Report - api.apontador.com.br/v2/logout?redirectUrl=https://bncomontepio.com/?m=test@slurpmail.net

Report Overview

Visited public
2025-04-22 15:43:41
Tags
URL
api.apontador.com.br/v2/logout?redirectUrl=https://bncomontepio.com/?m=test@slurpmail.net
Finishing URL
bncomontepio.com/?m=test@slurpmail.net
IP / ASN
172.67.27.212
#13335 CLOUDFLARENET
Title
Full Gallery

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bncomontepio.com	unknown	2025-03-14	2025-03-17	2025-04-10	9.4 kB	397 kB	196.251.90.128
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-16	1.2 kB	64 kB	142.250.74.35
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-16	458 B	7.3 kB	142.250.74.10
api.apontador.com.br	unknown	2000-05-15	2013-11-28	2025-04-10	557 B	5.9 kB	172.67.27.212

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed
2025-04-22	medium	bncomontepio.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	bncomontepio.com/temp/assets/js/util.js	ScriptElement	12 kB	2023-03-07	2025-05-30
Pretty URL bncomontepio.com/temp/assets/js/util.js IP 196.251.90.128 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26 Last Seen2025-05-30 16:25 Times Seen919 Hash fd2716a7b68ce7748c9676787b61db43 e32e958f74bd5edc4e1fbdd9fa6c30425d3c7954 c2e1e72b0de356f6ce184e3af4fa8ab6590a2581162905a27d77886b2d960e00 Loading...

	bncomontepio.com/temp/assets/js/main.js	ScriptElement	2.2 kB	2023-03-07	2025-05-08
Pretty URL bncomontepio.com/temp/assets/js/main.js IP 196.251.90.128 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26 Last Seen2025-05-08 12:26 Times Seen622 Hash a35ee3c87481af498add7a03a32e4964 6e76c90d1aa1dba4591097acf1211cddf4091b1c f0f8fe4b70486583c669e54eab436390c2211f8b9f93ad1e838236337766c0e1 Loading...

	bncomontepio.com/temp/assets/js/jquery.poptrox.min.js	ScriptElement	9.7 kB	2023-03-07	2025-05-08
Pretty URL bncomontepio.com/temp/assets/js/jquery.poptrox.min.js IP 196.251.90.128 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26 Last Seen2025-05-08 12:26 Times Seen614 Hash 3dfba0ccc03b9fcf9886c4037996687d fbe37a44231e24bbc3050e664566c344039a9241 0841b64d35bb922c573cb186dcbb14c888bbf0c96259de63d53aa568f41dc629 Loading...

	bncomontepio.com/temp/assets/js/jquery.scrolly.min.js	ScriptElement	831 B	2023-03-07	2025-05-30
Pretty URL bncomontepio.com/temp/assets/js/jquery.scrolly.min.js IP 196.251.90.128 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26 Last Seen2025-05-30 16:25 Times Seen714 Hash 1ed5a78bde1476875a40f6b9ff44fc14 91ee4deda8189fde4432a8f58cfe3b5f2aed9dcf 8b6571ea2c3631ff50bb4b96e7f9081c6e33ebaadef9cb2ca5955d5e0b625a02 Loading...

	bncomontepio.com/temp/assets/js/skel.min.js	ScriptElement	9.1 kB	2023-03-07	2025-05-24
Pretty URL bncomontepio.com/temp/assets/js/skel.min.js IP 196.251.90.128 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26 Last Seen2025-05-24 16:36 Times Seen177 Hash 93140e29fa68bab55ce6eae874ae674d 763a8fc7504139cee50c453f87b5aa204965463a ddef8dbceabe0ffc9e272d6aad6a5890452be9294e08be661e97369d97d7ef81 Loading...

	bncomontepio.com/temp/assets/js/jquery.min.js	ScriptElement	96 kB	2023-03-07	2025-06-02
Pretty URL bncomontepio.com/temp/assets/js/jquery.min.js IP 196.251.90.128 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-02 12:35 Times Seen6289 Hash 895323ed2f7258af4fae2c738c8aea49 276c87ff3e1e3155679c318938e74e5c1b76d809 ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8 Loading...

