Report - www.mannellastore.it/motificationv5/notice111/global/login.php?acc=k3F76x38xsUhVhPvLmkiHRImKYbp9ojafXULXQqyzKLJdXXxkKDHIBoi30bFIIeMBe0BhL2sSNn4ZUskF6nA5gYSybk8MtjFQ0AuyQJeCjG1XNHIsuzkJcXCK3B5../index.php../index.php/../index.php

Report Overview

Visited public
2024-08-14 22:17:01
Tags
netflix phishing
URL
www.mannellastore.it/motificationv5/notice111/global/login.php?acc=k3F76x38xsUhVhPvLmkiHRImKYbp9ojafXULXQqyzKLJdXXxkKDHIBoi30bFIIeMBe0BhL2sSNn4ZUskF6nA5gYSybk8MtjFQ0AuyQJeCjG1XNHIsuzkJcXCK3B5../index.php../index.php/../index.php
Finishing URL
www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
IP / ASN
89.46.106.33
#31034 Aruba S.p.A.
Title
Netflix
Phishing - Netflix

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
ocsp06.actalis.it	190155	682 B	8.4 kB	109.70.240.114
www.mannellastore.it	unknown	12 kB	599 kB	89.46.106.33
assets.nflxext.com	3871	520 B	74 kB	45.57.90.1
r11.o.lencr.org	unknown	1.3 kB	3.6 kB	23.36.77.32
r10.o.lencr.org	unknown	981 B	2.7 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	www.mannellastore.it/motificationv5/notice111/global/js/main.js?q3USPesa	ScriptElement	19 kB	2023-11-16	2024-08-20
Pretty URL www.mannellastore.it/motificationv5/notice111/global/js/main.js?q3USPesa IP 89.46.106.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 18:18 Last Seen2024-08-20 19:15 Times Seen200 Hash ab8dda5169d1aa5f37c368d732f82960 b7bedb690557cf9a50a7da395b33633b112cb405 eb5bf9882e8a04f151a0c6101006e60c6c914049d34f2ea5d23a2b62f3359670 Loading...

	www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI	ScriptElement	1.4 kB	2024-08-19	2024-08-19
Pretty URL www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI IP 89.46.106.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 13:17 Last Seen2024-08-19 13:17 Times Seen1 Hash 802061409dbf20cc7f2f7e9ccf186e95 aead19da7c336946d9002305c64dbd50b541a5a5 42a61b2f28806800b105334f373c0639c91292d8588ffde5d0729e68ab34cdbe Loading...

	www.mannellastore.it/motificationv5/notice111/global/js/jquery-3.4.1.min.js?hH2mTFLR	ScriptElement	88 kB	2023-03-07	2025-05-11
Pretty URL www.mannellastore.it/motificationv5/notice111/global/js/jquery-3.4.1.min.js?hH2mTFLR IP 89.46.106.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-11 11:26 Times Seen1728 Hash a6b6350ee94a3ea74595c065cbf58af0 b15f7cfa79519756dff1ad22553fd0ed09024343 412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb Loading...

	www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI	ScriptElement	1.8 kB	2024-08-19	2024-08-19
Pretty URL www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI IP 89.46.106.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 13:17 Last Seen2024-08-19 13:17 Times Seen1 Hash 732eb64ff5b91a8e343077963377780b 7b50dd26572ce7b342d85524db27710c4375afc9 fc9ae9af9f89923b8eecbe21ee420686118daa3e8821872ebc31f490f7eefb87 Loading...

	www.mannellastore.it/motificationv5/notice111/admin/assets/jq.js	ScriptElement	90 kB	2023-03-07	2025-05-12
Pretty URL www.mannellastore.it/motificationv5/notice111/admin/assets/jq.js IP 89.46.106.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-12 03:10 Times Seen3444 Hash 3e4bb227fb55271bfe9c9d4a09147bd8 156837f75f6600ccb602b4efcbd393636c33f35e ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127 Loading...

	www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI	ScriptElement	7.0 kB	2024-03-04	2024-08-20
Pretty URL www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI IP 89.46.106.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-04 06:01 Last Seen2024-08-20 08:25 Times Seen103 Hash 58e2c674aa26ece5bf27b9a39a86550c e9dce4b57ad7b3ef9b097fe13350add715711f93 1cf2ab1c41e16d26f69f62593da646d257eed23bfffa7ede619ac38542100842 Loading...

HTTP Transactions (28)

URL IP Response Size

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
686480d25645ac2aca7a99974693a82f
55ca9d53bd758d2afc75e8a9b59c656ff26a3f70
8902058e383c2f43751417e1af1d582f7a16ce0b6fc180ab20cbc76c4b00f914

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8902058E383C2F43751417E1AF1D582F7A16CE0B6FC180AB20CBC76C4B00F914"
Last-Modified: Wed, 14 Aug 2024 12:55:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7400
Expires: Thu, 15 Aug 2024 00:19:53 GMT
Date: Wed, 14 Aug 2024 22:16:33 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
90149b127cd563315012f026a9e0544f
1e148905fa524fb8fec15249f30f33085978dc2e
7098a3b23aece2b00e86fd3a23c5e532001a5002b061170d3ed53ddd36bf8f5b

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7098A3B23AECE2B00E86FD3A23C5E532001A5002B061170D3ED53DDD36BF8F5B"
Last-Modified: Tue, 13 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2656
Expires: Wed, 14 Aug 2024 23:00:49 GMT
Date: Wed, 14 Aug 2024 22:16:33 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
4d209e16679910b467c26590a0073236
ddd59fa6902b498e9c0cfb22e342757f954789d0
9ef3dab56215a67804db0e12d33772a1902f5914b788530717712902a294bcb5

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9EF3DAB56215A67804DB0E12D33772A1902F5914B788530717712902A294BCB5"
Last-Modified: Wed, 14 Aug 2024 21:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20549
Expires: Thu, 15 Aug 2024 03:59:03 GMT
Date: Wed, 14 Aug 2024 22:16:34 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
1401eaecc1dc9b318d389cf687018dd9
49eef7150c440fee15deabf064e11a9fefad1845
5b79b468e1cac072d2582b2937241a1f1bee8fdbbc4741818061b6763652523e

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5B79B468E1CAC072D2582B2937241A1F1BEE8FDBBC4741818061B6763652523E"
Last-Modified: Tue, 13 Aug 2024 18:57:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2908
Expires: Wed, 14 Aug 2024 23:05:02 GMT
Date: Wed, 14 Aug 2024 22:16:34 GMT
Connection: keep-alive

ocsp06.actalis.it/VA/AUTHDV-G3

109.70.240.114

3.9 kB

URL
ocsp06.actalis.it/VA/AUTHDV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
3.9 kB (3926 bytes)
Hash
fb3fa2d1bea3ee3fdf80edd487a04cb0
7e96ccc69f7deaa427718a900735f6e3c6b09a59
33efcbf52ea10ab0464758109a62915aef972b97c7464fff056a380b5ca8ab16

HTTP Headers

POST /VA/AUTHDV-G3 HTTP/1.1
Host: ocsp06.actalis.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Wed, 14 Aug 2024 22:16:34 GMT
Content-Type: application/ocsp-response
Content-Length: 3926
Connection: keep-alive
Last-Modified: Wed, 14 Aug 2024 21:46:38 GMT
Expires: Thu, 15 Aug 2024 21:46:37 GMT
ETag: "7e96ccc69f7deaa427718a900735f6e3c6b09a59"

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
77619f0113a62e8c4c44f195901b385c
1e1a5e3768ca683e66667aa14efa7042df57ee2f
520dbca26889dcd055ad1e36265c6d088b8b7c9d6907cc59eecc7ff47e4c9942

