200 OK 78 B URL User Request GET HTTP/2 IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document, ASCII text, with no line terminators
Hash 0e34effad3574bc5f4e8e1ba8ad88f15
8416552ceda6a4cd0a38afa2902593c4699bdc8d
5d603e8b605ce18a77442f885b6f19f003fc150e96303ec867e17ed7cb57a5e8
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET / HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:13 GMT
content-type: text/html
content-length: 78
last-modified: Wed, 01 Mar 2023 21:25:08 GMT
etag: "63ffc2b4-4e"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/js/dl.js
200 OK 82 kB URL GET HTTP/2 dhl-123.com/static/js/dl.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type gzip compressed data, from Unix\012- data
Hash dfc478d21ed0e7d2e2ac29f970456db3
9718b89ce00399d9be8c8301cd6ad1866ad09ad5
a898ea9f2800b10ed80e7833f050943db511359c798e78cfba27f89fbe492c8c
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/dl.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:13 GMT
content-type: application/javascript
last-modified: Fri, 03 Mar 2023 17:37:37 GMT
vary: Accept-Encoding
etag: W/"64023061-429"
expires: Sun, 12 Nov 2023 23:16:13 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/ResourceConfig/urlConfig.json
200 OK 189 B URL GET HTTP/2 dhl-123.com/ResourceConfig/urlConfig.json
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with CRLF line terminators
Hash 7a3ea469f1d48c0cc095b06c9db8bf5c
76df66c1781cabe37e8ceb198472ace7e04dbd56
d9a4de985f2e803bdc1e6e55c0c895413d58f8ca10309adb9abb603f385bf3eb
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /ResourceConfig/urlConfig.json HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:13 GMT
content-type: application/json
content-length: 189
last-modified: Sat, 11 Nov 2023 11:46:23 GMT
etag: "654f698f-bd"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/favicon.ico
404 Not Found 146 B IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /favicon.ico HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:14 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
java.uschuzu-021.top/websocket/576ed46ee595134e2d14f361ad8641bf
0 B URL java.uschuzu-021.top/websocket/576ed46ee595134e2d14f361ad8641bf
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /websocket/576ed46ee595134e2d14f361ad8641bf HTTP/1.1
Host: java.uschuzu-021.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://dhl-123.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v01grUBPN7ZhlrVGT+i8Lw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101
Server: nginx
Date: Sun, 12 Nov 2023 11:16:15 GMT
Connection: upgrade
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: *
Upgrade: websocket
Sec-WebSocket-Accept: CkvjsD5NTFrSPSfavC3eEBvTg2M=
Sec-WebSocket-Extensions: permessage-deflate
dhl-123.com/static/css/fonts/default-274a65bae9742377aaf0.woff
200 OK 41 kB URL GET HTTP/2 dhl-123.com/static/css/fonts/default-274a65bae9742377aaf0.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type Web Open Font Format, TrueType, length 41084, version 1.66\012- data
Hash 03f859bf58e4d37841070de34be7d978
3436d4fa17e7ee470c3d62b08787cfa7de408408
5af5c3746b03792640b9cafdabddfb2c5407f72988e128541a88fa439607d940
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/fonts/default-274a65bae9742377aaf0.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhl-123.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: font/woff
content-length: 41084
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
etag: "635f0c0a-a07c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/css/fonts/default-3e828e80f6e985c352eb.woff
200 OK 44 kB URL GET HTTP/2 dhl-123.com/static/css/fonts/default-3e828e80f6e985c352eb.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type Web Open Font Format, TrueType, length 44260, version 1.66\012- data
Hash 4a350e02a03ac62e72e9ea575b31ce84
d47b03b96b6e7034a1473a293bb594e597a41dc2
87c40e3961e21f759770615ae67568a3de3ec6e0735f1238a6aae062f4ea15d5
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/fonts/default-3e828e80f6e985c352eb.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhl-123.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: font/woff
content-length: 44260
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
etag: "635f0c0a-ace4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/css/fonts/default-5a6dd86f272b304a8b83.woff
200 OK 41 kB URL GET HTTP/2 dhl-123.com/static/css/fonts/default-5a6dd86f272b304a8b83.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type Web Open Font Format, TrueType, length 41352, version 1.66\012- data
Hash 4e23ecf085132857bdb54b4da7373151
a50215c22a591536b21e509100d1707c6886ffd6