HTTP Transactions (24)

URL IP Response Size

bncomontepio.com/temp/assets/css/main.css

196.251.90.128

200 OK

27 kB

URL GET
bncomontepio.com/temp/assets/css/main.css
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
ASCII text, with very long lines (493)
Size
27 kB (27020 bytes)
Hash
916a29bd27cd10f6e2c8e577d974dcfb
8fe917d4be19c7db466255aadc38d75828010be5
cfea5bbce70f852aa560552e8b0e588b762c97aa75f0f5f90cbda54aa681907f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/css/main.css HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"698c-18e33f45390"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/images/thumbs/09.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/09.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
d6a200380309f85d27c446ccbe61b9c4
f82466c32838e12650c87b957966e78a6e5243d7
0b8adcfab437e5f9416098242ac75f094aa3ba8585d382d1d0c4ead4f1253803

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/09.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/temp/assets/js/jquery.poptrox.min.js

196.251.90.128

200 OK

9.7 kB

URL GET
bncomontepio.com/temp/assets/js/jquery.poptrox.min.js
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
JavaScript source, ASCII text, with very long lines (9628), with CRLF line terminators
Size
9.7 kB (9694 bytes)
Hash
3dfba0ccc03b9fcf9886c4037996687d
fbe37a44231e24bbc3050e664566c344039a9241
0841b64d35bb922c573cb186dcbb14c888bbf0c96259de63d53aa568f41dc629

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/js/jquery.poptrox.min.js HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"25de-18e33f45390"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/temp/assets/js/jquery.scrolly.min.js

196.251.90.128

200 OK

831 B

URL GET
bncomontepio.com/temp/assets/js/jquery.scrolly.min.js
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
JavaScript source, ASCII text, with very long lines (770), with CRLF line terminators
Size
831 B (831 bytes)
Hash
1ed5a78bde1476875a40f6b9ff44fc14
91ee4deda8189fde4432a8f58cfe3b5f2aed9dcf
8b6571ea2c3631ff50bb4b96e7f9081c6e33ebaadef9cb2ca5955d5e0b625a02

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/js/jquery.scrolly.min.js HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 831
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"33f-18e33f45390"
Vary: Accept-Encoding

bncomontepio.com/temp/assets/css/font-awesome.min.css

196.251.90.128

200 OK

29 kB

URL GET
bncomontepio.com/temp/assets/css/font-awesome.min.css
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
ASCII text, with very long lines (28900)
Size
29 kB (29063 bytes)
Hash
4083f5d376eb849a458cc790b53ba080
fb5b49426dee7f1508500e698d1b3c6b04c8fcce
008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/css/font-awesome.min.css HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/temp/assets/css/main.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"7187-18e33f45390"
Vary: Accept-Encoding
Content-Encoding: gzip

fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-tQLL50tE8.woff2

142.250.74.35

200 OK

31 kB

URL GET
fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-tQLL50tE8.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30976, version 1.0
Size
31 kB (30976 bytes)
Hash
5c8f124fd7d2657767fb95a63c783012
d3eb799b7ba989b7b3a1fec7155ff4304f9bc67e
721b76567962131c87e729818f3f1f866ade2857fa5e11e52f8bd71e376f357f

HTTP Headers

GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-tQLL50tE8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bncomontepio.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Apr 2025 02:25:31 GMT
expires: Sat, 18 Apr 2026 02:25:31 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:56:58 GMT
content-type: font/woff2
age: 393459
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bncomontepio.com/favicon.ico

196.251.90.128

200 OK

3.6 kB

URL GET
bncomontepio.com/favicon.ico
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32x32
Size
3.6 kB (3638 bytes)
Hash
43c1602b1137e4d1c19eb729b8459fb0
1d619b77a64aea2935b01ee3b6c0e8f22e1984f2
21f540a884a6e01767a0f8102f9f5023da01aa945bae6becfbe3a44f1eeb461c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:10 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 17 Sep 2021 00:47:29 GMT
ETag: W/"e36-17bf138fce8"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/images/thumbs/01.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/01.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
4aef7094f536be68e9d3302e9cf4ff16
0e53c38c61ee8fcb318c5e32f6913e9b0a30b63f
60721c6be1751a23b511648ee4839b714f3ce3c816151cebeea94beea86a3ff2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/01.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/images/thumbs/03.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/03.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
459a15ae13fe523a83ab19dcbe05fedb
bdd5febbf7f8395a9830af9bec9be1f191792fac
f729793a4063940445426ebbe048e44f9a057d1454bed9eaee243eeff055dfab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/03.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/images/thumbs/06.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/06.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
820891898cbdfc80382d385e240a9864
accc32c0c34523e41bcbd618a08c919c51198f16
33c565c3bd565a20bec627b7c63dcf4616bb2b87114aef9aab710e9c846502c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/06.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/temp/assets/js/main.js