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "520DBCA26889DCD055AD1E36265C6D088B8B7C9D6907CC59EECC7FF47E4C9942"
Last-Modified: Mon, 12 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15070
Expires: Thu, 15 Aug 2024 02:27:46 GMT
Date: Wed, 14 Aug 2024 22:16:36 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
77619f0113a62e8c4c44f195901b385c
1e1a5e3768ca683e66667aa14efa7042df57ee2f
520dbca26889dcd055ad1e36265c6d088b8b7c9d6907cc59eecc7ff47e4c9942

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "520DBCA26889DCD055AD1E36265C6D088B8B7C9D6907CC59EECC7FF47E4C9942"
Last-Modified: Mon, 12 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15070
Expires: Thu, 15 Aug 2024 02:27:46 GMT
Date: Wed, 14 Aug 2024 22:16:36 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
77619f0113a62e8c4c44f195901b385c
1e1a5e3768ca683e66667aa14efa7042df57ee2f
520dbca26889dcd055ad1e36265c6d088b8b7c9d6907cc59eecc7ff47e4c9942

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "520DBCA26889DCD055AD1E36265C6D088B8B7C9D6907CC59EECC7FF47E4C9942"
Last-Modified: Mon, 12 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Thu, 15 Aug 2024 02:28:02 GMT
Date: Wed, 14 Aug 2024 22:16:36 GMT
Connection: keep-alive

www.mannellastore.it/motificationv5/notice111/global/login.php?acc=k3F76x38xsUhVhPvLmkiHRImKYbp9ojafXULXQqyzKLJdXXxkKDHIBoi30bFIIeMBe0BhL2sSNn4ZUskF6nA5gYSybk8MtjFQ0AuyQJeCjG1XNHIsuzkJcXCK3B5../index.php../index.php/../index.php

89.46.106.33

302 Found

0 B

URL User Request GET HTTP/2
www.mannellastore.it/motificationv5/notice111/global/login.php?acc=k3F76x38xsUhVhPvLmkiHRImKYbp9ojafXULXQqyzKLJdXXxkKDHIBoi30bFIIeMBe0BhL2sSNn4ZUskF6nA5gYSybk8MtjFQ0AuyQJeCjG1XNHIsuzkJcXCK3B5../index.php../index.php/../index.php
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/login.php?acc=k3F76x38xsUhVhPvLmkiHRImKYbp9ojafXULXQqyzKLJdXXxkKDHIBoi30bFIIeMBe0BhL2sSNn4ZUskF6nA5gYSybk8MtjFQ0AuyQJeCjG1XNHIsuzkJcXCK3B5../index.php../index.php/../index.php HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: aruba-proxy
date: Wed, 14 Aug 2024 22:16:37 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: ../index.php
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4; path=/
vary: User-Agent
x-servername: webx.aruba.it
x-aruba-cache: BYPASS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp06.actalis.it/VA/AUTHDV-G3

109.70.240.114

3.9 kB

URL
ocsp06.actalis.it/VA/AUTHDV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
3.9 kB (3926 bytes)
Hash
7fba74a55ed8e8c9c63370883f8cccf2
c1b1575f31c89679e114d469d492f7fc785123bd
03c4225c5d5efd8cc480c9565b41a0ea06dadcd1593b19f2bcb8df2497430f5c

HTTP Headers

POST /VA/AUTHDV-G3 HTTP/1.1
Host: ocsp06.actalis.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Wed, 14 Aug 2024 22:16:37 GMT
Content-Type: application/ocsp-response
Content-Length: 3926
Connection: keep-alive
Last-Modified: Wed, 14 Aug 2024 21:46:38 GMT
Expires: Thu, 15 Aug 2024 21:46:37 GMT
ETag: "c1b1575f31c89679e114d469d492f7fc785123bd"

www.mannellastore.it/

89.46.106.33

168 B

URL
www.mannellastore.it/
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
168 B (168 bytes)
Hash
82f04704c04c2706b1b96a73be2ff3a9
8cd210a378b7f54ce8945cdf1c7ce1f696171eee
ede97dbf06b3e703cd950b3591a29351ce9b24eccab58b1a913b3c7e4571bf02

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET / HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: aruba-proxy
Date: Wed, 14 Aug 2024 22:16:37 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
Location: https://www.mannellastore.it/
X-ServerName: webx.aruba.it
Alt-Svc: h3=":443"; ma=86400

www.mannellastore.it/

89.46.106.33

41 kB

URL
www.mannellastore.it/
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
gzip compressed data, from Unix
Size
41 kB (40592 bytes)
Hash
43dcd96d47c10bf8416e9bd1073ea427
63a47b17e071a36688a6bd60f0f249a91df5449c
2f4889a2b8f4bdad3c9409c2826f1c240cab93c1687af3213a85c6f09dd75625

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET / HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: aruba-proxy
date: Wed, 14 Aug 2024 22:16:46 GMT
content-type: text/html; charset=UTF-8
x-litespeed-tag: f72_HTTP.200
link: <https://www.mannellastore.it/wp-json/>; rel="https://api.w.org/", <https://www.mannellastore.it/wp-json/wp/v2/pages/110>; rel="alternate"; title="JSON"; type="application/json", <https://www.mannellastore.it/>; rel=shortlink
cache-control: max-age=2592000
expires: Fri, 13 Sep 2024 22:16:39 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
x-aruba-cache: BYPASS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.mannellastore.it/motificationv5/notice111/global/css/net-login.css?Vt7mywEM

89.46.106.33

200 OK

21 kB

URL GET HTTP/3
www.mannellastore.it/motificationv5/notice111/global/css/net-login.css?Vt7mywEM
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
21 kB (21171 bytes)
Hash
c2a445206fec00dae5520218e08b24e7
00b76a64cd055fe6a7f5093997d1d1ef0544003d
c4f1bc674814c14a91c378aeabcf7697c44cea39d3a67d5e4d73bb3171e457a9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/css/net-login.css?Vt7mywEM HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: text/css
content-length: 21171
last-modified: Wed, 10 Jul 2024 21:16:08 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Thu, 14 Aug 2025 22:16:54 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/global/js/jquery-3.4.1.min.js?hH2mTFLR

89.46.106.33

200 OK

31 kB

URL GET HTTP/3
www.mannellastore.it/motificationv5/notice111/global/js/jquery-3.4.1.min.js?hH2mTFLR
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30682 bytes)
Hash
a6b6350ee94a3ea74595c065cbf58af0
b15f7cfa79519756dff1ad22553fd0ed09024343
412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/js/jquery-3.4.1.min.js?hH2mTFLR HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: application/javascript
content-length: 30682
last-modified: Wed, 10 Jul 2024 21:16:10 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Thu, 14 Aug 2025 22:16:54 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/global/images/fb.png?ZNucpITv

89.46.106.33

200 OK

1.5 kB

URL GET HTTP/3
www.mannellastore.it/motificationv5/notice111/global/images/fb.png?ZNucpITv
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
PNG image data, 57 x 57, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1455 bytes)
Hash
a33ca47ef110b6e3ec5086b8776407d3
dff5bbbe61b4920a23fb21a7fca69ca9e94dcb6c
3e49d9dc43267590184389ab3da0cb9f7308c9c848667dab109a0f7c73450ece

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/images/fb.png?ZNucpITv HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: image/png
content-length: 1455
last-modified: Wed, 10 Jul 2024 21:16:10 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Fri, 13 Sep 2024 22:16:54 GMT
vary: User-Agent
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/admin/assets/jq.js

89.46.106.33

200 OK

31 kB

URL GET HTTP/3
www.mannellastore.it/motificationv5/notice111/admin/assets/jq.js
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
JavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators
Size
31 kB (30905 bytes)
Hash
3e4bb227fb55271bfe9c9d4a09147bd8
156837f75f6600ccb602b4efcbd393636c33f35e
ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/admin/assets/jq.js HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: application/javascript
content-length: 30905
last-modified: Wed, 10 Jul 2024 21:16:08 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Thu, 14 Aug 2025 22:16:54 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/global/js/main.js?q3USPesa

