13.74200 OK 3.3 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/AppMeasurement_Module_ActivityMap.min.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (3458), with no line terminators
Hash 4f3df6548ba1ff924cc52e61bade0494
1ff82254fa5304ce757d26a69dc37ce30f203574
78dfce20e3a79fbbb1f3b3dffa98f0cc2f85d94c477ed1fd801210f747a233ce
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:00 GMT
etag: W/"ce5-60b76d0fe77f8-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2BpdJorgYH1bCXFiYwq4J%2BNh1bxETTSBZIN1UxHAJ4ZntYCdvt%2Bd61Bvc6rHFkw5bpea3wvGFJ8VlwjZx9gTQivWKCSDl4i89j9jGEcqlYh8devNrZwpyJ0GRMAVDxN%2FYt1tnWQf7fAfeO0%2Btw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833779b777128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/assets/fonts/default-5a6dd86f272b304a8b83.woff
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/assets/fonts/default-5a6dd86f272b304a8b83.woff
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /assets/fonts/default-5a6dd86f272b304a8b83.woff HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8mWeU5sA0AhWQv9%2FYPt5ZeIKoFcLynU3rSPAKdhGIbT9iRvfNo2VWnqTqoUhQBl26EZX%2BDfgszVtpzhuZArCx6vpocQ7GZUEbGe%2BMEEIIlReUBlupOroQw2XjCDUlc8gGaOY65cBkkjo4UVDvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8308337c7d357128-OSL
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-ui.a076c9e355ebaef1a87910cd47836dfa.css
104.21.13.74200 OK 17 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-ui.a076c9e355ebaef1a87910cd47836dfa.css
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (16694), with no line terminators
Hash 9d4bcfcc93795348e1e62234f9a4fc9f
4e173f000dddf8d1c81dbbf68b6a6072dbc8a5b3
27d78b8778f331253013496ec9f5c218aac5656c72f3477a6c6dbdbfc9c3a68e
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/bundle-utapi-ui.a076c9e355ebaef1a87910cd47836dfa.css HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/css
last-modified: Fri, 01 Dec 2023 18:20:04 GMT
etag: W/"4136-60b76d1326106-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Mq8rtl7xLqJ4a1ZewpzF7wChRvUHQ%2Fsv8%2FuDbLSwLujwpLz5ETRfGcuyBhIN9mNuD%2FlAxH0AvQ4%2FhujEQbxG8Gbeoa9dT0bSk6dIEE%2BADZKvGetJYE1M315cu5Jb01bLWp57%2BKYa8RscbtqMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833778b6a7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/launch-ENa2e710b79eef40758cbb936003b8b231.min.js
104.21.13.74200 OK 705 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/launch-ENa2e710b79eef40758cbb936003b8b231.min.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (32743)
Size 705 kB (704938 bytes)
Hash 5703ac447b2f510cbfbfe003740b412c
ee120ef48c616a67ec05603d0d8ceb9841cc05c8
bdd27536b653cd0f2f9a019294cdc7cf3534b747dfcb798e1e994576049b2783
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/launch-ENa2e710b79eef40758cbb936003b8b231.min.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:26 GMT
etag: W/"ac1aa-60b76d28cad51-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mS8eom1xr%2FzpB%2B1p3N7BQad1Fz23lw1xEEAiHVnTDqT6e5rZke4RFs8OO1vJBef2XD6tOnR%2F8gEM6Y%2BOhjBDImyq3yKKhr%2BEbmZflasW30Cak5TZQiOyG3ZT3o9zOJ0OtuR3KAGcHo2uZh0Mig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833778b737128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/AppMeasurement.min.js
104.21.13.74200 OK 34 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/AppMeasurement.min.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (32768)
Hash d860c16ac938f7d839f0ec158d02d0f0
8710f81ed151233677f7e32b229cb35293dd6840
9219086b4f2c3bf77854b2e06ccd97ad32b9b7a140e65ff8b974a3bae6c7854c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/AppMeasurement.min.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:19:59 GMT
etag: W/"8315-60b76d0f37791-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=owi0%2BpVplosEJaD2My7KFwD20WE65hEJbEO%2BfoAXZa%2BIcjZDXswCKVs6%2FaaEUSD4oOO7eoHqU3Kf5sqtG8gJVeYzQdINFfFKp%2FpjGfJltixBRaTEKHgum47NIwOg6%2Fwrkq7G6F0%2BWP8rTR7DPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833778b757128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/sec-cpt-4-0.js