196.251.90.128

200 OK

2.2 kB

URL GET
bncomontepio.com/temp/assets/js/main.js
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
2.2 kB (2165 bytes)
Hash
a35ee3c87481af498add7a03a32e4964
6e76c90d1aa1dba4591097acf1211cddf4091b1c
f0f8fe4b70486583c669e54eab436390c2211f8b9f93ad1e838236337766c0e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/js/main.js HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"875-18e33f45390"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/temp/images/banner.jpg

196.251.90.128

200 OK

121 kB

URL GET
bncomontepio.com/temp/images/banner.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x1080, components 3
Size
121 kB (121236 bytes)
Hash
272dc25d47760f2272090b643419b5e1
26faf56863a541fd48a126724e54943deb6e751c
f4c1a2bc4743bd36cb15d9454347dc45c86e5446da11d73215e0edc6c0139951

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/images/banner.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/temp/assets/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: image/jpeg
Content-Length: 121236
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"1d994-18e33f45390"

fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-tQLL50tE8.woff2

142.250.74.35

200 OK

31 kB

URL GET
fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-tQLL50tE8.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30976, version 1.0
Size
31 kB (30976 bytes)
Hash
5c8f124fd7d2657767fb95a63c783012
d3eb799b7ba989b7b3a1fec7155ff4304f9bc67e
721b76567962131c87e729818f3f1f866ade2857fa5e11e52f8bd71e376f357f

HTTP Headers

GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-tQLL50tE8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bncomontepio.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Apr 2025 02:25:31 GMT
expires: Sat, 18 Apr 2026 02:25:31 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:56:58 GMT
content-type: font/woff2
age: 393459
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bncomontepio.com/images/thumbs/02.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/02.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
0da1e4bc56f168b77a305a3b23d21e3f
7b9beb2cf01d5a91217f1242b4a4df2bbcd81e09
ac153c087b9f8500e8c35987d684ee3bdb36991438c9195baa907d3c09db411f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/02.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/temp/assets/js/jquery.min.js

196.251.90.128

200 OK

96 kB

URL GET
bncomontepio.com/temp/assets/js/jquery.min.js
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
JavaScript source, ASCII text, with very long lines (32038)
Size
96 kB (95957 bytes)
Hash
895323ed2f7258af4fae2c738c8aea49
276c87ff3e1e3155679c318938e74e5c1b76d809
ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/js/jquery.min.js HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"176d5-18e33f45390"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/temp/assets/js/skel.min.js

196.251.90.128

200 OK

9.1 kB

URL GET
bncomontepio.com/temp/assets/js/skel.min.js
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
JavaScript source, ASCII text, with very long lines (9033), with CRLF, LF line terminators
Size
9.1 kB (9085 bytes)
Hash
93140e29fa68bab55ce6eae874ae674d
763a8fc7504139cee50c453f87b5aa204965463a
ddef8dbceabe0ffc9e272d6aad6a5890452be9294e08be661e97369d97d7ef81

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/js/skel.min.js HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"237d-18e33f45390"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/temp/assets/js/util.js

196.251.90.128

200 OK

12 kB

URL GET
bncomontepio.com/temp/assets/js/util.js
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
12 kB (12433 bytes)
Hash
fd2716a7b68ce7748c9676787b61db43
e32e958f74bd5edc4e1fbdd9fa6c30425d3c7954
c2e1e72b0de356f6ce184e3af4fa8ab6590a2581162905a27d77886b2d960e00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/js/util.js HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"3091-18e33f45390"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/images/thumbs/07.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/07.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
aab09569e5b8b2a4eb10ae952e1795f3
082c69eb2ff10553dd7511ff992d8e3f01e1b878
1a3f171484e384903fe4c37e99e5e05e4f39ebf8d7cb88ade82bf6ac3a355131