89.46.106.33

200 OK

2.8 kB

URL GET HTTP/3
www.mannellastore.it/motificationv5/notice111/global/js/main.js?q3USPesa
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
2.8 kB (2787 bytes)
Hash
ab8dda5169d1aa5f37c368d732f82960
b7bedb690557cf9a50a7da395b33633b112cb405
eb5bf9882e8a04f151a0c6101006e60c6c914049d34f2ea5d23a2b62f3359670

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/js/main.js?q3USPesa HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: application/javascript
content-length: 2787
last-modified: Wed, 10 Jul 2024 21:16:10 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Thu, 14 Aug 2025 22:16:54 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/index.php

89.46.106.33

302 Found

34 kB

URL User Request GET HTTP/2
www.mannellastore.it/motificationv5/notice111/index.php
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
data
Size
34 kB (34020 bytes)
Hash
3c087b1755fcb637221b960d3c955527
8bae2afd290c469ef8069a263dd2e7049c59cf69
6f940f07c4ef243d1eb442615073a1d62861ba644a15a914cc6bbd39fef1afad

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/index.php HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: aruba-proxy
date: Wed, 14 Aug 2024 22:16:50 GMT
content-type: text/html; charset=UTF-8
location: global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
x-servername: webx.aruba.it
x-aruba-cache: BYPASS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.mannellastore.it/motificationv5/notice111/global/images/bg.jpg?DY8Oe1MH

89.46.106.33

200 OK

318 kB

URL GET HTTP/3
www.mannellastore.it/motificationv5/notice111/global/images/bg.jpg?DY8Oe1MH
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3
Size
318 kB (318355 bytes)
Hash
9ad1275ea83d2af4d83b025eb09f71bc
ad072def739cf0fd53c1e1b11ea04acf75650043
cafe2f2257873ec23b02a6464281cb1466456288b74328b3157e787ab9087fad

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/images/bg.jpg?DY8Oe1MH HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: image/jpeg
content-length: 318355
last-modified: Wed, 10 Jul 2024 21:16:08 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Fri, 13 Sep 2024 22:16:54 GMT
vary: User-Agent
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

assets.nflxext.com/ffe/siteui/fonts/nf-icon-v1-93.woff

45.57.90.1

200 OK

74 kB

URL GET HTTP/1.1
assets.nflxext.com/ffe/siteui/fonts/nf-icon-v1-93.woff
IP
45.57.90.1:443
ASN
#40027 NETFLIX-ASN

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerDigiCert Inc
Subject*.1.nflxso.net
FingerprintD8:DB:FC:F0:72:85:C4:78:66:EC:9C:1E:C4:3E:54:1D:94:BA:C7:CF
ValidityWed, 17 Jul 2024 00:00:00 GMT - Thu, 22 Aug 2024 23:21:07 GMT

File type
Web Open Font Format, CFF, length 73572, version 0.0
Size
74 kB (73572 bytes)
Hash
7cf6156cc481244b5a254362d7b73f00
4391003d1cb06d2bd1921a5813a57604fa7d9935
98713b53a74ebe7e326353080c5f1653e83af61d6363c0b3c4c67d6d24197b4d

HTTP Headers

GET /ffe/siteui/fonts/nf-icon-v1-93.woff HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mannellastore.it
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Aug 2024 22:16:54 GMT
Content-Type: font/woff
Content-Length: 73572
Connection: keep-alive
Content-MD5: fPYVbMSBJEtaJUNi17c/AA==
Last-Modified: Mon, 29 Jan 2018 01:50:51 GMT
Cache-Control: max-age=604801
Expires: Wed, 21 Aug 2024 22:16:55 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

www.mannellastore.it/motificationv5/notice111/admin/async/async.php

89.46.106.33

0 B

URL POST
www.mannellastore.it/motificationv5/notice111/admin/async/async.php
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

POST /motificationv5/notice111/admin/async/async.php HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.mannellastore.it
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/global/images/net.ico?c6mP7S7G

89.46.106.33

1.6 kB

URL GET
www.mannellastore.it/motificationv5/notice111/global/images/net.ico?c6mP7S7G
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel
Size
1.6 kB (1559 bytes)
Hash
41b45fdce09bd6acd07c7a8949da675e
931e18dfc6e7d950dc2f2bbdfe31e1ea720acf7c
abe8012eb65c0dc0ac3e87dcc1e60e1908ebd8f12b7c47a5df1856f7a7bb1edd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/images/net.ico?c6mP7S7G HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:57 GMT
content-type: image/x-icon
content-length: 1559
last-modified: Wed, 10 Jul 2024 21:16:10 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Wed, 21 Aug 2024 22:16:57 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/admin/async/async.php

89.46.106.33

0 B

URL POST
www.mannellastore.it/motificationv5/notice111/admin/async/async.php
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

POST /motificationv5/notice111/admin/async/async.php HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.mannellastore.it
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/admin/async/async.php

89.46.106.33

0 B

URL POST
www.mannellastore.it/motificationv5/notice111/admin/async/async.php
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

POST /motificationv5/notice111/admin/async/async.php HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.mannellastore.it
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:58 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/admin/async/async.php

89.46.106.33

0 B

URL POST
www.mannellastore.it/motificationv5/notice111/admin/async/async.php
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

POST /motificationv5/notice111/admin/async/async.php HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.mannellastore.it
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:58 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/admin/async/async.php

89.46.106.33

0 B

URL POST
www.mannellastore.it/motificationv5/notice111/admin/async/async.php
IP
89.46.106.33:0
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

POST /motificationv5/notice111/admin/async/async.php HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.mannellastore.it
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:58 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI

89.46.106.33

200 OK

21 kB

URL User Request GET HTTP/3
www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
JavaScript source, ASCII text, with very long lines (6955), with CRLF line terminators
Size
21 kB (21391 bytes)
Hash
e62fb12cce0072156ed4ea1f3e233456
90cb4aef09a666ad7fbe7b6f83e9cc627cb65254
d065b9d57a1aee9440272d8c747e2b25997ed0df041de7a6174854630cd79b1e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:53 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
x-aruba-cache: BYPASS
alt-svc: h3=":443"; ma=86400

www.mannellastore.it/motificationv5/notice111/global/js/jquery.js?l9otosac

89.46.106.33

200 OK

90 kB

URL GET HTTP/3
www.mannellastore.it/motificationv5/notice111/global/js/jquery.js?l9otosac
IP
89.46.106.33:443
ASN
#31034 Aruba S.p.A.

Requested by
https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Certificate
IssuerActalis S.p.A.
Subject*.mannellastore.it
FingerprintF1:38:33:68:1E:AC:B3:F2:74:99:78:1E:46:06:6E:4F:65:34:6D:A4
ValidityThu, 01 Feb 2024 03:00:39 GMT - Sat, 01 Feb 2025 03:00:39 GMT

File type
JavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators
Size
90 kB (89501 bytes)
Hash
3e4bb227fb55271bfe9c9d4a09147bd8
156837f75f6600ccb602b4efcbd393636c33f35e
ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Netflix

HTTP Headers

GET /motificationv5/notice111/global/js/jquery.js?l9otosac HTTP/1.1
Host: www.mannellastore.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mannellastore.it/motificationv5/notice111/global/login.php?acc=O6fM82wAXAYYsPVNKDix5PYWkEw5vIqYV4t5dsyJsvZXH4A5pRXvdJmdsj4mjy1nvWPYLxbCIBxL8ra6UPMZJV4ivkOAi0HH5k3Y6vbA6ll52zr41wIRsA0QBETI
Cookie: PHPSESSID=kitg6soetts17gjusjkclgq3m4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
server: nginx
date: Wed, 14 Aug 2024 22:16:54 GMT
content-type: application/javascript
content-length: 30905
last-modified: Wed, 10 Jul 2024 21:16:10 GMT
accept-ranges: bytes
cache-control: max-age=31449600, public
expires: Thu, 14 Aug 2025 22:16:54 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-servername: webx.aruba.it
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (28)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN