Report - nbgt.net/

Report Overview

Visited public
2023-12-09 21:53:16
Tags
URL
nbgt.net/
Finishing URL
nbgt.net/
IP / ASN
172.67.195.93
#13335 CLOUDFLARENET
Title
NBG i-bank

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
nbgt.net	unknown	2023-12-08	2022-06-21 10:28:47	2023-12-09 07:37:22	9.4 kB	875 kB	104.21.49.231
normandy.cdn.mozilla.net	3562	1998-01-31	2017-01-30 06:02:05	2023-12-09 05:35:37	341 B	1.2 kB	35.201.103.21
classify-client.services.mozilla.com	3824	1994-10-18	2019-01-09 19:41:01	2023-12-09 05:35:37	369 B	344 B	34.98.75.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece
2023-12-09	medium	nbgt.net/	National Bank of Greece

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	nbgt.net/	ScriptElement	371 B	2023-12-09	2024-08-20
Pretty URL nbgt.net/ IP 104.21.49.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-09 17:38 Last Seen2024-08-20 16:16 Times Seen3 Hash b883960e53f9c963ce53cb2522bd331a c4bd97275c218e953c182e97144d384945859d8b 61cf53e07af988a71dc0039d09b94e82dc3d9dbf5a04def36d119957437eb982 Loading...

	nbgt.net/	ScriptElement	894 B	2023-12-09	2024-08-20
Pretty URL nbgt.net/ IP 104.21.49.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-09 17:38 Last Seen2024-08-20 16:16 Times Seen3 Hash 10bb4e9d0e315e35690c5082223a88ae 1b7f0127269d6e3da91969b46c3b7e0559a6ff0f 62e78f38c8261ea321e1639dd9d31dc3f0242824dbbc657332852819adad41e3 Loading...

	nbgt.net/	ScriptElement	201 B	2023-12-09	2024-08-20
Pretty URL nbgt.net/ IP 104.21.49.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-09 17:38 Last Seen2024-08-20 16:16 Times Seen3 Hash 01575869068e8efb187ebb4beccc15e1 959ccf30a088ef5ed3975a207f3846ae27ca8a6d 19de9a3609e424109aa0216433944a03add7b0f35b4254171bb50f7321d7c9dc Loading...

	nbgt.net/	ScriptElement	200 B	2023-12-09	2024-08-20
Pretty URL nbgt.net/ IP 104.21.49.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-09 17:38 Last Seen2024-08-20 16:16 Times Seen3 Hash 4211cd5f4cd68c0f081cbadbbd0f00f8 2938062f983a44e4ae57584c80a2f7b9a973e743 727f032df28cf09076c929e94200d55b7bb9c39437a0f0b20dcaef56e4502266 Loading...

	nbgt.net/	ScriptElement	379 B	2023-12-09	2024-08-20
Pretty URL nbgt.net/ IP 104.21.49.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-09 17:38 Last Seen2024-08-20 16:16 Times Seen3 Hash 93be6c2666e0a77856ca335b2a6184fd 665e3b230841335c62fd8652d63a4251cf0bb5ea d89112479b28f9897760711403c9ac5747f6ae554183721e9ec87b310f88f35c Loading...

HTTP Transactions (22)

URL IP Response Size

nbgt.net/login-logo.el.png

104.21.49.231

200 OK

27 kB

URL GET HTTP/3
nbgt.net/login-logo.el.png
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
PNG image data, 729 x 516, 8-bit/color RGBA, non-interlaced - data
Size
27 kB (26907 bytes)
Hash
f14677e314721008021a7f668dc5ad70
246501ddadbd2fffb18299a19bf6fcdd13bf2b7e
909457e7d2ab71d52c2fa3386917fee5031be62e179b01804940a6cc9f5d61ac

