| GET americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog |  43.153.136.29 | 301 Moved Permanently | 169 B |
URL User Request GET HTTP/1.1americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog IP43.153.136.29:443 ASN#132203 Tencent Building, Kejizhongyi Avenue
CertificateIssuerLet's Encrypt Subjectamericanexpress-leucish.odriq.cn FingerprintC6:32:F9:3A:09:0F:FA:E5:38:B0:B1:C9:0D:4A:02:03:83:29:DD:46 ValiditySun, 22 Dec 2024 16:54:14 GMT - Sat, 22 Mar 2025 16:54:13 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash39e66888286cb07b86add9a31464222a 3a0dba54ac77b023e39a0eba16b1ede9c755e431 c3c9c8654de1babbf8efba986f0e929283946376440ef79776108d3a88fcdc3c
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | American Express |
GET /login_inav_iNavLnkLog HTTP/1.1
Host: americanexpress-leucish.odriq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx/1.26.2
Date: Fri, 31 Jan 2025 12:38:29 GMT
Content-Type: text/html
Content-Length: 169
Location: https://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/
Connection: keep-alive
|
|
| GET americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/ | 43.153.136.29 | 200 OK | 304 B |
URL User Request GET HTTP/1.1americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/ IP43.153.136.29:443 ASN#132203 Tencent Building, Kejizhongyi Avenue
CertificateIssuerLet's Encrypt Subjectamericanexpress-leucish.odriq.cn FingerprintC6:32:F9:3A:09:0F:FA:E5:38:B0:B1:C9:0D:4A:02:03:83:29:DD:46 ValiditySun, 22 Dec 2024 16:54:14 GMT - Sat, 22 Mar 2025 16:54:13 GMT
File typeHTML document, ASCII text Hash16d4c4e8cc01df83c733386b26dd44cb 8b2317fcd194aa8ced9b6ba511e173beff5f78a9 d1b378598ee3634e72a53e5b720cb2b2e0233b2e3da1f29392ee10ff1873cd1a
GET /login_inav_iNavLnkLog/ HTTP/1.1
Host: americanexpress-leucish.odriq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.26.2
Date: Fri, 31 Jan 2025 12:38:29 GMT
Content-Type: text/html
Last-Modified: Sat, 14 Dec 2024 17:37:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"675dc26c-1de"
Content-Encoding: gzip
|
|
| GET americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/assets/index-krZVZrcs.css | 43.153.136.29 | 200 OK | 4.9 kB |
URL GET HTTP/1.1americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/assets/index-krZVZrcs.css IP43.153.136.29:443 ASN#132203 Tencent Building, Kejizhongyi Avenue
Requested byhttps://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/ CertificateIssuerLet's Encrypt Subjectamericanexpress-leucish.odriq.cn FingerprintC6:32:F9:3A:09:0F:FA:E5:38:B0:B1:C9:0D:4A:02:03:83:29:DD:46 ValiditySun, 22 Dec 2024 16:54:14 GMT - Sat, 22 Mar 2025 16:54:13 GMT
File typeASCII text, with very long lines (17110) Hashe93ea18552896d8fe7e7d8510decaae3 651a009f76b4fc5f5f7637aece782a4209f46679 3167ad7fa72c34639296b2304a5da7ecba0e68268c22615916c44335924e6968
GET /login_inav_iNavLnkLog/assets/index-krZVZrcs.css HTTP/1.1
Host: americanexpress-leucish.odriq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.26.2
Date: Fri, 31 Jan 2025 12:38:30 GMT
Content-Type: text/css
Last-Modified: Sat, 14 Dec 2024 17:37:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"675dc26c-42d7"
Expires: Sun, 02 Mar 2025 12:38:30 GMT
Cache-Control: max-age=2592000, public, max-age=2592000
Content-Encoding: gzip
|
|
| GET americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/assets/index-CAwzByGI.js | 43.153.136.29 | 200 OK | 98 kB |
URL GET HTTP/1.1americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/assets/index-CAwzByGI.js IP43.153.136.29:443 ASN#132203 Tencent Building, Kejizhongyi Avenue
Requested byhttps://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/ CertificateIssuerLet's Encrypt Subjectamericanexpress-leucish.odriq.cn FingerprintC6:32:F9:3A:09:0F:FA:E5:38:B0:B1:C9:0D:4A:02:03:83:29:DD:46 ValiditySun, 22 Dec 2024 16:54:14 GMT - Sat, 22 Mar 2025 16:54:13 GMT
File typeJavaScript source, ASCII text, with very long lines (35678) Hash2cf954ef842ccbaa24ebe9cab4036da6 b2e65cb7e382355762311589e34ae3e8f3cba36a 127472b16b4faa9b5d2232d7df7ee43bee09c7fd8f977ae6633ffc8de0cc71c0
GET /login_inav_iNavLnkLog/assets/index-CAwzByGI.js HTTP/1.1
Host: americanexpress-leucish.odriq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.26.2
Date: Fri, 31 Jan 2025 12:38:30 GMT
Content-Type: application/javascript
Last-Modified: Sat, 14 Dec 2024 17:37:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"675dc26c-406d2"
Expires: Sun, 02 Mar 2025 12:38:30 GMT
Cache-Control: max-age=2592000, public, max-age=2592000
Content-Encoding: gzip
|
|
| POST americanexpress-leucish.odriq.cn/open/visitors/info/createOrGetUserInfo | 43.153.136.29 | 404 Not Found | 9 B |
URL POST HTTP/1.1americanexpress-leucish.odriq.cn/open/visitors/info/createOrGetUserInfo IP43.153.136.29:443 ASN#132203 Tencent Building, Kejizhongyi Avenue
Requested byhttps://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/ CertificateIssuerLet's Encrypt Subjectamericanexpress-leucish.odriq.cn FingerprintC6:32:F9:3A:09:0F:FA:E5:38:B0:B1:C9:0D:4A:02:03:83:29:DD:46 ValiditySun, 22 Dec 2024 16:54:14 GMT - Sat, 22 Mar 2025 16:54:13 GMT
File typeASCII text, with no line terminators Hash9d1ead73e678fa2f51a70a933b0bf017 d205cbd6783332a212c5ae92d73c77178c2d2f28 0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5
POST /open/visitors/info/createOrGetUserInfo HTTP/1.1
Host: americanexpress-leucish.odriq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 406
Origin: https://americanexpress-leucish.odriq.cn
DNT: 1
Connection: keep-alive
Referer: https://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx/1.26.2
Date: Fri, 31 Jan 2025 12:38:31 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 9
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: https://americanexpress-leucish.odriq.cn
set-cookie: locale=en-us; path=/; max-age=31557600; expires=Sat, 31 Jan 2026 18:38:31 GMT
|
|
| GET americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/favicon.ico | 43.153.136.29 | 200 OK | 1.4 kB |
URL GET HTTP/1.1americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/favicon.ico IP43.153.136.29:443 ASN#132203 Tencent Building, Kejizhongyi Avenue
Requested byhttps://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/ CertificateIssuerLet's Encrypt Subjectamericanexpress-leucish.odriq.cn FingerprintC6:32:F9:3A:09:0F:FA:E5:38:B0:B1:C9:0D:4A:02:03:83:29:DD:46 ValiditySun, 22 Dec 2024 16:54:14 GMT - Sat, 22 Mar 2025 16:54:13 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash974ccc6c4c6e1c7f04606973beb3ba20 0f96f86d488a4b5805744fa067c3cfd57c928406 265d3f591d92fadfe95f4660c382ee64a23538a7353b9880434205a102833de0
GET /login_inav_iNavLnkLog/favicon.ico HTTP/1.1
Host: americanexpress-leucish.odriq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.26.2
Date: Fri, 31 Jan 2025 12:38:31 GMT
Content-Type: image/x-icon
Content-Length: 1358
Last-Modified: Fri, 15 Nov 2024 08:59:22 GMT
Connection: keep-alive
ETag: "67370d6a-54e"
Expires: Sun, 02 Mar 2025 12:38:31 GMT
Cache-Control: max-age=2592000, public, max-age=2592000
Accept-Ranges: bytes
|
|
| GET americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/NotoSansCJKjp-Regular_subset.woff | 43.153.136.29 | 200 OK | 571 kB |
URL GET HTTP/1.1americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/NotoSansCJKjp-Regular_subset.woff IP43.153.136.29:443 ASN#132203 Tencent Building, Kejizhongyi Avenue
Requested byhttps://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/ CertificateIssuerLet's Encrypt Subjectamericanexpress-leucish.odriq.cn FingerprintC6:32:F9:3A:09:0F:FA:E5:38:B0:B1:C9:0D:4A:02:03:83:29:DD:46 ValiditySun, 22 Dec 2024 16:54:14 GMT - Sat, 22 Mar 2025 16:54:13 GMT
File typeWeb Open Font Format, CFF, length 570992, version 1.0 Size571 kB (570992 bytes) Hash72ba2113b5ba2bc18cccfd1e3b7ea0de c11321ab94e5545becf2e50f6e5509912d6a40ba 94eee0ce4bf85dc67bde9b9211afe0ec2e59a0a3a252944cb116c96ee0560072
GET /login_inav_iNavLnkLog/NotoSansCJKjp-Regular_subset.woff HTTP/1.1
Host: americanexpress-leucish.odriq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://americanexpress-leucish.odriq.cn/login_inav_iNavLnkLog/assets/index-krZVZrcs.css
Cookie: locale=en-us
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.26.2
Date: Fri, 31 Jan 2025 12:38:31 GMT
Content-Type: font/woff
Content-Length: 570992
Last-Modified: Wed, 13 Nov 2024 09:21:06 GMT
Connection: keep-alive
ETag: "67346f82-8b670"
Expires: Sun, 02 Mar 2025 12:38:31 GMT
Cache-Control: max-age=2592000, public, max-age=2592000
Accept-Ranges: bytes
|
|