b033eff45e6e8ecd5c5bccd8ef9a96c4dc37325adc64c5aed8b1d909b24c4eb4
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/fonts/default-5a6dd86f272b304a8b83.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhl-123.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: font/woff
content-length: 41352
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
etag: "635f0c0a-a188"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/css/fonts/default-815fcbb4d2c579017011.woff
200 OK 41 kB URL GET HTTP/2 dhl-123.com/static/css/fonts/default-815fcbb4d2c579017011.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type Web Open Font Format, TrueType, length 41328, version 1.66\012- data
Hash e39bd2e2657ce5dd6f9c33df18529233
6db81ebb91bfa67cef8f2f870f03046150568799
19d0bda83ecbc986620468801adf000c77c3c38398650903c63fac8dcbac4383
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/fonts/default-815fcbb4d2c579017011.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhl-123.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: font/woff
content-length: 41328
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
etag: "635f0c0a-a170"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/css/fonts/iconfont-da52a17c1b8deb953bfe.woff
200 OK 35 kB URL GET HTTP/2 dhl-123.com/static/css/fonts/iconfont-da52a17c1b8deb953bfe.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type Web Open Font Format, TrueType, length 34820, version 1.0\012- data
Hash 078665c330eb91354c06e1dd7e3850a5
00c84f76451fe58596a41658e08a55f81ad4ceeb
8b8888bc016e1313438b7a9a1ca18aa288f6098122265fc03e985ca40e82a27c
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/fonts/iconfont-da52a17c1b8deb953bfe.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhl-123.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: font/woff
content-length: 34820
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
etag: "635f0c0a-8804"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/css/clientlib-core.min.css
200 OK 29 B URL GET HTTP/2 dhl-123.com/static/css/clientlib-core.min.css
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with no line terminators
Hash b104a4a85c21511ada13e2c6e7552d37
475c6eb572d41f86d612ef9d8d64c2cd9ae95980
34a8d4f240f1b7a01d0472d5367e1bc57e17f70a12a91aae37dcac3b33b24732
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/clientlib-core.min.css HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/css
content-length: 29
last-modified: Sun, 06 Nov 2022 19:18:57 GMT
etag: "636808a1-1d"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/css//clientlib-core.min.js.%E4%B8%8B%E8%BD%BD
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css//clientlib-core.min.js.%E4%B8%8B%E8%BD%BD
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css//clientlib-core.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/js/RCc9f7f8cb76ec492d8b222a8d9c393cfc-source.min.js
200 OK 902 B URL GET HTTP/2 dhl-123.com/static/js/RCc9f7f8cb76ec492d8b222a8d9c393cfc-source.min.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with very long lines (755)
Hash 049d7bd828330bf76c91fa5caeca56e5
c5ebf7e35b429399e37bcda88b8c4ffa147c0397
b8c2990990e7cead5607f68b440f07d7aa52e20db0c34237f1bc6b197a26ac83
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/RCc9f7f8cb76ec492d8b222a8d9c393cfc-source.min.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
content-length: 902
last-modified: Sun, 06 Nov 2022 19:46:24 GMT
etag: "63680f10-386"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/config/urlConfig.json
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/config/urlConfig.json
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /config/urlConfig.json HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/picture/dhl-logo.svg
200 OK 1.6 kB URL GET HTTP/2 dhl-123.com/static/picture/dhl-logo.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3fecc9db35d5d2a9e6e71ab4b02d22e5
628ba2f505b480097445aaf08649a08242bd6847
362bcaa42090e36611031bec6bdaa0600375ef847092cca195c58d3bae9b4419
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/dhl-logo.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/svg+xml
content-length: 1603
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-643"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/image/%E6%84%9F%E5%8F%B9%E5%8F%B7.png
200 OK 6.3 kB URL GET HTTP/2 dhl-123.com/static/image/%E6%84%9F%E5%8F%B9%E5%8F%B7.png
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c28b327613468edeed5b46b32a31450b
a9d1e0d9edcf161f459047534a7a5d90f8fb6261
d331956d6d8544f71647604ee8b7aba881b834754a35c86c615cfa157c0504a7
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/image/%E6%84%9F%E5%8F%B9%E5%8F%B7.png HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/png
content-length: 6319
last-modified: Sun, 09 Oct 2022 08:31:37 GMT
etag: "634286e9-18af"
expires: Tue, 12 Dec 2023 11:16:16 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/image/j.png
200 OK 7.3 kB URL GET HTTP/2 dhl-123.com/static/image/j.png
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type PNG image data, 293 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c0b61b9cf86d1401eb138abf71b28036
ed8a4275626908a2b56cef1352054c79ea64a175
acf73390f72230e1106abdef681c82c7fe2b4e04137712202bf94115b8da0301
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/image/j.png HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/png
content-length: 7259
last-modified: Mon, 07 Nov 2022 18:18:57 GMT
etag: "63694c11-1c5b"
expires: Tue, 12 Dec 2023 11:16:16 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/image/glo-gogreen-carbon-calculator.web.1365.434.jpg
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/image/glo-gogreen-carbon-calculator.web.1365.434.jpg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/image/glo-gogreen-carbon-calculator.web.1365.434.jpg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/picture/glo-footer-logo.svg
200 OK 12 kB URL GET HTTP/2 dhl-123.com/static/picture/glo-footer-logo.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (656)
Hash d1b0e043744fd642282117a03d308b17
d8abe7a0887b804e516c45a344c542e291a1a84b
5162de2ee844a80d76b7d7514c02ab7d5de72a5966113323d80eb56bf6ded038
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/glo-footer-logo.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/svg+xml
content-length: 11968
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-2ec0"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/picture/youtube-new.svg
200 OK 1.4 kB URL GET HTTP/2 dhl-123.com/static/picture/youtube-new.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (971)
Hash 376247a0b06e705c758fe04978ea9df5
90d50c682c2ea23a9d26926c6eb3d849b7b94661
acd3eaf2b608fb48f9915964c36772b322ad91106508c4490e2a72122db4d347
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/youtube-new.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/svg+xml
content-length: 1412
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-584"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/picture/facebook-new.svg
200 OK 1.4 kB URL GET HTTP/2 dhl-123.com/static/picture/facebook-new.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (963)
Hash 259d8928a7fd5329b3d7fd80eca2ea2f
a6337de5ff5761b39a319cd7ec3f8b10f201d066
43027752f5a04142e6518a4fd8ef54e7e73cfba7820da9c03c1ad38835f04fe2
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/facebook-new.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/svg+xml
content-length: 1406
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-57e"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/picture/linkedIn-new.svg
200 OK 1.6 kB URL GET HTTP/2 dhl-123.com/static/picture/linkedIn-new.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1204)
Hash 43efff953a2a3baf6a2ef0528f55dc07
b510bc0512da7d96cdf29a0f1e343319095776de
c32f1a0f5b093b6b2c8f5df0bf93856359769ee6bbab40975043cd133711d528
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/linkedIn-new.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/svg+xml
content-length: 1647
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-66f"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/picture/instagram-new.svg
200 OK 4.5 kB URL GET HTTP/2 dhl-123.com/static/picture/instagram-new.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4063)
Hash 056511aeb5282ecaab9fbf10ed2273e5
fc29c2c37c4b4a31ad13e80356371e338aef5894
f01c2e1870fcd75ceca3b4c42c3110cb0aa4b933b562cf3d2c7ddd20ce03c7ee
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/instagram-new.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/svg+xml
content-length: 4508
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-119c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/picture/translate_24dp.png
200 OK 846 B URL GET HTTP/2 dhl-123.com/static/picture/translate_24dp.png
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/translate_24dp.png HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/png
content-length: 846
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-34e"
expires: Tue, 12 Dec 2023 11:16:16 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/picture/poweredBy_ot_logo.svg
200 OK 3.0 kB URL GET HTTP/2 dhl-123.com/static/picture/poweredBy_ot_logo.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2998), with no line terminators
Hash 2e9b9ac8be368c1efcc51965c74be43b
dde87f63ecbaeb97c5708ced6ffd0e7de5a806c0
49b9b4996d1ff0a8e3de643a0c623255bf631f298f2799b949c29de93926ee7a
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/picture/poweredBy_ot_logo.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: image/svg+xml
content-length: 2998
last-modified: Sun, 06 Nov 2022 19:17:55 GMT
etag: "63680863-bb6"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v29/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v29/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 22420, version 1.0\012- data
Hash 1157c949b5d3a24ed1bd538c058f19d8
e631e727d846d55763e447bda8dbdcbc4834ed9b
5ec1e2ebe080ec8fbfbdc7dd9c0c25449e1d98e4e947c11a00fd770d8841698b
GET /s/raleway/v29/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhl-123.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22420
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 12 Nov 2023 06:45:34 GMT
expires: Mon, 11 Nov 2024 06:45:34 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:56:44 GMT
content-type: font/woff2
age: 16243
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dhl-123.com/static/js/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/js/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/js/axios.js
200 OK 13 kB URL GET HTTP/2 dhl-123.com/static/js/axios.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type gzip compressed data, from Unix\012- data
Hash 6728ff539b0c802bee52ca896ccc3755
8cf477a0a513bea8c86ebc3dde59b8e1a139d4db
7710be3bab324b01c64cbc8bb5770784863a27370fe949c5d395c820573a23f7
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/axios.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Sat, 10 Nov 2018 04:07:50 GMT
vary: Accept-Encoding
etag: W/"5be65996-a6f0"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/css/static/css/fonts/img/7f0d3a9b32ad319a9dd1.svg
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/static/css/fonts/img/7f0d3a9b32ad319a9dd1.svg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/static/css/fonts/img/7f0d3a9b32ad319a9dd1.svg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/image/xxjt.png
200 OK 5.1 kB URL GET HTTP/2 dhl-123.com/static/image/xxjt.png
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 29ea4894eb20c35f95d2c8af2297912e
3d3388c19fb6ac24431ff33b512d31f4d2a65846
54b6d951cc302a7487a26e13180240cdba4a531fb58264ca1824cbc00d1a2ba5
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/image/xxjt.png HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: image/png
content-length: 5064
last-modified: Sun, 06 Nov 2022 21:16:58 GMT
etag: "6368244a-13c8"
expires: Tue, 12 Dec 2023 11:16:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/css/static/css/fonts/default-274a65bae9742377aaf0.woff
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/static/css/fonts/default-274a65bae9742377aaf0.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/static/css/fonts/default-274a65bae9742377aaf0.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/css/static/css/fonts/fonts/iconfont-da52a17c1b8deb953bfe.woff
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/static/css/fonts/fonts/iconfont-da52a17c1b8deb953bfe.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/static/css/fonts/fonts/iconfont-da52a17c1b8deb953bfe.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/css/static/css/fonts/fonts/default-815fcbb4d2c579017011.woff
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/static/css/fonts/fonts/default-815fcbb4d2c579017011.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/static/css/fonts/fonts/default-815fcbb4d2c579017011.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/js/bundle-utapi.5a06c13ce82a72f9080b7294f2746e49.js
200 OK 47 kB URL GET HTTP/2 dhl-123.com/static/js/bundle-utapi.5a06c13ce82a72f9080b7294f2746e49.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type gzip compressed data, from Unix\012- data
Hash 492d9efa93f7afbe6cdf450f738541f9
16836f5ac0dacd3337a7c4ebe6442e6be807a54c
ea8dcaa71fc0d2241e1ab0aeef45e9e87a8cdaf3ec06d39550be0ffd8b97a189
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/bundle-utapi.5a06c13ce82a72f9080b7294f2746e49.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
vary: Accept-Encoding
etag: W/"635f0c0a-31637"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/js/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/js/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/otSDKStub.js/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/css/appletouch/apple-touch-icon-180x180.png
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/appletouch/apple-touch-icon-180x180.png
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/appletouch/apple-touch-icon-180x180.png HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/css/favicon.ico
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/favicon.ico
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/favicon.ico HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
java.uschuzu-021.top/click/queryIp
200 OK 12 B URL GET HTTP/2 java.uschuzu-021.top/click/queryIp
IP
Certificate IssuerLet's Encrypt
Subjectjava.uschuzu-021.top
Fingerprint2B:43:81:87:85:5D:91:EA:89:00:5C:F4:EF:2C:1A:68:28:6E:7B:B1
ValidityFri, 10 Nov 2023 20:46:53 GMT - Thu, 08 Feb 2024 20:46:52 GMT
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /click/queryIp HTTP/1.1
Host: java.uschuzu-021.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://dhl-123.com
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/plain;charset=UTF-8
content-length: 12
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: MISS
X-Firefox-Spdy: h2
dhl-123.com/static/image/glo-gogreen-carbon-calculator.web.1365.434.jpg
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/image/glo-gogreen-carbon-calculator.web.1365.434.jpg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/image/glo-gogreen-carbon-calculator.web.1365.434.jpg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
java.uschuzu-021.top/click/addClick?behaviour=
200 OK 0 B URL GET HTTP/2 java.uschuzu-021.top/click/addClick?behaviour=
IP
Certificate IssuerLet's Encrypt
Subjectjava.uschuzu-021.top
Fingerprint2B:43:81:87:85:5D:91:EA:89:00:5C:F4:EF:2C:1A:68:28:6E:7B:B1
ValidityFri, 10 Nov 2023 20:46:53 GMT - Thu, 08 Feb 2024 20:46:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /click/addClick?behaviour= HTTP/1.1
Host: java.uschuzu-021.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: sink,sinks
Referer: https://dhl-123.com/
Origin: https://dhl-123.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/plain;charset=utf-8
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
X-Firefox-Spdy: h2
dhl-123.com/static/css/translateelement.css
200 OK 4.4 kB URL GET HTTP/2 dhl-123.com/static/css/translateelement.css
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type gzip compressed data, from Unix\012- data
Hash 298593134f5dfbb102d437158fde791f
d3f5907c38183e718eae144326fccf0a17a5885d
e64fbabb68f5a20764147ec993b3fcbb1e00d85abdb89308847cee451f942fac
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/translateelement.css HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/css
last-modified: Sun, 06 Nov 2022 19:18:57 GMT
vary: Accept-Encoding
etag: W/"636808a1-48f6"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/saved_resource.html
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/saved_resource.html
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /saved_resource.html HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Cookie: cookieDisclaimer=seen
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/js/otSDKStub.js
200 OK 9.6 kB URL GET HTTP/2 dhl-123.com/static/js/otSDKStub.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type gzip compressed data, from Unix\012- data
Hash 330a96c86ea136d5385ed2a7920d666f
c3b769caafaeee90a740f738d101122444c8a1cb
0f153ce798cf83ab6d0533009e4dc6cd00f72125c51731e54003c1d82deb5208
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/otSDKStub.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Sun, 06 Nov 2022 19:31:18 GMT
vary: Accept-Encoding
etag: W/"63680b86-54f3"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/global/dhl/news-alerts.gnf.json
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/global/dhl/news-alerts.gnf.json
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /global/dhl/news-alerts.gnf.json HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Sec-Clge-Req-Type: ajax
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
java.uschuzu-021.top/click/addClick?behaviour=
200 OK 12 B URL GET HTTP/2 java.uschuzu-021.top/click/addClick?behaviour=
IP
Certificate IssuerLet's Encrypt
Subjectjava.uschuzu-021.top
Fingerprint2B:43:81:87:85:5D:91:EA:89:00:5C:F4:EF:2C:1A:68:28:6E:7B:B1
ValidityFri, 10 Nov 2023 20:46:53 GMT - Thu, 08 Feb 2024 20:46:52 GMT
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /click/addClick?behaviour= HTTP/1.1
Host: java.uschuzu-021.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sink: DEDHL2
sinks: 2
Origin: https://dhl-123.com
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: application/json
content-length: 12
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: MISS
X-Firefox-Spdy: h2
dhl-123.com/static/css/static/css/fonts/fonts/default-3e828e80f6e985c352eb.woff
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/static/css/fonts/fonts/default-3e828e80f6e985c352eb.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/static/css/fonts/fonts/default-3e828e80f6e985c352eb.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:17 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dhl-123.com/static/js/jquery-ui.js
200 OK 1.4 kB URL GET HTTP/2 dhl-123.com/static/js/jquery-ui.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with very long lines (1456), with no line terminators
Hash 72a3b1edec974e486baa479cf5c33a6d
668869b34f5569a2dd87dc373188e17055ff9f59
733eef973ca8747b338e389abc22ec4444bb25d03746ba807d7e19a8bd458dfe
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/jquery-ui.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:13 GMT
content-type: application/javascript
last-modified: Wed, 01 Mar 2023 21:17:23 GMT
vary: Accept-Encoding
etag: W/"63ffc0e3-5a3"
expires: Sun, 12 Nov 2023 23:16:13 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/js/jquery-ui.js
200 OK 1.4 kB URL GET HTTP/2 dhl-123.com/static/js/jquery-ui.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with very long lines (1456), with no line terminators
Hash 72a3b1edec974e486baa479cf5c33a6d
668869b34f5569a2dd87dc373188e17055ff9f59
733eef973ca8747b338e389abc22ec4444bb25d03746ba807d7e19a8bd458dfe
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/jquery-ui.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Wed, 01 Mar 2023 21:17:23 GMT
vary: Accept-Encoding
etag: W/"63ffc0e3-5a3"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/css/bundle-utapi.5a06c13ce82a72f9080b7294f2746e49.css
200 OK 38 kB URL GET HTTP/2 dhl-123.com/static/css/bundle-utapi.5a06c13ce82a72f9080b7294f2746e49.css
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with very long lines (38387), with no line terminators
Hash a0fa1e9a49448517d322bf0f106d1092
291dc30968fc73ede6eb9ca3b81b032c00c74879
ce7c9a5555837fbb27deb9ceb19c54434572b80889ce27dced72dff4b3d0635b
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/bundle-utapi.5a06c13ce82a72f9080b7294f2746e49.css HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/css
last-modified: Sun, 06 Nov 2022 19:18:57 GMT
vary: Accept-Encoding
etag: W/"636808a1-95f3"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/js/vue.js
200 OK 342 kB URL GET HTTP/2 dhl-123.com/static/js/vue.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
Size 342 kB (342147 bytes)
Hash a9b6fe71cb7cfcd689e1ef345aefba51
5c39dfc37fc42400e4b4557db956f3f218a90ca7
159f0ac0c8f517aaa736003b6e13ebc959b5f7129db87e4e56bf2eec8d6d02d7
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/vue.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Thu, 13 May 2021 06:21:20 GMT
vary: Accept-Encoding
etag: W/"609cc560-53883"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/js/ResourceConfig.js
200 OK 13 kB URL GET HTTP/2 dhl-123.com/static/js/ResourceConfig.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/ResourceConfig.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Sat, 07 Oct 2023 12:20:34 GMT
vary: Accept-Encoding
etag: W/"65214d12-347f"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/js/bundle.5a06c13ce82a72f9080b7294f2746e49.js
200 OK 277 kB URL GET HTTP/2 dhl-123.com/static/js/bundle.5a06c13ce82a72f9080b7294f2746e49.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
Size 277 kB (276772 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/bundle.5a06c13ce82a72f9080b7294f2746e49.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
vary: Accept-Encoding
etag: W/"635f0c0a-43924"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
200 OK 657 kB URL GET HTTP/2 dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 657 kB (656779 bytes)
Hash e1ad9d36d8ce1029aeb0f8f752b0fc9f
2bf282ecc40551aedde83e910a15e3c933b4511a
db26b3152a2279dea00041ca49929ca714da44e07b5925d3f04c8d922bf474c0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/css
last-modified: Sun, 06 Nov 2022 19:43:04 GMT
vary: Accept-Encoding
etag: W/"63680e48-a058b"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/image/translate_24dp.png
200 OK 1.8 kB URL GET HTTP/2 dhl-123.com/static/image/translate_24dp.png
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/image/translate_24dp.png HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/static/css/translateelement.css
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: image/png
content-length: 1842
last-modified: Sun, 06 Nov 2022 19:17:57 GMT
etag: "63680865-732"
expires: Tue, 12 Dec 2023 11:16:18 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
java.uschuzu-021.top/websocket/576ed46ee595134e2d14f361ad8641bf
101 0 B URL GET HTTP/1.1 java.uschuzu-021.top/websocket/576ed46ee595134e2d14f361ad8641bf
IP
Certificate IssuerLet's Encrypt
Subjectjava.uschuzu-021.top
Fingerprint2B:43:81:87:85:5D:91:EA:89:00:5C:F4:EF:2C:1A:68:28:6E:7B:B1
ValidityFri, 10 Nov 2023 20:46:53 GMT - Thu, 08 Feb 2024 20:46:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /websocket/576ed46ee595134e2d14f361ad8641bf HTTP/1.1
Host: java.uschuzu-021.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://dhl-123.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v01grUBPN7ZhlrVGT+i8Lw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101
Server: nginx
Date: Sun, 12 Nov 2023 11:16:15 GMT
Connection: upgrade
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: *
Upgrade: websocket
Sec-WebSocket-Accept: CkvjsD5NTFrSPSfavC3eEBvTg2M=
Sec-WebSocket-Extensions: permessage-deflate
dhl-123.com/static/image/loading-icon-transparent-background-12.jpg
200 OK 82 kB URL GET HTTP/2 dhl-123.com/static/image/loading-icon-transparent-background-12.jpg
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type GIF image data, version 89a, 630 x 637\012- data
Hash 9e0373c2b4410c49439dfd822c5fd16e
427f86c03751b7e107fd282bbe32be18fc2e0898
05eb745176d79ec27d52d544582483fc4d0f6378c7ed2060be24dfc4e8990668
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/image/loading-icon-transparent-background-12.jpg HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:13 GMT
content-type: image/jpeg
content-length: 81572
last-modified: Wed, 21 Sep 2022 07:47:06 GMT
etag: "632ac17a-13ea4"
expires: Tue, 12 Dec 2023 11:16:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dhl-123.com/static/js/ResourceRedConfig.js
200 OK 31 kB URL GET HTTP/2 dhl-123.com/static/js/ResourceRedConfig.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/ResourceRedConfig.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:13 GMT
content-type: application/javascript
last-modified: Sat, 07 Oct 2023 12:19:22 GMT
vary: Accept-Encoding
etag: W/"65214cca-79fa"
expires: Sun, 12 Nov 2023 23:16:13 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/css/static/css/fonts/fonts/default-5a6dd86f272b304a8b83.woff
404 Not Found 146 B URL GET HTTP/2 dhl-123.com/static/css/static/css/fonts/fonts/default-5a6dd86f272b304a8b83.woff
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/static/css/fonts/fonts/default-5a6dd86f272b304a8b83.woff HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 12 Nov 2023 11:16:18 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Manrope:wght@200;300&family=Raleway:wght@400&display=swap
200 OK 5.9 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Manrope:wght@200;300&family=Raleway:wght@400&display=swap
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT
File type ASCII text, with very long lines (6076), with no line terminators
Hash 936c684d9e24f3999cddc5e977064108
0b20a972bb7b50bf48176ab0df14cd52e17f375f
5e74d514bc24b82588c9e07398e38a0cc76293fc4cfb4d3fd4d95980c97aea6e
GET /css2?family=Manrope:wght@200;300&family=Raleway:wght@400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 12 Nov 2023 11:16:16 GMT
date: Sun, 12 Nov 2023 11:16:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
200 OK 657 kB URL GET HTTP/2 dhl-123.com/static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 657 kB (656779 bytes)
Hash e1ad9d36d8ce1029aeb0f8f752b0fc9f
2bf282ecc40551aedde83e910a15e3c933b4511a
db26b3152a2279dea00041ca49929ca714da44e07b5925d3f04c8d922bf474c0
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/css/bundle.5a06c13ce82a72f9080b7294f2746e49.css HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: text/css
last-modified: Sun, 06 Nov 2022 19:43:04 GMT
vary: Accept-Encoding
etag: W/"63680e48-a058b"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dhl-123.com/static/js/sec-cpt-3-6.js
200 OK 11 kB URL GET HTTP/2 dhl-123.com/static/js/sec-cpt-3-6.js
IP
ASN #8100 ASN-QUADRANET-GLOBAL
Certificate IssuerLet's Encrypt
Subjectdhl-123.com
FingerprintE6:8F:27:D2:86:68:0E:9A:A8:38:80:A6:DC:8D:C6:C0:D4:81:95:0F
ValiditySat, 11 Nov 2023 17:17:07 GMT - Fri, 09 Feb 2024 17:17:06 GMT
File type ASCII text, with very long lines (10574), with no line terminators
Hash f7c6bc1915a8288353006f288c8c41c0
96f17f38526abd8a24427a98f868828ffb5b9300
05b1cf5bf5ccce6868ffd66fb866bbaa3083ee1960776ed96fc7ad73edc15f83
Analyzer Verdict Alert OpenPhish phishing DHL Airways, Inc.
GET /static/js/sec-cpt-3-6.js HTTP/1.1
Host: dhl-123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-123.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 12 Nov 2023 11:16:16 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 23:43:06 GMT
vary: Accept-Encoding
etag: W/"635f0c0a-294e"
expires: Sun, 12 Nov 2023 23:16:16 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
104.129.5.224