104.21.13.74200 OK 12 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/sec-cpt-4-0.js
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with very long lines (11747), with no line terminators
Hash 32106a9c7fd531c92b946189e8b4bc9a
0e7d6c83303a6fa2ad3bf2877b65a49945c26e5f
434dd5701ab498c97991174f828e7ad07f5b54963a9ebe754183488f91f0a377
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/sec-cpt-4-0.js HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 18:20:37 GMT
etag: W/"2de3-60b76d32d65d3-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c1vJs3jVoFCY2hvncJWCIlrM0Mmm37AwpZaln2B7x%2BRQtNRsqFWZznj%2BRspoFP%2BR1wAwesVJwIC5l72HDajCOkcBvjwit%2FKygKvqia4YmTmtUNFLbsJNWUc8RJAemuRVMNvxRKQr447cFl3LjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83083377ab927128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
104.21.13.74200 OK 877 kB URL GET HTTP/3 ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type ASCII text, with CRLF line terminators
Size 877 kB (876673 bytes)
Hash 2ae04f2f9c7eb7dcf5956a2dc463fbde
e45143390bd988ebbfc058cc4249dd364a17efc7
d45345fc6248da6bd05d7df5b76f571523f6270742829dc67d12e11dcc426784
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 00:34:01 GMT
content-type: text/css
last-modified: Fri, 01 Dec 2023 18:20:09 GMT
etag: W/"d6081-60b76d187acf3-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cYVF6vEEHXk%2B%2BkbNuRxN%2FrvsU%2FqPJfKoytoFnO5I7KsHuVFv%2BrLmQSnCdUo9%2FP4ZDgvnacdMYCQfxKYLdwyDWQKlCAVBleKbiqwsP%2FTuwcjssvzdEXgwVnjWpM%2FwHUi%2B2oRkxPChe0ebSmPF6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830833781bb27128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ftp.rastreo-es-mx-home.com/assets/fonts/default-815fcbb4d2c579017011.woff
104.21.13.74404 Not Found 288 B URL GET HTTP/3 ftp.rastreo-es-mx-home.com/assets/fonts/default-815fcbb4d2c579017011.woff
IP 104.21.13.74:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerGoogle Trust Services LLC
Subjectrastreo-es-mx-home.com
Fingerprint71:4F:36:0E:4E:0F:91:7A:8A:4E:6C:92:64:64:9C:FD:A9:3C:19:F9
ValidityFri, 01 Dec 2023 18:43:00 GMT - Thu, 29 Feb 2024 18:42:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 3c434fff5f062f47b5a939677f603c95
bff986872909c0c040052dabeb9016dffc17d6da
4f382a2d5a74f235d7942263892465ce3cfcdea7424492af3db8e99ea69fb8aa
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /assets/fonts/default-815fcbb4d2c579017011.woff HTTP/1.1
Host: ftp.rastreo-es-mx-home.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ftp.rastreo-es-mx-home.com/Rastreo%20-%20DHL%20-%20Colombia_files/bundle.a076c9e355ebaef1a87910cd47836dfa.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 00:34:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DAsUmQdPk2qyTWsEW%2FAIRln3yZclTAlkyBNtNEeruSGNrY%2B7zsQe5eaqObCiyUos9%2F3FMlj108nSgHZB4HUtmJbe4gh54sK9azzNZ1o9a7Biipw9%2BpzE6VHB8q1%2B%2FHUboOShrbjieuLxWPLRKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8308337c6d2f7128-OSL
alt-svc: h3=":443"; ma=86400
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-274a65bae9742377aaf0.woff
96.6.17.154200 OK 41 kB URL GET HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-274a65bae9742377aaf0.woff
IP 96.6.17.154:443
Requested by https://ftp.rastreo-es-mx-home.com/
Certificate IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT
File type Web Open Font Format, TrueType, length 41084, version 1.66\012- data
Hash 03f859bf58e4d37841070de34be7d978
3436d4fa17e7ee470c3d62b08787cfa7de408408
5af5c3746b03792640b9cafdabddfb2c5407f72988e128541a88fa439607d940
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-274a65bae9742377aaf0.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ftp.rastreo-es-mx-home.com/
Origin: https://ftp.rastreo-es-mx-home.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Wed, 22 Feb 2023 15:31:06 GMT
etag: W/"a07c-5f54b95b3ea21-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 41052
content-type: application/font-woff
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:34:01 GMT
date: Tue, 05 Dec 2023 00:34:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2