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/07.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

fonts.googleapis.com/css?family=Nunito+Sans:300,400,600

142.250.74.10

200 OK

6.6 kB

URL GET
fonts.googleapis.com/css?family=Nunito+Sans:300,400,600
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
6.6 kB (6603 bytes)
Hash
19cd1bf37e74450ed0da631648220c6c
d44363b5b1537fcb1691370ed4f55bf10f1afdc5
36c27316024ca2679ce0b4f62dea61042759147daab776781bdc7bc361777c4d

HTTP Headers

GET /css?family=Nunito+Sans:300,400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Apr 2025 15:43:09 GMT
date: Tue, 22 Apr 2025 15:43:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bncomontepio.com/temp/assets/fonts/fontawesome-webfont.woff2?v=4.6.3

196.251.90.128

200 OK

72 kB

URL GET
bncomontepio.com/temp/assets/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 71896, version 4.393
Size
72 kB (71896 bytes)
Hash
e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /temp/assets/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/temp/assets/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:10 GMT
Content-Type: font/woff2
Content-Length: 71896
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 12 Mar 2024 18:37:14 GMT
ETag: W/"118d8-18e33f45390"

api.apontador.com.br/v2/logout?redirectUrl=https://bncomontepio.com/?m=test@slurpmail.net

172.67.27.212

302 Found

5.5 kB

URL User Request GET
api.apontador.com.br/v2/logout?redirectUrl=https://bncomontepio.com/?m=test@slurpmail.net
IP
172.67.27.212:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectapontador.com.br
Fingerprint01:EC:B5:92:37:DF:29:05:7B:58:FD:44:8C:8D:C2:4D:50:00:B4:C4
ValidityFri, 04 Apr 2025 20:05:42 GMT - Thu, 03 Jul 2025 20:05:41 GMT

File type

Size
5.5 kB (5476 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v2/logout?redirectUrl=https://bncomontepio.com/?m=test@slurpmail.net HTTP/1.1
Host: api.apontador.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 22 Apr 2025 15:43:08 GMT
content-length: 0
location: https://bncomontepio.com/?m=test@slurpmail.net
set-cookie: backend_apontador=""; Domain=.apontador.com.br; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
loggedApt=""; Domain=.apontador.com.br; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 93463c2cb8b41c16-OSL
X-Firefox-Spdy: h2

bncomontepio.com/?m=test@slurpmail.net

196.251.90.128

200 OK

5.5 kB

URL User Request GET
bncomontepio.com/?m=test@slurpmail.net
IP
196.251.90.128:443
ASN
#0

Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text, with very long lines (553)
Size
5.5 kB (5476 bytes)
Hash
44a7764850c780496e2fbe31667ccb51
b21e09d36c0343abccdc26346b57ea71415ac472
0f27bcca4ccb775f0482a74211f76a96774a542d40f40e6cef854e0e4be194c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?m=test@slurpmail.net HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
ETag: W/"1564-sh4J02wDQ6vM3CY0a1fqcUFaxHI"
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/images/thumbs/05.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/05.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
a6f5ac01a078a3750432d6c5b03bc613
72173a26c78529a2c17ddb1742f133ae31c8a26a
5c8261c6aa060dcab9dfb00cd859745437b24b6d8b7c780d555ff4a655089d36

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/05.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

bncomontepio.com/images/thumbs/10.jpg

196.251.90.128

404 Not Found

159 B

URL GET
bncomontepio.com/images/thumbs/10.jpg
IP
196.251.90.128:443
ASN
#0

Requested by
https://bncomontepio.com/?m=test@slurpmail.net
Certificate
IssuerLet's Encrypt
Subjectbncomontepio.com
Fingerprint3B:3D:37:9B:EA:4A:63:F0:0D:49:39:2F:9C:BE:82:22:50:C5:04:A2
ValidityFri, 14 Mar 2025 15:45:33 GMT - Thu, 12 Jun 2025 15:45:32 GMT

File type
HTML document, ASCII text
Size
159 B (159 bytes)
Hash
8b760015611b55c0c4f0672f5031c1be
5bac08d546bc447024505a3fe3220176f1c2e164
c21663a7d62c1f9682b19f5fc40c53205879cc0126abc8c7fe9450692cda9d1d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thumbs/10.jpg HTTP/1.1
Host: bncomontepio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bncomontepio.com/?m=test@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 22 Apr 2025 15:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (24)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate