Report - pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv

Report Overview

Visited public
2023-09-23 03:48:38
Tags
Submit Tags
URL
pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv
Finishing URL
pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv
IP / ASN
83.221.105.158
#20746 Telecom Italia
Title
Utilizza i tuoi Buoni Pasto Pellegrini su Cibi Lucani

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pellegrini.mailmnsa.com	unknown	2016-03-15	2022-09-10 14:32:41	2023-03-25 02:38:17	6.8 kB	670 kB	83.221.105.156

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-09-23 03:48:33	high	54.37.238.86	Client IP	ET POLICY PE EXE or DLL Windows file download HTTP

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (12)

	URL	IP	Response	Size
	GET pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv	83.221.105.156	200	4.0 kB
URL User Request GET HTTP/1.1 pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv IP 83.221.105.156:443 ASN #20746 Telecom Italia Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1509), with CRLF line terminators Size 4.0 kB (4008 bytes) Hash aec5cb50f3b1bf25c99d975830523b6e 0043e06bd7598cbddff83eb6ed11c1d9fc2f2553 af1aacfe1afd21a9df9959e7be2d0aed6f43a0c9152cb693414d625ccec2c399 HTTP Headers GET /nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff Cache-Control: no-cache, no-store Content-Type: text/html;charset=utf-8 Date: Sat, 23 Sep 2023 03:48:20 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps11 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/welfare_alt100_w600_h100.png	83.221.105.156	200	17 kB
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/welfare_alt100_w600_h100.png IP 83.221.105.156:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 600 x 100, 8-bit/color RGB, non-interlaced\012- data Size 17 kB (16875 bytes) Hash 34d4bbc6d453847692c937bde6e2d8c2 f902424fe4ea4a3fac23c33ed1ce231e6e010923 d328f5beea007dad028e53650245095741d726dc8240fe892a1ebd4b862961e5 HTTP Headers GET /nl/res/521/newsletters/447/img/welfare_alt100_w600_h100.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Last-Modified: Fri, 22 Sep 2023 13:00:34 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:20 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps11 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/cibi_lucani_1_w182_h113.png	83.221.105.157	200	5.7 kB
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/cibi_lucani_1_w182_h113.png IP 83.221.105.157:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 182 x 113, 8-bit/color RGBA, non-interlaced\012- data Size 5.7 kB (5706 bytes) Hash 1b4825aa53c30ba005a443d0a0eba5b0 169381f1721d41f5c467e5c5fb5b49408f724f91 74798bb9dfe832bd934a03f296cb8fdbe955c0de28b784e26583ee620816247f HTTP Headers GET /nl/res/521/newsletters/447/img/cibi_lucani_1_w182_h113.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Last-Modified: Mon, 18 Sep 2023 13:40:15 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps12 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mntwico.png	83.221.105.156	200	541 B
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mntwico.png IP 83.221.105.156:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data Size 541 B (541 bytes) Hash 68a6bdf11d7def8087d4bf011e22e7ff c8d218acf84705087da5446c8d8c7248f284f8d2 026060095461d056fd2e2cca11c8cb27c353b9efef6da386125a8552f097c968 HTTP Headers GET /nl/res/521/newsletters/447/img/mntwico.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps12 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnemailico.png	83.221.105.157	200	695 B
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnemailico.png IP 83.221.105.157:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data Size 695 B (695 bytes) Hash fdc4cd68b36416d596fddb3a14c87b6f 9bf3f1c64e83074d3a32ba403a1b2041b2c98e94 fe984f620076452fa8fca0eae4012b137a1ec9f12f453b62af6e38f444c1a3ec HTTP Headers GET /nl/res/521/newsletters/447/img/mnemailico.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:20 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps11 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnfbico.png	83.221.105.157	200	472 B
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnfbico.png IP 83.221.105.157:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data Size 472 B (472 bytes) Hash b1a349bd49cf288c7151fc5788b27681 5190f6a9454fdc7e730fde50e83d1a09a39ae0c4 369efc5656227b5df0b05828f5d5f32065d6d82aad9a4c9aececea01efb4bb41 HTTP Headers GET /nl/res/521/newsletters/447/img/mnfbico.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps10 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnlnico.png	83.221.105.157	200	533 B
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnlnico.png IP 83.221.105.157:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data Size 533 B (533 bytes) Hash ac2028f5357b0eef052eaacce58bb494 b9c618dbcc982c4c60dc41e09d9e1510831dae71 f6bc2f5976aa003cc45a895ff7d35e2f2e1cd25b2d72b9dc22062d734829a565 HTTP Headers GET /nl/res/521/newsletters/447/img/mnlnico.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps10 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnwaico.png	83.221.105.156	200	569 B
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mnwaico.png IP 83.221.105.156:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data Size 569 B (569 bytes) Hash d29050714de4b444d3e44d4ebb0bf096 9bb609e383582f5a563031bff57230f1688a7754 bc36feef9c1978ebc0c7cb5648eb451d6ce37c260f71c340c9c383e2b5bc3d9d HTTP Headers GET /nl/res/521/newsletters/447/img/mnwaico.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps10 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mntgico.png	83.221.105.157	200	485 B
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/mntgico.png IP 83.221.105.157:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data Size 485 B (485 bytes) Hash 0d1883147c2d4b2602c84fd8f9cdf838 5c2e1d0e75bd4229960a7c522b81d5e4a77b2f31 cad512f26f2a3b2ec7ece85e109fc9e1530588ef5342470959caf32876851d65 HTTP Headers GET /nl/res/521/newsletters/447/img/mntgico.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps12 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/smartphone_w273_h304.png	83.221.105.157	200	52 kB
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/smartphone_w273_h304.png IP 83.221.105.157:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 273 x 304, 8-bit/color RGBA, non-interlaced\012- data Size 52 kB (51781 bytes) Hash b5cc8c2f6fbccd0a83937c76a1651150 4a8076e27dd6a64b1c48b78c725398428e97bab1 bdb746fc01b687553dcf4d203bc38bf9f1f800ce017d27487aa575d55a017880 HTTP Headers GET /nl/res/521/newsletters/447/img/smartphone_w273_h304.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:21 GMT Last-Modified: Mon, 18 Sep 2023 14:35:27 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps12 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/favicon.ico	83.221.105.156	200	14 kB
URL GET HTTP/1.1 pellegrini.mailmnsa.com/favicon.ico IP 83.221.105.156:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9575) Size 14 kB (14014 bytes) Hash 43f967b084875b59ddb6abc873ae71d7 7c761151aab3efd211fa071217659aa412840398 fb1996e3a20f64b0b65b36eb624e32acc48b74320d31cb0999801f46a5294877 HTTP Headers GET /favicon.ico HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff Last-modified: Thu, 21 Sep 2023 13:42:12 GMT Cache-Control: public, max-age=14400 Expires: Sat, 23 Sep 2023 07:48:22 GMT Content-Type: text/html;charset=UTF-8 Date: Sat, 23 Sep 2023 03:48:21 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps10 content-encoding: gzip transfer-encoding: chunked

	GET pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/yellow_and_black_food_discount_voucher_card_1__w600_h426.png	83.221.105.157	200	564 kB
URL GET HTTP/1.1 pellegrini.mailmnsa.com/nl/res/521/newsletters/447/img/yellow_and_black_food_discount_voucher_card_1__w600_h426.png IP 83.221.105.157:443 ASN #20746 Telecom Italia Requested by https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv Certificate IssuerLet's Encrypt Subject.mailmnsa.com Fingerprint80:B9:EE:2A:7C:B4:EF:C3:15:BE:12:B4:3A:ED:38:2F:4D:07:61:93 ValidityFri, 22 Sep 2023 01:03:26 GMT - Thu, 21 Dec 2023 01:03:25 GMT File type PNG image data, 600 x 426, 8-bit/color RGBA, non-interlaced\012- data Size 564 kB (564303 bytes) Hash 932e3f27c6d4f6df9e59e61680cc1350 50edc0f017dae11b0b1ac06e80d71d4c0d481e39 3a0d0c615249d90864442aa37dc764088ebeb674370f135eb1b341a276dd2a56 HTTP Headers GET /nl/res/521/newsletters/447/img/yellow_and_black_food_discount_voucher_card_1__w600_h426.png HTTP/1.1 Host: pellegrini.mailmnsa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://pellegrini.mailmnsa.com/nl/link?c=1f7kd&d=lf&h=lr4cca4ivf9naqgaiarp9ml3b&i=g9&iw=1f&n=dv&p=T301772758&s=wv&sn=dv DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 Expect-CT: max-age=86400, report-uri="https://csp-reporting.mag-news.it" Content-Security-Policy: default-src ; script-src 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; font-src * data: blob:; media-src * blob:; connect-src * data: blob:; worker-src * blob:; report-uri https://csp-reporting.mag-news.it X-MnPageType: fe X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin X-Content-Type-Options: nosniff x-mn-cache: no-cache Cache-Control: max-age=14400 Expires: Sat, 23 Sep 2023 07:48:22 GMT Last-Modified: Mon, 18 Sep 2023 14:28:13 GMT Content-Type: image/png Date: Sat, 23 Sep 2023 03:48:22 GMT Keep-Alive: timeout=360 Connection: keep-alive X-Proxy-Path: secure_request;fehttps_a;fehttps_d;fehttps10 content-encoding: gzip transfer-encoding: chunked

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (12)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by