package.dittugarments.com/public/Kv0asfSQIy8kVjEoSo0DzJSYEI7jniTq
406 B URL package.dittugarments.com/public/Kv0asfSQIy8kVjEoSo0DzJSYEI7jniTq
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 59f665f4e8b0de50ce9f4d3b3986738e
09472b45ea37760858f630988f50d69b1583f445
704abe42375f89894e44312a52e5172cdf8e94e26a4a3c6382de1844af07e366
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /public/Kv0asfSQIy8kVjEoSo0DzJSYEI7jniTq HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Mon, 04 Dec 2023 02:54:43 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlhTbkhDLzNiSndaQmxQdVFiSWhRS3c9PSIsInZhbHVlIjoiVmMraWp4MmIyQnd0TjYwNXZNVUxuMWFzZ3JKQTRUaWFpWjlaV0ROdTVzYlhhNUkxOExSUjU3TjM3b0VvSC94NEhMNWROeXVQZ2ViT2oxclN2UnZreDJxVENlUXRVbWhpSUZONWU2eHNuR3UrbTR0Ny9tSm1tNDJWUzlRNk5mSTgiLCJtYWMiOiJhM2Q4MTJkOGEzMzc5ZTExY2M2MDhlOTkyYTZjMzg5YzdiYjMyYjAyMzg3M2Q2OTM5YzZjMGY4N2U2N2YwY2I4IiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:43 GMT; Max-Age=7199; path=/; samesite=lax
laravel_session=eyJpdiI6IndtNDB1T1RBaUxTclpRNmVURUFqWkE9PSIsInZhbHVlIjoiSmQ1VG9kUEtHR3MxZmxFRXVPdGY4V1dENmVYbjFZQ3RkektXQnNQaTc0RXJyNUNiUU16U2krUzJidWptMVVKUXlCVlFHeDByNHo1YTdEUDRJbURBK2xhT2NJWW50N3l3ekZKVHJhVXlFMENtSmw4emp1d0YrRm5Ja0orQTkxV2YiLCJtYWMiOiJhMWM4MTM0YWFlOWJjYWY0MDhhMDgxYmUzZmNmNjQ3NTIzMzVkOTZkZTlmZjVhZGYzYzcxMDg2OWUxOThkYWZhIiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:43 GMT; Max-Age=7199; path=/; httponly; samesite=lax
Location: https://package.dittugarments.com/public
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
package.dittugarments.com/public
249 B URL package.dittugarments.com/public
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a8e11bccdd02a57c9f088693a6595edb
2e29945d816bf9d4d8f244a8e60f671410098d1d
3fd5f6483304c2d479276375ef9ad5d751348bfdb8e188f304b7c79c53388c43
Analyzer Verdict Alert urlquery phishing Phishing - DHL
OpenPhish phishing DHL Airways, Inc.
GET /public HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlhTbkhDLzNiSndaQmxQdVFiSWhRS3c9PSIsInZhbHVlIjoiVmMraWp4MmIyQnd0TjYwNXZNVUxuMWFzZ3JKQTRUaWFpWjlaV0ROdTVzYlhhNUkxOExSUjU3TjM3b0VvSC94NEhMNWROeXVQZ2ViT2oxclN2UnZreDJxVENlUXRVbWhpSUZONWU2eHNuR3UrbTR0Ny9tSm1tNDJWUzlRNk5mSTgiLCJtYWMiOiJhM2Q4MTJkOGEzMzc5ZTExY2M2MDhlOTkyYTZjMzg5YzdiYjMyYjAyMzg3M2Q2OTM5YzZjMGY4N2U2N2YwY2I4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IndtNDB1T1RBaUxTclpRNmVURUFqWkE9PSIsInZhbHVlIjoiSmQ1VG9kUEtHR3MxZmxFRXVPdGY4V1dENmVYbjFZQ3RkektXQnNQaTc0RXJyNUNiUU16U2krUzJidWptMVVKUXlCVlFHeDByNHo1YTdEUDRJbURBK2xhT2NJWW50N3l3ekZKVHJhVXlFMENtSmw4emp1d0YrRm5Ja0orQTkxV2YiLCJtYWMiOiJhMWM4MTM0YWFlOWJjYWY0MDhhMDgxYmUzZmNmNjQ3NTIzMzVkOTZkZTlmZjVhZGYzYzcxMDg2OWUxOThkYWZhIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 04 Dec 2023 02:54:45 GMT
Server: Apache
Location: https://package.dittugarments.com/public/
Content-Length: 249
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
package.dittugarments.com/public/
544 B URL package.dittugarments.com/public/
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 89945f8c4497cbc302c6cc08cacebadc
3bc892da09b445233495cd507b7d5a7bb37cf1d4
f4372a6bbe41b1141f9287a2b2fc1982f79fe3510092bc71a029b428ebc5a3df
GET /public/ HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlhTbkhDLzNiSndaQmxQdVFiSWhRS3c9PSIsInZhbHVlIjoiVmMraWp4MmIyQnd0TjYwNXZNVUxuMWFzZ3JKQTRUaWFpWjlaV0ROdTVzYlhhNUkxOExSUjU3TjM3b0VvSC94NEhMNWROeXVQZ2ViT2oxclN2UnZreDJxVENlUXRVbWhpSUZONWU2eHNuR3UrbTR0Ny9tSm1tNDJWUzlRNk5mSTgiLCJtYWMiOiJhM2Q4MTJkOGEzMzc5ZTExY2M2MDhlOTkyYTZjMzg5YzdiYjMyYjAyMzg3M2Q2OTM5YzZjMGY4N2U2N2YwY2I4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IndtNDB1T1RBaUxTclpRNmVURUFqWkE9PSIsInZhbHVlIjoiSmQ1VG9kUEtHR3MxZmxFRXVPdGY4V1dENmVYbjFZQ3RkektXQnNQaTc0RXJyNUNiUU16U2krUzJidWptMVVKUXlCVlFHeDByNHo1YTdEUDRJbURBK2xhT2NJWW50N3l3ekZKVHJhVXlFMENtSmw4emp1d0YrRm5Ja0orQTkxV2YiLCJtYWMiOiJhMWM4MTM0YWFlOWJjYWY0MDhhMDgxYmUzZmNmNjQ3NTIzMzVkOTZkZTlmZjVhZGYzYzcxMDg2OWUxOThkYWZhIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:46 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlZFb3Z1Q0hURHJsemFqS2FkMVRnOUE9PSIsInZhbHVlIjoiTCt0NGJ4bHFtSzZ3Um96R3JMKzNvVHdWUlg1UXFZa0lTUVN3NXFsazFVMThpTWllVktXdXR5YnhkMzNpZEM5eVBVb01MT2VCN2hhcUlCZCtlRExkY0QzeTVFV2FlSmI4anpMZ1RDR0V0TEdMS1JNNDgzaURlVFBPS0YzQWpIaU8iLCJtYWMiOiIwMTBmZjBlNWRiNTViMmU3YmNmZGFlNGU3NDlmMGI5OTA3Y2U4YmE3NDFiNTA1ZWVhNTIyYjhjMjg5NWRhNmE0IiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:46 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IkFxeDdhenhuc0Q3TTRXQzJ6ZkZBRlE9PSIsInZhbHVlIjoicm5aV0NQK3BJcUJ6dnU2K0VzVTRxenZVcVk3S3JMNzFDQUVwS0FFWVBwMFl5RlpuMnMzd1YwbHJxajJGWG0xRUJBa2syc3VMNHVRZm8yRUtFcXB3ZWV1N3VhMSsvSW5SajA0SzBkMzB0YmRGT05kREJqMnNiWC9pWlA3OHc2VkkiLCJtYWMiOiIyNzVhMjIwMzU5NzBlYmUxZDdhNjc0NTc4Zjk3ODU2M2ZlNjhmYjFiNDM3YWU2MGQyODUxYWNmZTQ5MzU2YTNjIiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:46 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
package.dittugarments.com/
242 B URL package.dittugarments.com/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d1dec226fd35a79a69d9c8e10003af1
86210c24de39c96221b85c67280cf71acd575430
a8a224037bc78ac1a670d36bd2d0aeff8e2fb7f1717d80210f7d1736cbbd9aad
GET / HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 04 Dec 2023 02:54:46 GMT
Server: Apache
Location: https://package.dittugarments.com/
Content-Length: 242
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
404 Not Found 55 B URL GET HTTP/3 cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with no line terminators
Hash 2ccf42e1d8ce91dc28fc42053a58924f
66ec924f0d32dfb06bf0dda1133bd4b884b2d83d
51311bb7fe0896738e7bb28de627f8ad47495c61d8840e5921460123484560a5
GET /gh/killbot-org/Killbot-JS@latest/dist/main.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"38-ZuySTw0y37Br8N2hEzvUuISy2D0"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 02:54:46 GMT
age: 162
x-served-by: cache-fra-etou8220062-FRA, cache-bma1675-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 55
X-Firefox-Spdy: h2
package.dittugarments.com/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg/
301 Moved Permanently 281 B URL User Request GET HTTP/1.1 package.dittugarments.com/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg/
IP
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 11811a8b020aaa6653150f92b215ddf3
6485a5a3d97429b176c5daf02d4ec947abc4ccac
fa5031c91a0ab0589272c3838bb76204dc9ed764361b7dc7cf91f7db82cbd1e3
GET /gVV2YxRVXuLLXLLliKOMPp42c4UynoPg/ HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/
Cookie: XSRF-TOKEN=eyJpdiI6IlZFb3Z1Q0hURHJsemFqS2FkMVRnOUE9PSIsInZhbHVlIjoiTCt0NGJ4bHFtSzZ3Um96R3JMKzNvVHdWUlg1UXFZa0lTUVN3NXFsazFVMThpTWllVktXdXR5YnhkMzNpZEM5eVBVb01MT2VCN2hhcUlCZCtlRExkY0QzeTVFV2FlSmI4anpMZ1RDR0V0TEdMS1JNNDgzaURlVFBPS0YzQWpIaU8iLCJtYWMiOiIwMTBmZjBlNWRiNTViMmU3YmNmZGFlNGU3NDlmMGI5OTA3Y2U4YmE3NDFiNTA1ZWVhNTIyYjhjMjg5NWRhNmE0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkFxeDdhenhuc0Q3TTRXQzJ6ZkZBRlE9PSIsInZhbHVlIjoicm5aV0NQK3BJcUJ6dnU2K0VzVTRxenZVcVk3S3JMNzFDQUVwS0FFWVBwMFl5RlpuMnMzd1YwbHJxajJGWG0xRUJBa2syc3VMNHVRZm8yRUtFcXB3ZWV1N3VhMSsvSW5SajA0SzBkMzB0YmRGT05kREJqMnNiWC9pWlA3OHc2VkkiLCJtYWMiOiIyNzVhMjIwMzU5NzBlYmUxZDdhNjc0NTc4Zjk3ODU2M2ZlNjhmYjFiNDM3YWU2MGQyODUxYWNmZTQ5MzU2YTNjIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 04 Dec 2023 02:54:46 GMT
Server: Apache
Location: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Content-Length: 281
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
package.dittugarments.com/
544 B URL package.dittugarments.com/
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 0f8175dd60221318f08901539b0b405c
86028c11e10b61ec92f838e9f142a97e6874ac94
84030680f5cd59494002166f55b9ecad87dbf2cfe5747a143a1dd12f9b1615f8
GET / HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:47 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Ik4wUkd4ZkJPb244QlMzbnVXeHZhR0E9PSIsInZhbHVlIjoiVUxsKzBjaUN0RFcrb2VoVlBiR05TOTg0OU9sdnA0NGJDVkI5WTAzRzdWeUZ5VXBlcC9kVU5uM0xLVWpKcjE0eXFDSkVuZEhXemYxcTFtRHZCY01QZVFSaTVsK2xjNVB5VlRCa3JSYTFvVjFKSGJ4TDlQeXZzdEpORExkL0VNWWkiLCJtYWMiOiI2MTBmMjY2M2ZiOGYyZTQ4ODBiMzczMDg0NTU0OGFlY2Q3YmNlNTU2MTcyMThjOTZlZDEwNjgyOWI4NTVjOGVjIiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:47 GMT; Max-Age=7199; path=/; samesite=lax
laravel_session=eyJpdiI6ImRrZnV5ZnlzdzhDbDFOUHBzOVdKRmc9PSIsInZhbHVlIjoiNXJKZzdianBvREtOWGd0TWo5eUJ1VTQ4ZnBtbUVlWDlycUZabDkyNDk5RG1TVlFENTc5VFBlSXd4V0pkaDROaWExLzI1TS9pNzY5Zng1aWJXMzBzSmNjWTFRb0Z6M0xObUh6YnBUY1VTY2pTL05ibk42aHJOcHh0SS9lQlhwUWYiLCJtYWMiOiIxOThkNjNhYTE2ZmNjNGE1OTliMjAzZTZjMDViMjU1MTBkY2FlZjdlODYzZDVhNTg1MWM2NjBhYjhhOWM2ZjhmIiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:47 GMT; Max-Age=7199; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
404 Not Found 55 B URL GET HTTP/3 cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with no line terminators
Hash 2ccf42e1d8ce91dc28fc42053a58924f
66ec924f0d32dfb06bf0dda1133bd4b884b2d83d
51311bb7fe0896738e7bb28de627f8ad47495c61d8840e5921460123484560a5
GET /gh/killbot-org/Killbot-JS@latest/dist/main.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 55
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"38-ZuySTw0y37Br8N2hEzvUuISy2D0"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 02:54:49 GMT
age: 164
x-served-by: cache-fra-etou8220062-FRA, cache-bma1680-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css
200 OK 17 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65317)
Hash 6386fb409d4a2abc96eee7be8f6d4cc4
09102cfc60efb430a25ee97cee9a6a35df6dfc59
0df5a33710e433de1f5415b1d47e4130ca7466aee5b81955f1045c4844bbb3ed
GET /ajax/libs/font-awesome/6.1.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://package.dittugarments.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 02:54:49 GMT
content-type: text/css; charset=utf-8
content-length: 17041
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "623a082a-4291"
last-modified: Tue, 22 Mar 2022 17:32:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 873284
expires: Sat, 23 Nov 2024 02:54:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oZ9346IAddQMhWKws9hRYQ0An5g3tZg1EEkAKdDvsVP2NQIaCI9V7XHLbGkYkFi1PHDyNUQEYxkj113wJ3uuStpYEd7tw9ykqp7aceQ6h3BfaiQmEKb%2F27fI3qP9HRTiFTrsg6L6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8300c455cb497131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
200 OK 22 kB URL User Request GET HTTP/1.1 package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
IP
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash c7f0501a0c75712bed910cfe5fb57e08
630a483d4dd85b1c4183685f71c7caea11887c31
5fa02b390547f522b88d953b51dad513d120cc138a02b391c246806b6a055a17
GET /public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://package.dittugarments.com/public/
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlZFb3Z1Q0hURHJsemFqS2FkMVRnOUE9PSIsInZhbHVlIjoiTCt0NGJ4bHFtSzZ3Um96R3JMKzNvVHdWUlg1UXFZa0lTUVN3NXFsazFVMThpTWllVktXdXR5YnhkMzNpZEM5eVBVb01MT2VCN2hhcUlCZCtlRExkY0QzeTVFV2FlSmI4anpMZ1RDR0V0TEdMS1JNNDgzaURlVFBPS0YzQWpIaU8iLCJtYWMiOiIwMTBmZjBlNWRiNTViMmU3YmNmZGFlNGU3NDlmMGI5OTA3Y2U4YmE3NDFiNTA1ZWVhNTIyYjhjMjg5NWRhNmE0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkFxeDdhenhuc0Q3TTRXQzJ6ZkZBRlE9PSIsInZhbHVlIjoicm5aV0NQK3BJcUJ6dnU2K0VzVTRxenZVcVk3S3JMNzFDQUVwS0FFWVBwMFl5RlpuMnMzd1YwbHJxajJGWG0xRUJBa2syc3VMNHVRZm8yRUtFcXB3ZWV1N3VhMSsvSW5SajA0SzBkMzB0YmRGT05kREJqMnNiWC9pWlA3OHc2VkkiLCJtYWMiOiIyNzVhMjIwMzU5NzBlYmUxZDdhNjc0NTc4Zjk3ODU2M2ZlNjhmYjFiNDM3YWU2MGQyODUxYWNmZTQ5MzU2YTNjIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:49 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D; expires=Mon, 04-Dec-2023 04:54:49 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
cdnjs.cloudflare.com/ajax/libs/imask/3.4.0/imask.min.js
200 OK 11 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/imask/3.4.0/imask.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (45552)
Hash 79c82646b886e08184f7b9fff25e64ff
804b4b0f8f3443ff05833e33fb5b76780ffafe25
8b76b3502583edddf22df0b9c6ee640053a2cdfeaa113ceff3ea9b61d1f6410d
GET /ajax/libs/imask/3.4.0/imask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 02:54:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 10899
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e9f-b217"
last-modified: Mon, 04 May 2020 16:11:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 946156
expires: Sat, 23 Nov 2024 02:54:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y90jsbs8EBbG7lnoQQ9RepZOdFwvOiqv9VYFyTjAs8JhddmWnut8HLhXi3s0DFVhi%2BBPdljt1I9C%2BHlvQ%2FpQe7KH0KK8QXaedCF5Sr7loH0%2F2cIhYpdVIk%2B%2FKpfVxaDWJmwFtART"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8300c4564eef1c0a-OSL
alt-svc: h3=":443"; ma=86400
cdn.s-pass.org/SPASSDATA/media/cache/portail_vignette_xl/SPASSDATA/attachments/2022_02/17/114223-serencontrer-messages-solid.png
200 OK 5.0 kB URL GET HTTP/2 cdn.s-pass.org/SPASSDATA/media/cache/portail_vignette_xl/SPASSDATA/attachments/2022_02/17/114223-serencontrer-messages-solid.png
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerCloudflare, Inc.
Subjects-pass.org
Fingerprint66:7C:47:A7:D2:1D:EF:BF:C1:BB:CD:FD:25:D2:A3:44:EF:B6:EE:C9
ValidityThu, 07 Sep 2023 00:00:00 GMT - Fri, 06 Sep 2024 23:59:59 GMT
File type PNG image data, 640 x 512, 8-bit colormap, non-interlaced\012- data
Hash faa2a37bbdf6a4d7eb92f4df1396e1bc
b63e5a7323f771d2294a58b3251bb6036ae33fce
cff8856b01d09b6e68b3d6b75172ea259363b4268be55229a963e86edc77e627
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /SPASSDATA/media/cache/portail_vignette_xl/SPASSDATA/attachments/2022_02/17/114223-serencontrer-messages-solid.png HTTP/1.1
Host: cdn.s-pass.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 02:54:49 GMT
content-type: image/png
content-length: 4984
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1313415
etag: "620e522e-140a87"
last-modified: Thu, 17 Feb 2022 13:48:30 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1006696
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a%2FWXXVDfXaUuJE0g5nSD%2FWaY95oPcLnrVG%2FCunW58ThJq8D04r5%2BvO2KiMPaY2yU0H18kCncamurfE1KOaakZ1xBmzeoa8DpdamXWrTbRrMTyHqA8tf0GO3XG7%2FNyRFi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8300c456790656a5-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js
200 OK 338 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65351)
Size 338 kB (338270 bytes)
Hash 61008443488f4e7f60d5a5055483187e
b56375acc5e062f79280440459d0d7b0f10a290b
1d3f596f76f53d53ef7cb1ffeffd6f791b54bd639b42e4f23e7f2d7b36f91c48
GET /ajax/libs/font-awesome/5.8.1/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://package.dittugarments.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 02:54:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 338270
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-1125c9"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 331058
expires: Sat, 23 Nov 2024 02:54:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OW06i8Ywuq3sp1YBKCPQMGimwIgkDnVkKiFCAP4M5ZqM%2BQ2D632hmoKL3yrwphmtfCbGNCFRmjxapNmnWoyM8vnpLb9GzKYtD5rR9Witi0ePZHta7D8BZefZW%2FsK%2Ft%2BwpDPFvzeW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8300c4568efd1c0a-OSL
alt-svc: h3=":443"; ma=86400
code.jquery.com/jquery-1.12.4.min.js
200 OK 34 kB URL GET HTTP/2 code.jquery.com/jquery-1.12.4.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-17b8b"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 04 Dec 2023 02:54:49 GMT
age: 6857883
x-served-by: cache-lga21956-LGA, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 232, 169993
x-timer: S1701658489.391317,VS0,VE0
vary: Accept-Encoding
content-length: 33738
X-Firefox-Spdy: h2
package.dittugarments.com/public/dinzab/font-awesome.min.css
200 OK 31 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/font-awesome.min.css
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/font-awesome.min.css HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 31000
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
package.dittugarments.com/public/dinzab/newcc.css
200 OK 5.2 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/newcc.css
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
Hash a8802c7108e75bd512824b11af10a5e7
0af53e81447c67be4d787fea0f6ef8c82008e4ea
6c37a32274d58b55fc113546582236826b279eb6d667ecbf86e73823713da4f9
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/newcc.css HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Thu, 02 Jun 2022 12:41:52 GMT
Accept-Ranges: bytes
Content-Length: 5211
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
package.dittugarments.com/public/dinzab/intlTelInput.css
200 OK 25 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/intlTelInput.css
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
Hash bd1fe63547e380ddfdd79c4cea97cc1e
d5546e0d88b001b6ceb1a06fbf6a47e31214e9de
51198a6581f3fdd8b035268f775b1a6f519ee61b3e2a22da4a6fe2b2647b145b
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/intlTelInput.css HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 24631
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
cdn.lr-in.com/logger-1.min.js
200 OK 168 kB URL GET HTTP/2 cdn.lr-in.com/logger-1.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectlr-in.com
Fingerprint06:C7:A4:83:83:3B:72:D9:6B:66:09:15:2F:3A:52:FD:1F:E4:05:24
ValiditySun, 12 Nov 2023 13:20:34 GMT - Sat, 10 Feb 2024 13:20:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 168 kB (168093 bytes)
Hash f1d1b5e9a07db0b36791956f266d9f71
3735caf1266c899e91b9a813d28f6c17090ad1e6
c5a60164a63f90a4af16a50d95ed15f00037f6485f0863d694e757578fbbb9ec
GET /logger-1.min.js HTTP/1.1
Host: cdn.lr-in.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 02:54:49 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400
cross-origin-resource-policy: cross-origin
etag: W/"da1295758652029ef15ad8e9229078ea104a459221e02a134c64c0fb67a23457"
last-modified: Sat, 02 Dec 2023 00:47:07 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1701478179.442537,VS0,VE132
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 261
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bHMHO7wy%2BmAD5Slz4FjIidOym2Lz29rAqZwL%2FDAqsXU%2B9EHiZDnohk2OXaSeiWNkb4jnKlkeuk6Yjz6OYcGCi13X4yYtzKad9J%2BU7H12UfTUtlRkxyQeDxZQ4JlCCLLi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8300c4560c543766-HEL
content-encoding: br
X-Firefox-Spdy: h2
package.dittugarments.com/public/dinzab/card.js
200 OK 59 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/card.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (51786)
Hash 30e93a747ba8285615cfbc3643dc1a62
3a55f9d6ac708f519d351ea0b69083457778ec9d
18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/card.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 58666
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/data.js
200 OK 12 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/data.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (9881)
Hash a2b78e86240966cda00a463614e4f3dd
a2606f30f77bb9f235746059db16b0ee8b585c31
55e47db856701715f613de8674bd0c67604cc304514b791bed402866d18c8557
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/data.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 12100
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/intlTelInput.js
200 OK 89 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/intlTelInput.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (9885)
Hash 9146aa46d1f409004183b86f202c4607
717a6d53527fe31ec1c4eef9022b06e5d4d6f6a5
b188900aaff98a87fc69519ab04437aa735708b4b92f2adcab6937d2a1d42e37
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/intlTelInput.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 89336
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/countrySelect.js
200 OK 37 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/countrySelect.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (347)
Hash ee3d5d4880b5dac09d9ca3c23cdd28da
f95728f89723a079442d67ed6aa38abf8ecab4fd
657baddf2724ae4570fa40c00dddefa3379b5709ac06ceb536f6177a1bfc394f
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/countrySelect.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 36634
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/app.css
200 OK 914 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/app.css
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type assembler source, ASCII text
Size 914 kB (913520 bytes)
Hash 74d0401d2b753a90be1d872aaa6e94b4
386f08a79bdc853e8a81585efcfc35ca90a49687
0762226aa4722b7c5349c825388089b0e3f8cdde6dd5dbb5f002d4fb014f568f
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/app.css HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Thu, 02 Jun 2022 17:04:20 GMT
Accept-Ranges: bytes
Content-Length: 913520
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
package.dittugarments.com/public/dinzab/app.js
200 OK 920 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/app.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (7706), with CRLF line terminators
Size 920 kB (920095 bytes)
Hash 508afd6ff9ab52ce8f480d35568038d1
b5d9891100e0dce59cee59b75a098a1ae64c779b
8af18273c1833477cf810c4e3a76f483b6a6064571d25ea7742d8708378c8f09
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/app.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:49 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 920095
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
404 Not Found 55 B URL GET HTTP/3 cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with no line terminators
Hash 2ccf42e1d8ce91dc28fc42053a58924f
66ec924f0d32dfb06bf0dda1133bd4b884b2d83d
51311bb7fe0896738e7bb28de627f8ad47495c61d8840e5921460123484560a5
GET /gh/killbot-org/Killbot-JS@latest/dist/main.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 55
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=600, s-maxage=600
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"38-ZuySTw0y37Br8N2hEzvUuISy2D0"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 02:54:50 GMT
age: 165
x-served-by: cache-fra-etou8220062-FRA, cache-bma1680-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
package.dittugarments.com/public/dinzab/logo.png
200 OK 2.0 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/logo.png
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type PNG image data, 214 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d14ab93691604e826e1319d53599eb9
78724360e9d25da584445b851e37bca05abe6b85
3f0c62b5ccdcdbf3b3ae3885f1e6959e2d937eba9b29dea9a6bdb98788041756
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/logo.png HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:50 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 1998
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
code.jquery.com/jquery-1.12.4.min.js
200 OK 34 kB URL GET HTTP/2 code.jquery.com/jquery-1.12.4.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-17b8b"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 04 Dec 2023 02:54:50 GMT
age: 6857884
x-served-by: cache-lga21956-LGA, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 232, 169994
x-timer: S1701658491.623041,VS0,VE0
vary: Accept-Encoding
content-length: 33738
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/imask/3.4.0/imask.min.js
200 OK 11 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/imask/3.4.0/imask.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (45552)
Hash 79c82646b886e08184f7b9fff25e64ff
804b4b0f8f3443ff05833e33fb5b76780ffafe25
8b76b3502583edddf22df0b9c6ee640053a2cdfeaa113ceff3ea9b61d1f6410d
GET /ajax/libs/imask/3.4.0/imask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 02:54:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 10899
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e9f-b217"
last-modified: Mon, 04 May 2020 16:11:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 946157
expires: Sat, 23 Nov 2024 02:54:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3vm%2Bi9C2odUn%2BBe9x%2FaaWjcl9h%2FjJJMjPMuuQJckfG8omQiZTz6TBKMuQbbZ1mRh27bLnWtJgi7tg2QpdBqbAGqLt3rIq4uDfZvHYf%2FD9J2x63qV5wTZmweutvjX%2BRlHLA%2FAb0cb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8300c45eb8491c0a-OSL
alt-svc: h3=":443"; ma=86400
package.dittugarments.com/public/dinzab/app.js
200 OK 920 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/app.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (7706), with CRLF line terminators
Size 920 kB (920095 bytes)
Hash 508afd6ff9ab52ce8f480d35568038d1
b5d9891100e0dce59cee59b75a098a1ae64c779b
8af18273c1833477cf810c4e3a76f483b6a6064571d25ea7742d8708378c8f09
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/app.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:50 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 920095
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/data.js
200 OK 12 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/data.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (9881)
Hash a2b78e86240966cda00a463614e4f3dd
a2606f30f77bb9f235746059db16b0ee8b585c31
55e47db856701715f613de8674bd0c67604cc304514b791bed402866d18c8557
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/data.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:51 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 12100
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/card.js
200 OK 59 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/card.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (51786)
Hash 30e93a747ba8285615cfbc3643dc1a62
3a55f9d6ac708f519d351ea0b69083457778ec9d
18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/card.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:51 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 58666
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/mine.js
200 OK 1.6 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/mine.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
Hash f11ee1ccf373dd137b7ad18e4ee2f69e
26baf7db3e340be99ece82b37d294b80c373fd12
71b8a934f8936288d42fe9fd426ff18cbc1fe54070617fd62420025da56b662e
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/mine.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:51 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 08:48:22 GMT
Accept-Ranges: bytes
Content-Length: 1604
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js
200 OK 338 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65351)
Size 338 kB (338270 bytes)
Hash 61008443488f4e7f60d5a5055483187e
b56375acc5e062f79280440459d0d7b0f10a290b
1d3f596f76f53d53ef7cb1ffeffd6f791b54bd639b42e4f23e7f2d7b36f91c48
GET /ajax/libs/font-awesome/5.8.1/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://package.dittugarments.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 02:54:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 338270
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-1125c9"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 331060
expires: Sat, 23 Nov 2024 02:54:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CKaiOwz3U%2B5kN4S7EnoZnXzWA1IM3wV5ISsm9V7sybOmcC6RMvfae7n3fyMMrAWFjjyZpyN87WI30J8eaDJF0Yh%2B6%2BlLAeMt4W1u%2Faz3TfYS5d8tol9EGFyR8TEjPazjDur%2FubjE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8300c465493e1c0a-OSL
alt-svc: h3=":443"; ma=86400
package.dittugarments.com/public/dinzab/intlTelInput.js
200 OK 89 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/intlTelInput.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (9885)
Hash 9146aa46d1f409004183b86f202c4607
717a6d53527fe31ec1c4eef9022b06e5d4d6f6a5
b188900aaff98a87fc69519ab04437aa735708b4b92f2adcab6937d2a1d42e37
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/intlTelInput.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:51 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 89336
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/countrySelect.js
200 OK 37 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/countrySelect.js
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type Unicode text, UTF-8 text, with very long lines (347)
Hash ee3d5d4880b5dac09d9ca3c23cdd28da
f95728f89723a079442d67ed6aa38abf8ecab4fd
657baddf2724ae4570fa40c00dddefa3379b5709ac06ceb536f6177a1bfc394f
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/countrySelect.js HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:52 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 36634
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
package.dittugarments.com/public/dinzab/flagscountry.png
200 OK 66 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/flagscountry.png
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type PNG image data, 5630 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash ae33acae404631e997ef8d91dae08ccd
19fae9a6aa4bb419eba378b0d0573906dc1be38a
38025784bedeb5e4cae496b131c85cabbd95ae0b1c0a3c9d9cb474d7262db04b
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/flagscountry.png HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:52 GMT
Server: Apache
Last-Modified: Wed, 22 Sep 2021 16:06:48 GMT
Accept-Ranges: bytes
Content-Length: 65960
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
package.dittugarments.com/public/dinzab/favicon.gif
200 OK 2.2 kB URL GET HTTP/1.1 package.dittugarments.com/public/dinzab/favicon.gif
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectwww.parcel.dittugarments.com
Fingerprint47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56
ValidityMon, 20 Nov 2023 20:23:20 GMT - Sun, 18 Feb 2024 20:23:19 GMT
File type MS Windows icon resource - 1 icon, 32x32, 8 bits/pixel\012- data
Hash a6f1af8e79a11829ba9a66474b06bb97
d99e3ec7747c865033a8dfad43c9f49634404bc1
b0dbd00f3650fa6b931e678a9d8f79a405d23c7adf111ab91b1a01a0e7109807
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /public/dinzab/favicon.gif HTTP/1.1
Host: package.dittugarments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Cookie: XSRF-TOKEN=eyJpdiI6ImhaUkh3dU1ERDIycTNxb1UrSzRnb3c9PSIsInZhbHVlIjoiOU4wa1FaT2kyUStvK0dHR0hxZXJFZ3lJM05iRW5hTzhQTFJyR2hvaDlZSC85V1krWmNuNTJHSHZTSzhtZk9ucFM4V0FpbWpLeWgzeWFQMEtNY2Z3M3AraXIxWjhCNTNvSWR2eDFVSlRVQUVNVHBpb1kwLzI1a0xpNVNvT1VJdVkiLCJtYWMiOiIxMmMzNjFlNzk1ZjA5NmQ1OTU2Y2I0YTRmMDdiNmE4OWY5ZWFkZmFiMjIyZTc3ZmU2MzQzOTVhYzlmNGIzY2U2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRaWTRlWHhxamxSNzlsYTJZTkdDdmc9PSIsInZhbHVlIjoiVlNYVEpQYjI4R250eEFBMFZMRC9zQUtEYnEzZ1VQZXJ2eUtueU1aNjIrQ1dUVE1BOE12Nm40WGFqQ3daL1lxVTg3RE9YNExvay93eEpEVXVaRjY5MmMyeFFhZG51d0I2bWJyY21Xa1FQRFNYYTd6eHhaWXI1K1V1Q1NmNEtDVUUiLCJtYWMiOiI4ODkzZjEyYmI3OTJiYTk3NzI5ZTk1MjQxYzY1MjRjNjU0NWIwNWZhYzg2NTZhMmM2YTExOTU0NDcwY2JjMWVhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 02:54:52 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 07:05:50 GMT
Accept-Ranges: bytes
Content-Length: 2238
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/gif
ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
0 B URL ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1
Host: ws-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://package.dittugarments.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3uGZwOaTpS+Ka6p3VpGoZw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 04 Dec 2023 02:54:52 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1Emo2cVxK9v57NFgpHpnZ6794Gk=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover
ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
0 B URL ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1
Host: ws-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://package.dittugarments.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +JZrKCkTrvIdfmelFyTKJA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 04 Dec 2023 02:54:53 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Yx+tPmXFAEtBj3KeQSJyLvV+NoA=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover
sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/519/3vvkg181/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658499737&n=1
200 OK 0 B URL POST HTTP/2 sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/519/3vvkg181/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658499737&n=1
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectsockjs-mt1.pusher.com
Fingerprint0D:D2:31:02:FF:57:E9:AF:23:47:25:1D:B7:1C:66:F3:1A:4E:DA:5C
ValiditySun, 12 Nov 2023 01:30:52 GMT - Sat, 10 Feb 2024 01:30:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pusher/app/bc5ba70500b3342fb1aa/519/3vvkg181/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658499737&n=1 HTTP/1.1
Host: sockjs-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://package.dittugarments.com/
Origin: https://package.dittugarments.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: https://package.dittugarments.com
vary: Origin
access-control-allow-headers: content-type
access-control-allow-credentials: true
cache-control: public, max-age=31536000
expires: Tue, 03 Dec 2024 02:54:54 GMT
access-control-allow-methods: OPTIONS, POST
access-control-max-age: 31536000
date: Mon, 04 Dec 2023 02:54:54 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/111/oc1dt9vo/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658499746&n=1
204 No Content 0 B URL OPTIONS HTTP/2 sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/111/oc1dt9vo/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658499746&n=1
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectsockjs-mt1.pusher.com
Fingerprint0D:D2:31:02:FF:57:E9:AF:23:47:25:1D:B7:1C:66:F3:1A:4E:DA:5C
ValiditySun, 12 Nov 2023 01:30:52 GMT - Sat, 10 Feb 2024 01:30:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pusher/app/bc5ba70500b3342fb1aa/111/oc1dt9vo/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658499746&n=1 HTTP/1.1
Host: sockjs-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://package.dittugarments.com/
Origin: https://package.dittugarments.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-origin: https://package.dittugarments.com
vary: Origin
access-control-allow-headers: content-type
access-control-allow-credentials: true
cache-control: public, max-age=31536000
expires: Tue, 03 Dec 2024 02:54:54 GMT
access-control-allow-methods: OPTIONS, POST
access-control-max-age: 31536000
date: Mon, 04 Dec 2023 02:54:54 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/132/omiojvpr/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658500676&n=2
0 B URL POST sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/132/omiojvpr/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658500676&n=2
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerLet's Encrypt
Subjectsockjs-mt1.pusher.com
Fingerprint0D:D2:31:02:FF:57:E9:AF:23:47:25:1D:B7:1C:66:F3:1A:4E:DA:5C
ValiditySun, 12 Nov 2023 01:30:52 GMT - Sat, 10 Feb 2024 01:30:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pusher/app/bc5ba70500b3342fb1aa/132/omiojvpr/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1701658500676&n=2 HTTP/1.1
Host: sockjs-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://package.dittugarments.com/
Origin: https://package.dittugarments.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://package.dittugarments.com
vary: Origin
access-control-allow-headers: content-type
access-control-allow-credentials: true
cache-control: public, max-age=31536000
expires: Tue, 03 Dec 2024 02:54:55 GMT
access-control-allow-methods: OPTIONS, POST
access-control-max-age: 31536000
date: Mon, 04 Dec 2023 02:54:55 GMT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
0 B URL ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1
Host: ws-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://package.dittugarments.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fzzV8xlQitWbpr1/os4tWg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 04 Dec 2023 02:54:59 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ytYWgyAGXHJejesivUUpEBv1c6k=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover
dispatching-centre.lasamericascargo.com/images/foo.png
0 B URL GET dispatching-centre.lasamericascargo.com/images/foo.png
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/foo.png HTTP/1.1
Host: dispatching-centre.lasamericascargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
101 Switching Protocols 0 B URL GET HTTP/1.1 ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerAmazon
Subjectpusher.com
Fingerprint7F:21:03:8F:D0:81:ED:06:33:D6:8D:83:17:DA:79:19:72:2E:BF:39
ValiditySun, 25 Jun 2023 00:00:00 GMT - Wed, 24 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1
Host: ws-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://package.dittugarments.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +JZrKCkTrvIdfmelFyTKJA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 04 Dec 2023 02:54:53 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Yx+tPmXFAEtBj3KeQSJyLvV+NoA=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover
ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
101 Switching Protocols 0 B URL GET HTTP/1.1 ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerAmazon
Subjectpusher.com
Fingerprint7F:21:03:8F:D0:81:ED:06:33:D6:8D:83:17:DA:79:19:72:2E:BF:39
ValiditySun, 25 Jun 2023 00:00:00 GMT - Wed, 24 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1
Host: ws-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://package.dittugarments.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3uGZwOaTpS+Ka6p3VpGoZw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 04 Dec 2023 02:54:52 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1Emo2cVxK9v57NFgpHpnZ6794Gk=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover
fonts.googleapis.com/css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600
200 OK 9.0 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600
IP
Requested by https://package.dittugarments.com/public/gVV2YxRVXuLLXLLliKOMPp42c4UynoPg
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (9264), with no line terminators
Hash 3a28ee17cf6392c31edb349ab60d2a22
615c29fd9e9d5b5363092aa2fa2894183114d32d
3a3e7ac57b9005210c74a4643889c4fa39d4a384599f9dd7fc16053db74a2070
GET /css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://package.dittugarments.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 04 Dec 2023 02:54:49 GMT
date: Mon, 04 Dec 2023 02:54:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
167.114.30.172
151.101.194.137
0.0.0.0