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /login-logo.el.png HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/png
content-length: 26907
last-modified: Fri, 08 Dec 2023 05:39:45 GMT
etag: "6572ac21-691b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B70WPRHAtYYdjjANbSfHuY4psrGiHZHaPLpUTCOG5oQsORwUTWm5jmgRv7NdsNSb7QLVdmCuokWGOLEK09A4qK1y6Caxb3KIQP%2B5%2Bqa2Jz%2BGTOhRPXRphKMX9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1d195956c6-OSL
alt-svc: h3=":443"; ma=86400

nbgt.net/nbg.jquery.cookiebar.css

104.21.49.231

200 OK

66 kB

URL GET HTTP/3
nbgt.net/nbg.jquery.cookiebar.css
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
ASCII text, with very long lines (1212), with no line terminators
Size
66 kB (65569 bytes)
Hash
95a8bdbef60df79b5627a830b51333e3
def5907d2f6ea6add37b7227f24a7596e52ec766
aba55c1d024641781cb8fdb7a2ebd290c450c3fd1911045bfde41158431e0071

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /nbg.jquery.cookiebar.css HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: text/css
last-modified: Fri, 08 Dec 2023 05:39:47 GMT
etag: W/"6572ac23-4bc"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aBFFq%2BxcLF2gWTl2%2BH8qSzoqQyNtVafePJ3zwATYSiP%2Fpqw0XlySX2HOKxUzHF5WbNy%2FRHOF1CAVBPXP4900IsTdDoeakj8UnaayB4UDUl8G9zpZDeTY0JcjWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1d195856c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/PFDinDisplayPro-Regular.840952ed9468a2c7444f89b6f748e734.woff2

104.21.49.231

200 OK

89 kB

URL GET HTTP/3
nbgt.net/PFDinDisplayPro-Regular.840952ed9468a2c7444f89b6f748e734.woff2
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 89328, version 1.0 - data
Size
89 kB (89328 bytes)
Hash
840952ed9468a2c7444f89b6f748e734
c2e74b7ca8234328d24275beac09f133a7c06bd7
7a95f0a36d31f363f9789ef519f3c11b63b5ae3dc51d0a26bced8af0c1bd001d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /PFDinDisplayPro-Regular.840952ed9468a2c7444f89b6f748e734.woff2 HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: font/woff2
content-length: 89328
last-modified: Fri, 08 Dec 2023 05:39:42 GMT
etag: "6572ac1e-15cf0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WY0k0AGdgZO9FnpWJeVnl2Kd5pmTBPGHTd%2Be3sFnm%2FVmJuNy02JKhzUxMOykybw5GNdCMqYfXGtCv%2FFlSvNqtueUxpdSVJOahC%2FG%2B%2BT2rFCpadvRKxewIwbB%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a6456c6-OSL
alt-svc: h3=":443"; ma=86400

nbgt.net/PFDinDisplayPro-Light.23cdddacd0d56977093551f2faea9a13.woff2

104.21.49.231

200 OK

96 kB

URL GET HTTP/3
nbgt.net/PFDinDisplayPro-Light.23cdddacd0d56977093551f2faea9a13.woff2
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 95600, version 1.0 - data
Size
96 kB (95600 bytes)
Hash
23cdddacd0d56977093551f2faea9a13
7e27accf7eac968c45ec512b2f045919267ad3a3
9ffdc3a68b780337a39d808139258907be67d951cc439a149443e4da7b36129e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /PFDinDisplayPro-Light.23cdddacd0d56977093551f2faea9a13.woff2 HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: font/woff2
content-length: 95600
last-modified: Fri, 08 Dec 2023 05:39:38 GMT
etag: "6572ac1a-17570"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zLTLW9aoBVsXJwXTfNH9krmSuAYB0Z5JzkFzMgmWUZu7uqbEK36i4B8LB08GLGO2vjh15NS7PXwewqBMs3ZFYu55X6Fd8Tu08JE26Fuf5K6lbvJvj1a5gL93ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a6856c6-OSL
alt-svc: h3=":443"; ma=86400

nbgt.net/PFDinDisplayPro-Medium.61e7fd90675f0eb31beed62b660edde2.woff2

104.21.49.231

200 OK

94 kB

URL GET HTTP/3
nbgt.net/PFDinDisplayPro-Medium.61e7fd90675f0eb31beed62b660edde2.woff2
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 94488, version 1.0 - data
Size
94 kB (94488 bytes)
Hash
61e7fd90675f0eb31beed62b660edde2
c6c65c33d9ebf5e502afb83fbb81600fe18e8edd
657bea5fc93d3f34725e07ac72fd20201673054ebe4e88507efee5b8331d0305

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /PFDinDisplayPro-Medium.61e7fd90675f0eb31beed62b660edde2.woff2 HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: font/woff2
content-length: 94488
last-modified: Fri, 08 Dec 2023 05:39:41 GMT
etag: "6572ac1d-17118"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1h4uWhB0w1i%2FFii%2BPKzrK6wjrA%2F8okx79LNP8T66dm2Pqrc1Y9T0I%2FMFCfCnHdR0oijjwKkkSUUOfJYeBFHIyVC0cwbsXy99MUM4AE1bsGuZn3ou9RTU7K3wZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a6a56c6-OSL
alt-svc: h3=":443"; ma=86400

nbgt.net/ibredesign.f0ceac6f3471ca7186d40de1d3e2f374.woff

104.21.49.231

200 OK

10 kB

URL GET HTTP/3
nbgt.net/ibredesign.f0ceac6f3471ca7186d40de1d3e2f374.woff
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
Web Open Font Format, CFF, length 10032, version 1.0 - data
Size
10 kB (10032 bytes)
Hash
f0ceac6f3471ca7186d40de1d3e2f374
14f7f033e0ba97cd51b40d24e0418ebf28672d49
7eaddeb2eaff03e45ce46c2b46ebce3739fa54c7ccad58a640ca4f819eac5ef2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /ibredesign.f0ceac6f3471ca7186d40de1d3e2f374.woff HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: font/woff
content-length: 10032
last-modified: Fri, 08 Dec 2023 05:39:44 GMT
etag: "6572ac20-2730"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nZWVM9%2FwJjpucVKKcZf%2FS6whGv2%2FLsVOdfIlaCc5WGhatVndTYT%2FNJMDCsFCg2%2FA31XniykdZFxNdk7LG%2FsgzVjmAtaRZlI85XSpnICZMdKMuk6vLNF3zN9EzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a6c56c6-OSL
alt-svc: h3=":443"; ma=86400

nbgt.net/PFDinDisplayPro-Bold.97f76d8aeaf843ff0dc265092c4d465b.woff2

104.21.49.231

200 OK

94 kB

URL GET HTTP/3
nbgt.net/PFDinDisplayPro-Bold.97f76d8aeaf843ff0dc265092c4d465b.woff2
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 94248, version 1.0 - data
Size
94 kB (94248 bytes)
Hash
97f76d8aeaf843ff0dc265092c4d465b
70fb59ea905f8f287af88b8fa0d61a846f392abf
b9e0f337b1ab2be7a2461abcd17a50b5ac18c4a1c5b9b14cc7005d08df57b8dc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /PFDinDisplayPro-Bold.97f76d8aeaf843ff0dc265092c4d465b.woff2 HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: font/woff2
content-length: 94248
last-modified: Fri, 08 Dec 2023 05:39:38 GMT
etag: "6572ac1a-17028"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xeWB7inJM%2FrveyNUB%2B5fdPlgbYkOamvmi7BrGhCdtqpWWV0ONRvDFQ1jL4tl04MlPuUQ2f7wq0Y0g3f2dUb067cdxJxTTWTnCjJ0n6DezJ586Mq7G4SJW%2B4Ong%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e4a8c56c6-OSL
alt-svc: h3=":443"; ma=86400

normandy.cdn.mozilla.net/api/v1/

35.201.103.21

598 B

URL
normandy.cdn.mozilla.net/api/v1/
IP
35.201.103.21:0
ASN
#15169 GOOGLE

File type
JSON data - , ASCII text, with very long lines (598), with no line terminators
Size
598 B (598 bytes)
Hash
3076f9a5cb273105528b893ff7111e41
b8990c145fe71b9a2410eea41a60a712b43b82bf
69c578fb0c03a28141a975833f660f4571e7991dc28ae7f9cead37672ee2c9b3

HTTP Headers

GET /api/v1/ HTTP/1.1
Host: normandy.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 598
allow: GET, HEAD, OPTIONS
content-security-policy: form-action 'self'; block-all-mixed-content; frame-src 'none'; worker-src 'none'; object-src 'none'; base-uri 'none'; default-src 'self' https://normandy.cdn.mozilla.net/; report-uri /__cspreport__
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000
via: 1.1 google
date: Fri, 08 Dec 2023 23:43:42 GMT
cache-control: public, max-age=86400
content-type: application/json
vary: Accept, Origin
age: 79771
alt-svc: clear
X-Firefox-Spdy: h2

classify-client.services.mozilla.com/api/v1/classify_client/

34.98.75.36

64 B

URL
classify-client.services.mozilla.com/api/v1/classify_client/
IP
34.98.75.36:0
ASN
#15169 GOOGLE

File type
JSON data - , ASCII text, with no line terminators
Size
64 B (64 bytes)
Hash
d230144d36784a25cffa7280a7661579
6fd83ac9235bec6d818709cf9daddbfe91b17476
7d428657a0d09a38aadda9ce5a5583a025c3813eb758cf89100e2ac2c74a2299

HTTP Headers

GET /api/v1/classify_client/ HTTP/1.1
Host: classify-client.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 09 Dec 2023 21:53:13 GMT
content-type: application/json
content-length: 64
cache-control: max-age=0, no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

nbgt.net/favicon.ico

104.21.49.231

200 OK

1.2 kB

URL GET HTTP/3
nbgt.net/favicon.ico
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel - data
Size
1.2 kB (1150 bytes)
Hash
2a0489a945010513fd24d07322c474d0
402982028c8437779225a9517632acda5c71f02d
6defca1832ec5d1177951ead693ff50cc67a9489ae5d9dacbe4c0f6e3336534b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:46 GMT
content-type: image/x-icon
last-modified: Fri, 08 Dec 2023 05:39:44 GMT
etag: W/"6572ac20-47e"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hDRaWyZNfyABJsLHIgSRSHRE2j5rnDpO%2FSFoCXH1C6Eo5fVjrebX8iHfJuIfErH30i%2BPcIryuJxJ7Dk88xD6tKgg2%2FltC8i4WWhiDAPFwNwDV57vOvVGs%2BEVVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1f3b8f56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/help-faq.09d363d89aba54167e4e163aef23d5bd.svg

104.21.49.231

200 OK

2.5 kB

URL GET HTTP/3
nbgt.net/help-faq.09d363d89aba54167e4e163aef23d5bd.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (2571), with no line terminators
Size
2.5 kB (2512 bytes)
Hash
fba5a6a673128e706f01964c329ac2f9
727c9f7edbbb56d91250afbb9abf40871a5f3a37
e80a04fa017ced157c556ccfdb25d7874873217b961110a798df4ec10b1ee0c4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /help-faq.09d363d89aba54167e4e163aef23d5bd.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:44 GMT
etag: W/"6572ac20-9d0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J5DleWr%2F1UI2Dec%2F%2BV2q%2BxKBsEBe2lz3YCsgqMlHgYKaxtXOwLWK6%2FjHjE8VZnSOHSyCEJvceSnIwhgVLFbH9t21Q4xIUs%2F9t3rUL%2BQMELeDQ6GNn6hx1BnXmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e1a4956c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/fb.ab304d17b9496bc6b935c4432936bd0c.svg

104.21.49.231

200 OK

1.0 kB

URL GET HTTP/3
nbgt.net/fb.ab304d17b9496bc6b935c4432936bd0c.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (1093), with no line terminators
Size
1.0 kB (1037 bytes)
Hash
7921986be2327726f857c13385687812
eae3cc4adb669bf206b3b9a8caf1755566128b77
3b41526c205d7212ee029138623946b2e6a3ed74d3e2cd596332b75143beb174

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /fb.ab304d17b9496bc6b935c4432936bd0c.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:44 GMT
etag: W/"6572ac20-40d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qpYN1gpNkaONBhxMGGFotmEvyZT71chVuvuIPNBGNyRXoVAK%2BR3nELvUyYxvC4kBtttx98oteVpDXkzqb%2FZrifiIparJFs89FI3lBCnikE6vCgQpMMBN4URTjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a5956c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/linkedin.8d26e4a4e8edd5cb6c5ce18076102dc3.svg

104.21.49.231

200 OK

1.9 kB

URL GET HTTP/3
nbgt.net/linkedin.8d26e4a4e8edd5cb6c5ce18076102dc3.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (1980), with no line terminators
Size
1.9 kB (1924 bytes)
Hash
ec7f050086614d2723453801a9ed5ec9
8d952fa913fc30c2ad1847c6bd62bcf4607dcf41
798df4a0362a3928edc1fc725d6f1e973b8730fc39c8e084d5d8cc90640ccbd9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /linkedin.8d26e4a4e8edd5cb6c5ce18076102dc3.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:45 GMT
etag: W/"6572ac21-784"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y3Zh%2FJGJo1%2FxHYnRgGZ81%2FpHqXvMzP1OAOjczSz1ViglyL%2Fffre72YNWuy3gPTjO0VRWUPIuzyjljSSr6UkmEbn4%2Ff1XXoEHrVpbxSYGaM3RanrpMZzGjgyXaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a5f56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/email.58449ee1338aaa0ed3b91944e1c7812c.svg

104.21.49.231

200 OK

1.2 kB

URL GET HTTP/3
nbgt.net/email.58449ee1338aaa0ed3b91944e1c7812c.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (1295), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
c08594c1df1b97e92958f7e6b1150263
229cc341987dd1e0ee81354177a0d0f2c3b25cee
9b8612b429e39df4432e95f1e1a4032062a839119dd5770b063e814840d0daa8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /email.58449ee1338aaa0ed3b91944e1c7812c.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:43 GMT
etag: W/"6572ac1f-4d7"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QQLAEjmXr4vjvbFJT0Oh%2FqSt1FTTazKNdHxGwY3D32twB%2FjSmSYUFAltAv2ND3XUbbkVUfTMoPL8V0slER2uuoNAKRT8Zy6EZ%2FvN7EkPsC%2Bd4H6rJD31tvYgFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a6056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/

104.21.49.231

200 OK

26 kB

URL User Request GET HTTP/2
nbgt.net/
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type

Size
26 kB (25813 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET / HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: text/html; charset=UTF-8
last-modified: Fri, 08 Dec 2023 05:39:45 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=864kGJ0cQCI9NPpqhabsRd33dbyJKnUNXdSrzgE2jGktW%2BecZgx1ytE18rLJTY1etp9%2Fam9Ys2kBkLKTDKFxFxmh%2B9qM%2BJJsm7luKHzRk6r4bT70480k2lXLCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83307a1b7e9856b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

nbgt.net/login-retail.4b5338cdd40e01d7a961e2e0f5429f77.jpg

104.21.49.231

200 OK

65 kB

URL GET HTTP/3
nbgt.net/login-retail.4b5338cdd40e01d7a961e2e0f5429f77.jpg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1441x1025, components 3 - data
Size
65 kB (65215 bytes)
Hash
4b5338cdd40e01d7a961e2e0f5429f77
dc89a5c6ab6c486388f666614a0fede220b6a32b
37734d015f69976e46ac6cba87ea668960976a2fbf82c7b3ef38d338ba0f9719

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /login-retail.4b5338cdd40e01d7a961e2e0f5429f77.jpg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/jpeg
content-length: 65215
last-modified: Fri, 08 Dec 2023 05:39:47 GMT
etag: "6572ac23-febf"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o9hX5r5CY9%2F4lRCl3AeUtaBAgl7KAJrZRawefBsTRw9Od1C8j2MVZr87L9C7eGfZ3imr89KbZB7ivrbCSJkzPuV1dIC6jNgFMCZLoYLH%2BlcWRahSmxxCSMbFEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1dfa2056c6-OSL
alt-svc: h3=":443"; ma=86400

nbgt.net/no-password.79db0e58fbd4f088877238790e1c667c.svg

104.21.49.231

200 OK

8.9 kB

URL GET HTTP/3
nbgt.net/no-password.79db0e58fbd4f088877238790e1c667c.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (8918), with no line terminators
Size
8.9 kB (8850 bytes)
Hash
ff7d7de6924f015358d818219eb24acb
fc56eafb1e48a23a861155e20c7f501ec16ca82f
4eb898d39f72551c6ccf6cc22eb27f8b64cbb63755a9c22f507dc82cb77e9890

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /no-password.79db0e58fbd4f088877238790e1c667c.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:48 GMT
etag: W/"6572ac24-2292"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wjjjj2BGpUpAXRhUQ84pR0kANHn%2FLTDTeGcFe%2FXKi%2FH7RwhHz3cwH4NFPjH9R0zMjgQXp39Av%2F5hM%2F4yx3qRFkATfhmCMkBglVV%2FGwog8zhYoBpBIAiVe9dgWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e1a5056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/twitter.82ce7df40056fcadd0606296fd2fd6cc.svg

104.21.49.231

200 OK

2.1 kB

URL GET HTTP/3
nbgt.net/twitter.82ce7df40056fcadd0606296fd2fd6cc.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (2165), with no line terminators
Size
2.1 kB (2109 bytes)
Hash
c4b34a5f9d39b4721e527d62b0c0aeaa
eff1976b2acbc7adc02897ee52c0664a274c6af6
efd526b2ccd4967202bb940ee2ec51d4863a9c46592d2bf7735ce9f39490ce33

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /twitter.82ce7df40056fcadd0606296fd2fd6cc.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:58 GMT
etag: W/"6572ac2e-83d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w1fUJ0hXHYaxnbYadFMc%2BbRTqGI9tjC9u2LDWm4%2FKoekkCb7Awr%2BeM94irJGIJ7mZZKSSdktHW5RdmqkNEPOUJqOj2KxrwdIxJA5K9NSXye3xLkhSrOIPg8VWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a5c56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/style.css

104.21.49.231

200 OK

269 kB

URL GET HTTP/3
nbgt.net/style.css
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
ASCII text
Size
269 kB (269196 bytes)
Hash
746fdaedaaefc5275ccc28d50f414059
d932794a378600c6cb9ecfcc7546a5b8813c90c4
95d99cb79b6bdb750c3f669e7549683caec95d08e5c49608409e50e1743317b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /style.css HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: text/css
last-modified: Fri, 08 Dec 2023 05:39:58 GMT
etag: W/"6572ac2e-41b8c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FhGp7KK3p%2BqJLwsmw2WYrXHVlBbKdGB3XsOmGIffRXHuEZAx%2F%2BErJ%2FfEjKXGUGOVfdRzDtCDMg1vRiv%2BaA1QpaQBMOMkg0jFfGEsIQm9%2BdsQhrmveS9bIjTlxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1d195756c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/new-user.c5df532c4f0df4c111c995e2ece2f25e.svg

104.21.49.231

200 OK

1.8 kB

URL GET HTTP/3
nbgt.net/new-user.c5df532c4f0df4c111c995e2ece2f25e.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (1828), with no line terminators
Size
1.8 kB (1753 bytes)
Hash
3be1275bd40f6814f1b56a476db664b1
40510f465ea9481f137f19907bede756101676c1
b8d369d5d00a36460480ce1369dd95006444ff23e3bd83e574f000cce919f207

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /new-user.c5df532c4f0df4c111c995e2ece2f25e.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:48 GMT
etag: W/"6572ac24-6d9"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yjrVggeAhy1mhMDEbB2oi7w8FDwGOuNsVaniaX%2FIvnWsJmQhxF8FNZ3tfIGZmRCHDGpdmGgiYVhhQH24P%2FLnqgzofdZ4WuhWMpA6WwQG1PoPb1HzK4OCEr9tHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e1a5156c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/protection.81373f3a3ba5f39e603fbd33c32f8c86.svg

104.21.49.231

200 OK

1.3 kB

URL GET HTTP/3
nbgt.net/protection.81373f3a3ba5f39e603fbd33c32f8c86.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document, ASCII text, with very long lines (1389), with no line terminators
Size
1.3 kB (1311 bytes)
Hash
dfc75d035f55743cbe03b4bbfbee9d2b
52e10ade99a1b9c52c1490e88d467c5af7c95e9d
45de5c315ece87028f262fe41363150ff03f76eae2227a8542b64f327f9578dd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /protection.81373f3a3ba5f39e603fbd33c32f8c86.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:50 GMT
etag: W/"6572ac26-51f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tg205yQsDi0aRbNS8BmZhTIe9jyx0jnPpllWUUJwLuOhTs2e0A%2BhybNPJEj8H%2BKQP8r2XLOKBWE6ksy6EYaVhjXL3CKgoUXb0eK7M5tI1Y2GoNrO4TvefLoJXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a5856c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nbgt.net/youtube.487fffeb171ea4b2b655013e3d76a6a7.svg

104.21.49.231

200 OK

3.0 kB

URL GET HTTP/3
nbgt.net/youtube.487fffeb171ea4b2b655013e3d76a6a7.svg
IP
104.21.49.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nbgt.net/
Certificate
IssuerGoogle Trust Services LLC
Subjectnbgt.net
Fingerprint13:39:C9:46:22:95:27:25:12:F8:90:73:0E:32:59:2F:B6:A6:85:B7
ValidityFri, 08 Dec 2023 05:10:41 GMT - Thu, 07 Mar 2024 05:10:40 GMT

File type
SVG Scalable Vector Graphics image - XML document text - HTML document text - exported SGML document, ASCII text, with very long lines (3074), with no line terminators
Size
3.0 kB (3018 bytes)
Hash
39a0cf69e95b2cfcd6e3d273bedd1e1e
5e20bf28d7b06d92261b76349bd051896bda6a8d
07a106d9e861e50473ef21b4084891f7c853f2e47631faacbbae3a5a9203fbbc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	National Bank of Greece

HTTP Headers

GET /youtube.487fffeb171ea4b2b655013e3d76a6a7.svg HTTP/1.1
Host: nbgt.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nbgt.net/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 09 Dec 2023 21:52:45 GMT
content-type: image/svg+xml
last-modified: Fri, 08 Dec 2023 05:39:58 GMT
etag: W/"6572ac2e-bca"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eKZ51JVfA8YRZibT6deSIg7FHOQix5FOmxYsci6N8yhmTvbdTG3Zue4UPBZ1gln8hUoueowkLj04oOYTqB33IMhlZ6W4t39LQrlLOfF6yO3oO9ffM3Kw5kd2vg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83307a1e2a5d56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (22)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3