Report - edi3dhltest.edistrada.pl/

Report Overview

Visited public
2023-11-27 14:17:20
Tags
URL
edi3dhltest.edistrada.pl/
Finishing URL
edi3dhltest.edistrada.pl/#/
IP / ASN
91.206.38.164
#20889 All for One sp. z o.o.
Title
Zaloguj się do aplikacji eFaktura DHL Parcel

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
library.startquestion.com	unknown	2016-05-19	2021-11-23 06:54:34	2023-11-18 17:57:46	445 B	12 kB	172.67.71.156
app.startquestion.com	unknown	2016-05-19	2022-10-04 10:03:36	2023-11-20 14:40:51	520 B	884 B	104.26.7.229
edi3dhltest.edistrada.pl	unknown	2011-09-15	2019-07-30 08:33:00	2023-10-23 11:03:28	12 kB	2.5 MB	91.206.38.164
cdn.cookielaw.org	502	2011-06-20	2013-12-28 14:20:36	2023-11-27 07:32:42	6.2 kB	229 kB	104.18.131.236
dhl.pl.qas.edistrada.pl	unknown	2011-09-15	2023-05-11 14:05:30	2023-10-13 10:28:07	7.6 kB	22 kB	91.206.38.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.
2023-11-27	medium	edi3dhltest.edistrada.pl/	DHL Airways, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (39)

	URL	From	Size	First Seen	Last Seen
	cdn.cookielaw.org/scripttemplates/otSDKStub.js	ScriptElement	21 kB	2023-11-21	2024-08-20
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.18.131.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-21 03:18 Last Seen2024-08-20 18:33 Times Seen2340 Hash 653dc5af4212698688db76a143fdd61a 393fada41c29c4d6c85a7857def729bc4d2cecce 9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a Loading...

	unknown	Function	604 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 94df9320e5ac35b22daa375e52433721 9b066bc9ae34b039c13e88632c0eed171d3cb27d e89e730b2c3137289b4d9906b493c01a7c81cf71df3c04480ebc22f8023bf2b6 Loading...

	unknown	Function	561 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash e48809a60619a4af5ee610a430fcf8af ff33384c95899c7d92174487b53a94ad1d9e4806 e110ebee2327ea0e4810ed89cc99aae15ee90937e96ddfd6bfcdb9b861da9ed6 Loading...

	unknown	Function	434 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 4743ca38c5f58b3402838e74fb1453ea c0cc0dec70b2ec997dea73f1051ed2aecebce1e8 2cf32b49e0d4c8015af1497d91340a7c88c0c4e3df5209fe337a4078707c4c27 Loading...

	edi3dhltest.edistrada.pl/app/app-86d5ed6318.js	ScriptElement	385 kB	2023-10-24	2024-08-21
Pretty URL edi3dhltest.edistrada.pl/app/app-86d5ed6318.js IP 91.206.38.164 ASN #20889 All for One sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 01:45 Last Seen2024-08-21 03:40 Times Seen3 Hash 31c539345dd369d11b6a8fc2119d5526 69db9aa75d8b487686079d1175d28b28c4ea4557 a34bd5a952f5132ae30aece5edf0448323008dc48fd248085632f465988e83f7 Loading...

	unknown	Function	305 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash a053842059e0a7c4c08ed1d98487cc2d d12e6817ff69bfdb6ab015736e861e8b0384fbe6 06ad60cc0483d1961949105ceaad2d89ba546c8a6f214268ef6936869f8cf3b1 Loading...

	unknown	Function	702 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 1f505ca8a487e6599058c78270694d0a d1f6d57cb773365de4d61b87b731ebd2a0b851f4 5a0528fef57c79fe2232e9009fb0f67d50274ba1f7e1ba2229a12b873d2e21cb Loading...

	unknown	Function	837 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 4c3a9353794e76c2ba89f7f0d8afd2d8 cd6236e027258b7820b21f82e43e43324c483029 7e7e95dffc06fc330dfffa4481d68cb7684ba1be4e467d99eb80be2b9532f015 Loading...

	unknown	Function	554 B	2023-04-19	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-05-09 08:31 Times Seen4588 Hash 489a42efb1287235decc453fb7d0f794 90d00c593a47fc247cd235fabfe192badb789df8 e5f18b619f696ae58aa6600e61c435a0e9cb3e474ce9e7fee8f2cb5827b7723d Loading...

	unknown	Function	801 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 5912b38019a8765d0ba13ea8f4505d5c 9c04cf0368eb0fc04efb8ce5f4133e73f872a3a6 4676b37ef6738a159a70269a96e6210c9f5156f7f6de192362a29d3428e0ea35 Loading...

	unknown	Function	200 B	2023-04-12	2025-05-10
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:29 Last Seen2025-05-10 23:55 Times Seen26177 Hash 9de07c8eabd04438b83a70e2ba52adf8 6d2814a8920daec08e35dc866cb489839c843aae a5374d23ef28fe0abf6eeef45f323781ada2bb3b7e784d98330807423bbe10b1 Loading...

	unknown	Function	536 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 704e07134f69e5a40e384cc2c13c2564 d22d417cf9891857900afa8bce601659be227589 1b8498e7d2ede00a917a62a86432579962913f925082294a484ebe868a0a2267 Loading...

	unknown	Function	522 B	2023-04-13	2025-05-10
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 19:08 Last Seen2025-05-10 23:55 Times Seen5055 Hash b90e591ca99fe4edd3358e16eebdb00d bccd71b709a47bbc7062f168a49d286650ad9263 1590b16e655f5bb4dd2e4c4ee8eab12563f967a2240bde212dffc15f59427879 Loading...

	unknown	Function	1.2 kB	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen14 Hash 1bad6a805d466f247a6727f6910a2ccc 8ef55bf2e0a76231255daa017433e3413c2802d2 06c2cad777af75c182e7b12216dfaf464aad0262d44e916a61823e9a10dc1aee Loading...

	edi3dhltest.edistrada.pl/	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL edi3dhltest.edistrada.pl/ IP 91.206.38.164 ASN #20889 All for One sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 14:36 Times Seen4655144 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.cookielaw.org/scripttemplates/202308.2.0/otBannerSdk.js	ScriptElement	431 kB	2023-09-10	2025-05-10
Pretty URL cdn.cookielaw.org/scripttemplates/202308.2.0/otBannerSdk.js IP 104.18.131.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-10 14:41 Last Seen2025-05-10 21:45 Times Seen1197 Hash 65d6272013fd813bcb3bb059c3611dad f3d451ec0b826d15f1d7dd7b6f3f56f9d5fddc4b ee39d0cbc9e9cd88b7dac8ebca680b89e8879081f855152f21772c7834474437 Loading...

	unknown	Function	612 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:55 Times Seen20 Hash 717a4555764e91bac242877dbe35d4bd 4174c61cc0458b52e18d93b02a00d5c43b96ff11 89891448bbe848b69f37f030d25d9d53de3ed182e5d631982489c14ad473ff71 Loading...

	unknown	Function	680 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 9ca1428f7578f607c8658c37c150e8f5 93ca8867e94e0c229812fea4e8262ba27efa0bea ffff6732608f89ffe00d798af475fb91463e27c893392f293340e2096ed4ee62 Loading...

	unknown	Function	1.2 kB	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen14 Hash 07ca3aae6621f8404945f3b26b52c685 706f63d69283552e58b0fdb66c7156f39697f9e6 09af65a8e7382845b7857a51456e5344b535b1689a9436614253bf5d3058b2ec Loading...

	unknown	Function	1.2 kB	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash b8d8c5fef0de5b9410cff1b788981f20 c17d15538279041f67598342151d5fc719c6c5a4 96477e90ce6219ea33e04050a48756d51627cc61b7936d38a59d964a10e1756f Loading...

	unknown	Function	546 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen65 Hash 89878e8651fabb8b143d01bcb052d9bd 6ebc58863528886cc23f44bda7429bd04fba893c 7987a45df7d2090726dbfd72900a6e6fa77d648ecca45758374c0fbdd267445d Loading...

	unknown	Function	538 B	2023-04-19	2025-04-02
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-04-02 04:12 Times Seen89 Hash bc7d1495dfd5e822fb398f8a8fff1fdc 88056ab83a3bc418a20111ff8d188dbab3270cb7 6eca170f6ae56b3d694c4ef0d5d2bbbd9492561475ce2fb74df961c7fc111a65 Loading...

	unknown	Function	1.5 kB	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 21c9d321459d453127370655d4253957 450325bb127c0ec013e72cb712cf56e8a4545ff3 29ef7e3a1de41888398142345cac14fc1ede03b67e61cc7cfb46f0c584dcb1bd Loading...

	unknown	Function	514 B	2023-04-12	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 20:29 Last Seen2025-05-09 08:31 Times Seen7000 Hash a261e60d27380922927eb2b2803e496a 69dd6dcce7863b6741553f145074ceb9e90760eb 3a96c9ffcfcc900ed3681cda02ace5270d253fa9c0b0736d6941b5791864f763 Loading...

	unknown	Function	530 B	2023-04-19	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-05-09 10:07 Times Seen4773 Hash ecea0d276212c6289b1797bcc9d08e2a e6b207336eb78b8ab5fc6e0f02bcc8e70b1b50aa 9bd4f6a4a76020554927a81ce600044aab9ae42a58ef6ed5466cb7cdf4d586a4 Loading...

	unknown	Function	612 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:55 Times Seen19 Hash 33e0f52d74bc5b5673f7a55ebb39d11d 4d82084bf8524aaa5547d4e49b569330665d41bc b74dff117da71b3196a19e2b59811498501ae8db9a0687ddfb48bd8787f101f1 Loading...

	unknown	Function	26 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:13 Last Seen2025-05-11 14:34 Times Seen127482 Hash 1c862db5f2555377c2dc1e62ed7b3981 c29e6dc25c08a70995127ec13ded6f80d9a36174 27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac Loading...

	edi3dhltest.edistrada.pl/i18n/angular-locale_pl.js	ScriptElement	3.1 kB	2023-03-08	2025-03-30
Pretty URL edi3dhltest.edistrada.pl/i18n/angular-locale_pl.js IP 91.206.38.164 ASN #20889 All for One sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:04 Last Seen2025-03-30 02:57 Times Seen16 Hash ca0b0b4d9e5ae293bd5fb0dd1a05ea74 1d1d5506eb84ab8a2383c2c6ef9ee01f92005b44 94eef3164ae2c5fb44253e8cb117f3fdffa40d0168102aaa09b63576031c54a6 Loading...

	unknown	Function	482 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen14 Hash 2efff592dcca57bbcae7ad0289bc69aa 49ad7501e6944c70bb30cbb39b2019e4aed9e9b8 04cdb00e24f1a3b241d3222942557fc442d50f8506aaf9ee4eb880514ece1d8d Loading...

	unknown	Function	522 B	2023-04-13	2025-05-05
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 19:08 Last Seen2025-05-05 17:36 Times Seen113 Hash 0ba5c40224f8fb1325b8e8f583d7daf4 e4c017d1b2dc1d32f4f27a062ce826aa604e355b 7001544d74c15f2ab276d9682d97a9925b509d84a62a406967844b29ffbf94fc Loading...

	edi3dhltest.edistrada.pl/app/vendor-be87832176.js	ScriptElement	1.1 MB	2023-03-12	2025-03-20
Pretty URL edi3dhltest.edistrada.pl/app/vendor-be87832176.js IP 91.206.38.164 ASN #20889 All for One sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:25 Last Seen2025-03-20 06:39 Times Seen14 Hash 4edfa8509020ef348b8ea55c420dde5d ca880d106fe1405d783ad63c8bfde748ae13beea 5b9f5586e0783f64d4c7fa38931b07644ceff28115e62384cc9f46fa08f7ab7f Loading...

	unknown	Function	1.5 kB	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 18a984ff00c1949b1f2f2fca47a62956 6434983d746464527431beb247b9739b051b9faa 3a940895861356768982ea799f2bc1846e0b904d5179a45846cfabfd10ef4b2f Loading...

	library.startquestion.com/current/startquestion.js	ScriptElement	44 kB	2023-10-24	2024-08-21
Pretty URL library.startquestion.com/current/startquestion.js IP 172.67.71.156 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 01:45 Last Seen2024-08-21 03:40 Times Seen10 Hash e0ebd176f67669ba39a152ad190d7b1a cdcf55e69e6cc45598bf5a210ae01c7a5d67c64e caeaf364ec52455ff9b1215c318759b1749d8bb4d2fef45c03c35e87219546a3 Loading...

	unknown	Function	645 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 90604935ca0eef043c52aaef37b428b5 876f6a17e76057c172a86a004b7c2978b1c1ecc1 e605ea26fdb627fbe7c294b057b272d37085dbe7a67756946eaf87508be2b9c1 Loading...

	unknown	Function	522 B	2023-04-14	2025-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 18:32 Last Seen2025-05-01 06:48 Times Seen48 Hash 486c9afe05bde1b3d8f3e6fe1b408ec4 9e33b879cbe8850d0e8b4bc315c2730bd3822cdd d64bbcfec4b90e46456d1684f98ea055a3e1b9ca705fe064d319458bcd6aa7a3 Loading...

	unknown	Function	599 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 5f608b5deb0ab41032f22f161b52d3e5 9de47f499430cf3f795885e4bb8ec5e3d8739463 bb6b3b46855851664cc4002c0c69867cd9c1bdddad0ffa1662f7adfd50fd9e8d Loading...

	unknown	Function	706 B	2023-04-19	2025-03-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-03-20 06:39 Times Seen15 Hash 512bf611f594d9ec6766db92c6f47c59 5e08f1143fc80f39db1b328d1021b08f603f3820 bcc864f1745c1bad5b90035761e285a19cd123400e2258bd49c188822847add4 Loading...

	unknown	Function	546 B	2023-04-19	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 09:33 Last Seen2025-05-09 10:07 Times Seen4604 Hash 62762f02e8003e198ecbe8787ec24649 93bc972a115930753f3c85347c11ab6cae449e19 340b80607e896658dd4a2267dbfc0075b4027b6a0f4e4d59188197ac3304d4c7 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 43e16e965daaaa775656a479e924bc8f	557 B	2023-03-12 23:25	2025-03-20 06:39
Pretty Observations First Seen2023-03-12 23:25 Last Seen2025-03-20 06:39 Times Seen14 Hash 43e16e965daaaa775656a479e924bc8f 70e2ef42ff4fa1920f80e22437a61698ab489a7a 28360bd956268ef50331868706f29921ba8a2dede831c6f5d08652759873ad73 Loading...

HTTP Transactions (46)

URL IP Response Size

edi3dhltest.edistrada.pl/

91.206.38.164

200 OK

7.6 kB

URL User Request GET HTTP/2
edi3dhltest.edistrada.pl/
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (21123)
Size
7.6 kB (7637 bytes)
Hash
25ad0ae1d8907e5809df121fee2c5323
e763c16e3339225abe89d84851b8526f6cae5fad
9bbefaf534d08617b38980f9f06039adbe908d8e72374ab8e8b089ff4b7e630f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET / HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:02 GMT
content-type: text/html
last-modified: Tue, 17 Oct 2023 11:30:40 GMT
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css

91.206.38.164

200 OK

29 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
ASCII text, with very long lines (29121)
Size
29 kB (29170 bytes)
Hash
209aec70365d2994912faa35a0bf7d15
eb0e223123febf0fb4fce256525cf6c58571d801
67a534f2c1880f48e07ceb087bd5abc793ee61906d49af6c909b9a7a741a161a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/css/main-ae458dfb4c.css HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:03 GMT
content-type: text/css
content-length: 29170
last-modified: Tue, 17 Oct 2023 11:30:40 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/app/app-86d5ed6318.js

91.206.38.164

200 OK

385 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/app/app-86d5ed6318.js
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
ASCII text, with very long lines (32018)
Size
385 kB (384725 bytes)
Hash
31c539345dd369d11b6a8fc2119d5526
69db9aa75d8b487686079d1175d28b28c4ea4557
a34bd5a952f5132ae30aece5edf0448323008dc48fd248085632f465988e83f7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /app/app-86d5ed6318.js HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:03 GMT
content-type: application/javascript
content-length: 384725
last-modified: Tue, 17 Oct 2023 11:30:40 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/vendor/vendor-9981f69eeb.css

91.206.38.164

200 OK

498 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/vendor/vendor-9981f69eeb.css
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
ASCII text, with very long lines (63799)
Size
498 kB (497488 bytes)
Hash
19c074afcd600a528a49def384daa36e
93d8bbbb129bed9a96d5cc8fe8592d4f3c8ba7c0
e678b2d2efc3af9e1c9fb81891334a097c06c3cb4a0707971ea2271c250cad95

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/vendor/vendor-9981f69eeb.css HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:03 GMT
content-type: text/css
content-length: 497488
last-modified: Tue, 17 Oct 2023 11:30:40 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/app/vendor-be87832176.js

91.206.38.164

200 OK

1.1 MB

URL GET HTTP/2
edi3dhltest.edistrada.pl/app/vendor-be87832176.js
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
ASCII text, with very long lines (32027)
Size
1.1 MB (1088030 bytes)
Hash
4edfa8509020ef348b8ea55c420dde5d
ca880d106fe1405d783ad63c8bfde748ae13beea
5b9f5586e0783f64d4c7fa38931b07644ceff28115e62384cc9f46fa08f7ab7f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /app/vendor-be87832176.js HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:03 GMT
content-type: application/javascript
content-length: 1088030
last-modified: Tue, 17 Oct 2023 11:30:40 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/1d790476-794f-4019-8302-6ed44d02e5d6/1d790476-794f-4019-8302-6ed44d02e5d6.json

104.18.131.236

200 OK

1.5 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/1d790476-794f-4019-8302-6ed44d02e5d6/1d790476-794f-4019-8302-6ed44d02e5d6.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3841), with no line terminators
Size
1.5 kB (1543 bytes)
Hash
7567b6c44599dbb2248b9e2ba818130a
4742e7fd3c89ee7c6178a8fd0b798dadbe0aa15f
6fb344d726295ce48b3ff63fb36bdd528eb70ccf424b926af68baaab51564b0b

HTTP Headers

GET /consent/1d790476-794f-4019-8302-6ed44d02e5d6/1d790476-794f-4019-8302-6ed44d02e5d6.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:03 GMT
content-type: application/x-javascript
content-length: 1543
cf-ray: 82cafe1739d2569d-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBB83F06817504
expires: Tue, 28 Nov 2023 14:17:03 GMT
last-modified: Mon, 18 Sep 2023 12:01:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: tZkdK0BYDgviR68PI/hl4w==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 68af8120-201e-0038-4ef6-209d43000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202308.2.0/otBannerSdk.js

104.18.131.236

200 OK

104 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202308.2.0/otBannerSdk.js
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
104 kB (103637 bytes)
Hash
65d6272013fd813bcb3bb059c3611dad
f3d451ec0b826d15f1d7dd7b6f3f56f9d5fddc4b
ee39d0cbc9e9cd88b7dac8ebca680b89e8879081f855152f21772c7834474437

HTTP Headers

GET /scripttemplates/202308.2.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:03 GMT
content-type: application/javascript
content-length: 103637
content-encoding: gzip
content-md5: B7RJGeSCnZZuAb1NQkB81w==
last-modified: Wed, 20 Sep 2023 06:26:02 GMT
etag: 0x8DBB9A2763B37CA
x-ms-request-id: 21d158e6-101e-007e-2a3b-eca9c4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 84046
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe17cd04b51b-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/1d790476-794f-4019-8302-6ed44d02e5d6/7e8c8fde-d221-4623-b574-f5f58cf063c5/pl.json

104.18.131.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/1d790476-794f-4019-8302-6ed44d02e5d6/7e8c8fde-d221-4623-b574-f5f58cf063c5/pl.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (44617), with no line terminators
Size
13 kB (12863 bytes)
Hash
6059b22ec7076d4b379f00fd9568c92a
877fa75b415cad102ce925ee82ecec538d51f66b
481ac83cbed345198e97b2c83f7f25e118819884553059d653a2b5119bdeb982

HTTP Headers

GET /consent/1d790476-794f-4019-8302-6ed44d02e5d6/7e8c8fde-d221-4623-b574-f5f58cf063c5/pl.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: application/x-javascript
content-length: 12863
cf-ray: 82cafe18dc03569d-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBB83F0B75A63B
expires: Tue, 28 Nov 2023 14:17:04 GMT
last-modified: Mon, 18 Sep 2023 12:01:51 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: IelyhTEnCC1hMgE+d9yXFg==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 6efb5e93-301e-0079-4bf6-20c5a7000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/images/favicon-a6f1af8e79.gif

91.206.38.164

200 OK

2.2 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/images/favicon-a6f1af8e79.gif
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 8 bits/pixel\012- data
Size
2.2 kB (2238 bytes)
Hash
a6f1af8e79a11829ba9a66474b06bb97
d99e3ec7747c865033a8dfad43c9f49634404bc1
b0dbd00f3650fa6b931e678a9d8f79a405d23c7adf111ab91b1a01a0e7109807

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/images/favicon-a6f1af8e79.gif HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: image/gif
content-length: 2238
last-modified: Tue, 17 Oct 2023 11:30:00 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/i18n/angular-locale_pl.js

91.206.38.164

200 OK

3.1 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/i18n/angular-locale_pl.js
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
ASCII text, with very long lines (487)
Size
3.1 kB (3111 bytes)
Hash
ca0b0b4d9e5ae293bd5fb0dd1a05ea74
1d1d5506eb84ab8a2383c2c6ef9ee01f92005b44
94eef3164ae2c5fb44253e8cb117f3fdffa40d0168102aaa09b63576031c54a6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /i18n/angular-locale_pl.js HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: application/javascript
content-length: 3111
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202308.2.0/assets/v2/otPcCenter.json

104.18.131.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202308.2.0/assets/v2/otPcCenter.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (51243)
Size
13 kB (12708 bytes)
Hash
901793eec95c3211c0297e8f2f7e9d3a
9e1e8c45cd1f68f9ac3ef71beee4579df6215d0e
0b0a210e89ac35b54a9b4ccb0336ea91c561e6dc5f8bda49574da98d40799c6e

HTTP Headers

GET /scripttemplates/202308.2.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: application/json
content-length: 12708
content-encoding: gzip
content-md5: 3yHA5F3oKJDlMPXEHc+wYA==
last-modified: Wed, 20 Sep 2023 06:25:57 GMT
etag: 0x8DBB9A2735C2A8F
x-ms-request-id: 14ba8d0f-901e-0002-1af6-20873b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1b6f67569d-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202308.2.0/assets/otFlat.json

104.18.131.236

200 OK

3.0 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202308.2.0/assets/otFlat.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (11171)
Size
3.0 kB (3017 bytes)
Hash
4d4429a2dfaa8a27fbe9659e8e717f74
28ad4885ff33594fa46eced61bd42874926aa17c
ea5db5581e262d77d1a43fbb3f0fa3661b51d097b40ca38f584b4943f47cf2e0

HTTP Headers

GET /scripttemplates/202308.2.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: application/json
content-length: 3017
content-encoding: gzip
content-md5: BHQvHegaR3S9THBo4PtGGQ==
last-modified: Wed, 20 Sep 2023 06:25:55 GMT
etag: 0x8DBB9A272000203
x-ms-request-id: e313b806-d01e-0071-03f6-20dfa8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1b6f60569d-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202308.2.0/assets/otCookieSettingsButton.json

104.18.131.236

200 OK

1.8 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202308.2.0/assets/otCookieSettingsButton.json
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3095)
Size
1.8 kB (1766 bytes)
Hash
e6872c90592c095ac4b05fc37cb2f2c0
b71b3312ec6bd7cbaadd947cc95042496e0410f3
509f2e49500fbaeb5d7e1959071f2922b693d0135080e2871e124ec8bdd08bb2

HTTP Headers

GET /scripttemplates/202308.2.0/assets/otCookieSettingsButton.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: application/json
content-length: 1766
content-encoding: gzip
content-md5: jwQ1xRmxKbqe8m/m/Ww/Bg==
last-modified: Wed, 20 Sep 2023 06:25:56 GMT
etag: 0x8DBB9A273136C69
x-ms-request-id: e366da5a-e01e-0037-33f6-20eb2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1b6f6b569d-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/2e6e325f-a388-4956-893d-e0528c986bde/7a74d078-3552-4eef-a821-4bee9b2cc13f/DHL_Logo.PNG

104.18.131.236

200 OK

1.8 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/2e6e325f-a388-4956-893d-e0528c986bde/7a74d078-3552-4eef-a821-4bee9b2cc13f/DHL_Logo.PNG
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
PNG image data, 197 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1756 bytes)
Hash
c11081bd2b7d36eafeb9e5c5d396d356
38b54ccb126e0b1f98b837bf0d086b44d8935b1b
904b70e4997d2154d462c8514522e03846ba539466c01c3b310a824ea4418caa

HTTP Headers

GET /logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/2e6e325f-a388-4956-893d-e0528c986bde/7a74d078-3552-4eef-a821-4bee9b2cc13f/DHL_Logo.PNG HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: image/png
content-length: 1756
content-md5: wRCBvSt9Nur+ueXF05bTVg==
last-modified: Mon, 06 Sep 2021 11:41:31 GMT
etag: 0x8D9712B456D9768
x-ms-request-id: 8ba8e13f-d01e-0013-7a30-0d1d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 12817
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1c1a17b51b-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/cad0b457-0a6e-4ae5-b76c-3ee75886b348/a6b2af2a-b953-4cd3-bad3-e08040fc18a2/shield_transparent.png

104.18.131.236

200 OK

4.5 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/cad0b457-0a6e-4ae5-b76c-3ee75886b348/a6b2af2a-b953-4cd3-bad3-e08040fc18a2/shield_transparent.png
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
PNG image data, 232 x 232, 8-bit/color RGBA, non-interlaced\012- data
Size
4.5 kB (4517 bytes)
Hash
b7424bc6789402a85d9beaff9bcacef4
0d0bb5df3cdc9d844c7f47a6ea9eb0754d36b107
c091c532eeeef0e753cdbe8cdf05b17f01d201847c7490e125b6053e14d79129

HTTP Headers

GET /logos/9375bad7-f65e-4f8a-bc16-8254723bd66a/cad0b457-0a6e-4ae5-b76c-3ee75886b348/a6b2af2a-b953-4cd3-bad3-e08040fc18a2/shield_transparent.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: image/png
content-length: 4517
content-md5: t0JLxniUAqhdm+r/m8rO9A==
last-modified: Thu, 22 Sep 2022 11:40:35 GMT
etag: 0x8DA9C8F43ACF23C
x-ms-request-id: 8c671389-c01e-0030-287d-14874c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1c6a65b51b-OSL
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/session?cacheBuster=1701094628103

91.206.38.164

401 Unauthorized

0 B

URL GET HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/session?cacheBuster=1701094628103
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /edistrada2/api/session?cacheBuster=1701094628103 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-frame-options,x-requested-with
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
set-cookie: JSESSIONID=1870918D78DBC9975B57DB478F948E71; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-methods: PUT,POST,GET,DELETE
access-control-allow-headers: x-frame-options, x-requested-with
access-control-allow-credentials: true
access-control-max-age: 1800
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628098

91.206.38.164

403 Forbidden

0 B

URL POST HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628098
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /edistrada2/api/language?cacheBuster=1701094628098 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-frame-options,x-requested-with
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
set-cookie: JSESSIONID=43C08E85E0078815F775DBF4E5EE3039; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-methods: PUT,POST,GET,DELETE
access-control-allow-headers: content-type, x-frame-options, x-requested-with
access-control-allow-credentials: true
access-control-max-age: 1800
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/session?cacheBuster=1701094628103

91.206.38.164

401 Unauthorized

0 B

URL GET HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/session?cacheBuster=1701094628103
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /edistrada2/api/session?cacheBuster=1701094628103 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 401 Unauthorized
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-credentials: true
set-cookie: JSESSIONID=5D46960102A0741E746D3D33FCBD68F9; Path=/
__Host-CSRF-TOKEN=81bf7704-3df5-4494-b722-a54a13f62a57; Path=/; Secure
server: SNP PROXY 2.0.1a
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628098

91.206.38.164

403 Forbidden

4.3 kB

URL POST HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628098
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type
JSON data\012- , Unicode text, UTF-8 text
Size
4.3 kB (4340 bytes)
Hash
395674bac2c95dc7e80d75a5a01e0dab
2f47f7d4e4349728e769163c972ce38bda89f71a
d692a0359ddebc7bb50a18c7f17e2b7d9aee1a97556351ed262eacd07609b39b

HTTP Headers

POST /edistrada2/api/language?cacheBuster=1701094628098 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/json;charset=UTF-8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-credentials: true
set-cookie: JSESSIONID=6AE521E97287E8AA535C732F845963C4; Path=/
__Host-CSRF-TOKEN=; Max-Age=0; Expires=Thu, 01 Jan 1970 00:00:10 GMT; Path=/; Secure; HttpOnly
server: SNP PROXY 2.0.1a
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/i18n/pl/login.json?cacheBuster=1701094628967

91.206.38.164

200 OK

1.7 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/i18n/pl/login.json?cacheBuster=1701094628967
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
JSON data\012- , Unicode text, UTF-8 text
Size
1.7 kB (1666 bytes)
Hash
4b2fe8d0aa7bf04c58eedfd1a8268da7
75efacc5af0bdb620f79b787571460f590797d89
f70f03eeafa83095711ed4d891a35e59d8186883fb5fd13a27495bec9a4e5f04

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /i18n/pl/login.json?cacheBuster=1701094628967 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/json
content-length: 1666
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628968

91.206.38.164

200 OK

0 B

URL OPTIONS HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628968
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /edistrada2/api/language?cacheBuster=1701094628968 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-frame-options,x-requested-with
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
set-cookie: JSESSIONID=030534E7A0946F8E707147422DBFF042; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-methods: PUT,POST,GET,DELETE
access-control-allow-headers: content-type, x-frame-options, x-requested-with
access-control-allow-credentials: true
access-control-max-age: 1800
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094628986

91.206.38.164

200 OK

0 B

URL OPTIONS HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094628986
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /edistrada2/api/csrf?cacheBuster=1701094628986 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-frame-options,x-requested-with
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
set-cookie: JSESSIONID=5953314FCBBD74AC24C632E4B4702154; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-methods: PUT,POST,GET,DELETE
access-control-allow-headers: x-frame-options, x-requested-with
access-control-allow-credentials: true
access-control-max-age: 1800
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202308.2.0/assets/otCommonStyles.css

104.18.131.236

200 OK

5.7 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202308.2.0/assets/otCommonStyles.css
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (26972), with no line terminators
Size
5.7 kB (5707 bytes)
Hash
2f1ae919f9d3bac6b724c59a26dbfbfc
c3c560a614d6ed8f89ecc4a1f584215a8f5b2e05
ee122a246bbe3bb5c11da66060cb9ab8c165341873d5cac9a0bb5a8b1bf383d6

HTTP Headers

GET /scripttemplates/202308.2.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: text/css
content-md5: c7xAZ9MSGAobGaTYg/Qtag==
last-modified: Wed, 20 Sep 2023 06:26:05 GMT
x-ms-request-id: 306852ba-101e-009a-19f6-20a75a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1b6f6e569d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094629034

91.206.38.164

403 Forbidden

0 B

URL POST HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094629034
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /edistrada2/api/language?cacheBuster=1701094629034 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-frame-options,x-requested-with
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
set-cookie: JSESSIONID=7C210E083DE5C30B3BEEE41F183CFD6F; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-methods: PUT,POST,GET,DELETE
access-control-allow-headers: content-type, x-frame-options, x-requested-with
access-control-allow-credentials: true
access-control-max-age: 1800
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/ot_guard_logo.svg

104.18.131.236

200 OK

44 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
44 kB (44452 bytes)
Hash
8519dd90a6446a9739af5fe9b2fdea9a
6ae584d859185437268608367e96d55e4701d893
a5157bf3b9ed22630c49a4ebc1586125cd15142f89358e698d9f54251fe6b5a5

HTTP Headers

GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Mon, 27 Nov 2023 03:36:42 GMT
x-ms-request-id: ea27ca17-501e-009b-1cfe-20f886000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1c1817569d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/images/ignore/flags/pl.png

91.206.38.164

200 OK

91 B

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/images/ignore/flags/pl.png
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
PNG image data, 32 x 20, 1-bit colormap, non-interlaced\012- data
Size
91 B (91 bytes)
Hash
7b8a0298dac0a7f273d5e6b741f8038f
8ead5eb9669b8570fd895a094e6209ad69bf55cd
df23542e2fbd78c83cf72e0e85f0ecf0de9af804157ec88ba76a6ca7d8fd1788

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/images/ignore/flags/pl.png HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: image/png
content-length: 91
last-modified: Tue, 17 Oct 2023 11:30:02 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

library.startquestion.com/current/startquestion.js

172.67.71.156

200 OK

12 kB

URL GET HTTP/2
library.startquestion.com/current/startquestion.js
IP
172.67.71.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint37:71:EC:7A:6B:F9:31:33:68:79:09:43:4B:2B:C7:1A:80:86:51:FB
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT

File type
C source, ASCII text, with very long lines (44430)
Size
12 kB (11686 bytes)
Hash
e0ebd176f67669ba39a152ad190d7b1a
cdcf55e69e6cc45598bf5a210ae01c7a5d67c64e
caeaf364ec52455ff9b1215c318759b1749d8bb4d2fef45c03c35e87219546a3

HTTP Headers

GET /current/startquestion.js HTTP/1.1
Host: library.startquestion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/javascript
cf-ray: 82cafe210c025696-OSL
cf-cache-status: HIT
age: 6153
cache-control: max-age=1
etag: W/"65562d4a-ad8f"
last-modified: Thu, 16 Nov 2023 14:55:06 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8IIsNSs%2BAtiCS0IUGDlTTgbjjxG%2FQjz1HcPCKef8tG4V%2BYz%2BsGS0vb94VZ9XgMQJCCRJDdwzH2ErA1R2XFg8qgOF65U17cvmABG4miN%2FZiS%2FRKFDmC%2BvLKeqp4BS28AcaA918GdqoISku%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/Delivery_W_Bd-7637928007.woff2

91.206.38.164

200 OK

34 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/Delivery_W_Bd-7637928007.woff2
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33808, version 1.66\012- data
Size
34 kB (33808 bytes)
Hash
7637928007dc8ed18d0c789995aa2af2
421ccda189112cb40cdf3fff8fb20f5f840e3dfc
62cf91563ce604e4d98e2e0e479f636cb95f505eccae77e14da46bc28f8cedfc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/fonts/Delivery_W_Bd-7637928007.woff2 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 33808
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628968

91.206.38.164

200 OK

183 B

URL OPTIONS HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094628968
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
183 B (183 bytes)
Hash
d164ef478b3781b0b6a6d817b5a68216
fb27680c4e0ce3cea31966cb3689d8795c33d7af
19b8dc9292ef276f4628514c7be1ed2e1cf684f3e3ee752fb39464b7487c940a

HTTP Headers

POST /edistrada2/api/language?cacheBuster=1701094628968 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/json;charset=UTF-8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-credentials: true
set-cookie: JSESSIONID=88472C82CB5F0255BDF0655EE105F3E4; Path=/
__Host-CSRF-TOKEN=; Max-Age=0; Expires=Thu, 01 Jan 1970 00:00:10 GMT; Path=/; Secure; HttpOnly
server: SNP PROXY 2.0.1a
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/Delivery_W_Rg-3bbcc3a3f3.woff2

91.206.38.164

200 OK

34 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/Delivery_W_Rg-3bbcc3a3f3.woff2
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33604, version 1.66\012- data
Size
34 kB (33603 bytes)
Hash
3bbcc3a3f3979bcd9c2842f97b2c748c
dfcca250f17cc18e127bc780af6309c10baa12de
571e1a3904a7324bd4a06b8d87f474c79f18ada3e25d6f3cba5f5b4179793cda

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/fonts/Delivery_W_Rg-3bbcc3a3f3.woff2 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 33603
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094629034

91.206.38.164

403 Forbidden

8.2 kB

URL POST HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/language?cacheBuster=1701094629034
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type
JSON data\012- data
Size
8.2 kB (8215 bytes)
Hash
1c37d84f2ff8180a444adb941b9adb93
f183763fadedc5361e7253ca496f4244d0d16396
4c0c0bb78505cc14a368903ab5033b20d535c0053dddd17ad007aa99db419312

HTTP Headers

POST /edistrada2/api/language?cacheBuster=1701094629034 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/json;charset=UTF-8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-credentials: true
set-cookie: JSESSIONID=8DEA0853A713FFFDB0DE61B32DFCAE48; Path=/
__Host-CSRF-TOKEN=; Max-Age=0; Expires=Thu, 01 Jan 1970 00:00:10 GMT; Path=/; Secure; HttpOnly
server: SNP PROXY 2.0.1a
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/fontawesome-webfont-c559fcc74f.woff2?v=4.6.3

91.206.38.164

200 OK

77 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/fontawesome-webfont-c559fcc74f.woff2?v=4.6.3
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77159 bytes)
Hash
c559fcc74ff2037d8e94e800e98538b6
598c13c9d6b64d3089f4a2a84fb6964cbd5b46c3
9278f630bfea2530b8273089cb8e51aa1048ec25c04efad95dfa3166f460cc5e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/fonts/fontawesome-webfont-c559fcc74f.woff2?v=4.6.3 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 77159
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094629281

91.206.38.164

200 OK

0 B

URL OPTIONS HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094629281
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /edistrada2/api/csrf?cacheBuster=1701094629281 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-credentials: true
set-cookie: JSESSIONID=FED964DD6DB6E1C2718CF4947409D678; Path=/
__Host-CSRF-TOKEN=97835548-923a-4310-8a08-4b2650b766d6; Path=/; Secure
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/glyphicons-halflings-regular-448c34a56d.woff2

91.206.38.164

200 OK

18 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/glyphicons-halflings-regular-448c34a56d.woff2
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/fonts/glyphicons-halflings-regular-448c34a56d.woff2 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/vendor/vendor-9981f69eeb.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22; startquestion-session=%7B%22expirationDate%22%3A1701098229361%2C%22data%22%3A%7B%22pageTime%22%3A0%2C%22numberOfVisitedPages%22%3A1%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 18028
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094629316

91.206.38.164

200 OK

0 B

URL GET HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094629316
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /edistrada2/api/csrf?cacheBuster=1701094629316 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-frame-options,x-requested-with
Referer: https://edi3dhltest.edistrada.pl/
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
set-cookie: JSESSIONID=941B464FAAF1075602976F3811C6AF5B; Path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-methods: PUT,POST,GET,DELETE
access-control-allow-headers: x-frame-options, x-requested-with
access-control-allow-credentials: true
access-control-max-age: 1800
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/Delivery_W_Rg-03f859bf58.woff

91.206.38.164

200 OK

41 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/Delivery_W_Rg-03f859bf58.woff
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
Web Open Font Format, TrueType, length 41084, version 1.66\012- data
Size
41 kB (41084 bytes)
Hash
03f859bf58e4d37841070de34be7d978
3436d4fa17e7ee470c3d62b08787cfa7de408408
5af5c3746b03792640b9cafdabddfb2c5407f72988e128541a88fa439607d940

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/fonts/Delivery_W_Rg-03f859bf58.woff HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22; startquestion-session=%7B%22expirationDate%22%3A1701098229361%2C%22data%22%3A%7B%22pageTime%22%3A0%2C%22numberOfVisitedPages%22%3A1%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 41084
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094629316

91.206.38.164

200 OK

0 B

URL GET HTTP/2
dhl.pl.qas.edistrada.pl/edistrada2/api/csrf?cacheBuster=1701094629316
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectdhl.pl.qas.edistrada.pl
Fingerprint06:B9:D0:14:03:58:51:37:44:D9:4B:32:A5:75:99:CD:FE:87:3E:55
ValidityTue, 21 Nov 2023 06:40:48 GMT - Mon, 19 Feb 2024 06:40:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /edistrada2/api/csrf?cacheBuster=1701094629316 HTTP/1.1
Host: dhl.pl.qas.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-length: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
x-content-security-policy: default-src 'self'
x-webkit-csp: default-src 'self'
access-control-allow-origin: https://edi3dhltest.edistrada.pl
vary: Origin
access-control-allow-credentials: true
set-cookie: JSESSIONID=7C971D8F51D8FC04FBB26BF100C53D93; Path=/
__Host-CSRF-TOKEN=d257864f-bd29-4613-8616-d07a2b515e95; Path=/; Secure
server: SNP PROXY 2.0.1a
content-security-policy: frame-ancestors 'self' *.dhl.pl.qas.edistrada.pl
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/fontawesome-webfont-f3652b29b2.woff?v=4.6.3

91.206.38.164

200 OK

98 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/fontawesome-webfont-f3652b29b2.woff?v=4.6.3
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Size
98 kB (98019 bytes)
Hash
f3652b29b2153ecf20d925efbed9e3cd
c6f61c52e926a7ec4910e0297eeaf4ffd0eae034
56678081f8d20039bddf6eadab2b070b3d343d7014151f9990eb588cb49dad1e

HTTP Headers

GET /content/fonts/fontawesome-webfont-f3652b29b2.woff?v=4.6.3 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22; startquestion-session=%7B%22expirationDate%22%3A1701098229361%2C%22data%22%3A%7B%22pageTime%22%3A0%2C%22numberOfVisitedPages%22%3A1%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 98019
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/fontawesome-webfont-b06871f281.ttf?v=4.6.3

91.206.38.164

200 OK

166 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/fontawesome-webfont-b06871f281.ttf?v=4.6.3
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size
166 kB (165548 bytes)
Hash
b06871f281fee6b241d60582ae9369b9
13b1eab65a983c7a73bc7997c479d66943f7c6cb
aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/fonts/fontawesome-webfont-b06871f281.ttf?v=4.6.3 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22; startquestion-session=%7B%22expirationDate%22%3A1701098229361%2C%22data%22%3A%7B%22pageTime%22%3A0%2C%22numberOfVisitedPages%22%3A1%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 165548
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

app.startquestion.com/widget-filling/configuration/ecd0d11a-40ec-11ec-8d09-00505685cca8

104.26.7.229

200 OK

46 B

URL GET HTTP/2
app.startquestion.com/widget-filling/configuration/ecd0d11a-40ec-11ec-8d09-00505685cca8
IP
104.26.7.229:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint37:71:EC:7A:6B:F9:31:33:68:79:09:43:4B:2B:C7:1A:80:86:51:FB
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
46 B (46 bytes)
Hash
cdf53d8795d882f48eb24d1a451c39f0
12d70873fdac50b1a273e1856ef67a4475dc42cf
6bf0768f339305bc7047c0633f974be8474760e50ae19eb9a47f602057614a72

HTTP Headers

GET /widget-filling/configuration/ecd0d11a-40ec-11ec-8d09-00505685cca8 HTTP/1.1
Host: app.startquestion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edi3dhltest.edistrada.pl
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:07 GMT
content-type: application/json
content-length: 46
cf-ray: 82cafe2a8d4956cc-OSL
cf-cache-status: DYNAMIC
accept-ranges: bytes
access-control-allow-origin: *
age: 12341
cache-control: no-store, must-revalidate
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
cf-apo-via: origin,host
x-ank-cache: hit
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AKcRQkOnlSq1oXQXETgnqopGs0q1Qruo5BV57tS1gX63y7ZTrOu%2Bxw3hTP0y8GQAhieD%2BiNkUX0g%2B7Cis3nfrmsRddXewhJjZDwjqYH5rFWV4Ng0dWCT3uSpiNdxPSANUuCbP%2B9wDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/fonts/dhlicons-d273de87b9.ttf

91.206.38.164

200 OK

8.0 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/fonts/dhlicons-d273de87b9.ttf
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, dhlicons \012- data
Size
8.0 kB (8032 bytes)
Hash
d273de87b98eed62c9055fc98b418757
8bce2218f15a7a7b305ca1218c4283d709f3db0d
dfc3c6bda2597985c3aa2387d9f2f158969742cee11356698967a98d7d60e7f3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/fonts/dhlicons-d273de87b9.ttf HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/content/css/main-ae458dfb4c.css
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/octet-stream
content-length: 8032
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/powered_by_logo.svg

104.18.131.236

200 OK

5.2 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5220), with no line terminators
Size
5.2 kB (5194 bytes)
Hash
38b5388f36f8f885deb26afdac0e3116
112eccab1891a3a7cab1c5602ba72c9e127136e0
a8562f11c5a80a5c1c4ab388cfa2a69598203a57a5c67d1f80512bddd80d09ef

HTTP Headers

GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:04 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Wed, 22 Nov 2023 17:38:32 GMT
x-ms-request-id: fd9c9915-201e-0081-6ec0-1d9959000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 42684
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe1c1a18b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.18.131.236

200 OK

21 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.18.131.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (21099)
Size
21 kB (21100 bytes)
Hash
653dc5af4212698688db76a143fdd61a
393fada41c29c4d6c85a7857def729bc4d2cecce
9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:03 GMT
content-type: application/javascript
content-length: 6841
content-encoding: gzip
content-md5: /EzX6ku1+i8ak28m1WuIrw==
last-modified: Wed, 22 Nov 2023 17:38:25 GMT
etag: 0x8DBEB81D4AA9473
x-ms-request-id: 7f5edf5c-201e-004a-17b1-1d9a0c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 25478
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82cafe126e43b51b-OSL
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/images/DHL_rgb-a4dbdac2f8.png

91.206.38.164

200 OK

44 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/images/DHL_rgb-a4dbdac2f8.png
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
PNG image data, 1988 x 440, 8-bit/color RGBA, non-interlaced\012- data
Size
44 kB (44111 bytes)
Hash
a4dbdac2f804e9fc861a516f167a5f33
126f5c866150a0ad42b9181be23dbb7d4c79f6c8
8765d36c6e243027037dd82ea1d5bd2db642bfdc66097d1750fa3b1fb4b18691

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/images/DHL_rgb-a4dbdac2f8.png HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: image/png
content-length: 44111
last-modified: Tue, 17 Oct 2023 11:30:02 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/i18n/pl/global.json?cacheBuster=1701094628967

91.206.38.164

200 OK

4.2 kB

URL GET HTTP/2
edi3dhltest.edistrada.pl/i18n/pl/global.json?cacheBuster=1701094628967
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
Unicode text, UTF-8 text, with very long lines (4839), with no line terminators
Size
4.2 kB (4157 bytes)
Hash
e4544f29ebef404624e5099d3fcb5e04
4307bf36c87b72055f94d0b717c0bd01ae4ca83b
546309fbd6986a50d9c1ecb9893fe98abc54a2a8c0a552954d774ead1c525083

HTTP Headers

GET /i18n/pl/global.json?cacheBuster=1701094628967 HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
X-Frame-Options: DENY
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: application/json
content-length: 4157
last-modified: Tue, 17 Oct 2023 11:29:58 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

edi3dhltest.edistrada.pl/content/images/ignore/flags/en.png

91.206.38.164

200 OK

856 B

URL GET HTTP/2
edi3dhltest.edistrada.pl/content/images/ignore/flags/en.png
IP
91.206.38.164:443
ASN
#20889 All for One sp. z o.o.

Requested by
https://edi3dhltest.edistrada.pl/
Certificate
IssuerLet's Encrypt
Subjectedi3dhltest.edistrada.pl
FingerprintBA:81:DA:D3:01:A3:CB:67:C4:11:80:8F:E7:00:01:EC:9C:1D:65:A2
ValidityTue, 21 Nov 2023 06:41:01 GMT - Mon, 19 Feb 2024 06:41:00 GMT

File type
PNG image data, 32 x 20, 8-bit colormap, non-interlaced\012- data
Size
856 B (856 bytes)
Hash
fc3aa193c311f16e12fa404839484634
85ffac07df0c9b533538b803a6313697c8a32fe5
ca0425d2003db32593f081e41f0fe5c03cb4f1a2dcbd397947cb47ddd3ea1d1d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /content/images/ignore/flags/en.png HTTP/1.1
Host: edi3dhltest.edistrada.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edi3dhltest.edistrada.pl/
Cookie: NG_TRANSLATE_LANG_KEY=%22pl%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 14:17:05 GMT
content-type: image/png
content-length: 856
last-modified: Tue, 17 Oct 2023 11:30:02 GMT
accept-ranges: bytes
server: SNP PROXY 2.0.1a
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML