Report - eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?

Report Overview

Visited public
2025-05-05 18:02:13
Tags
australia government phishing
URL
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Finishing URL
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
IP / ASN
185.219.143.85
#51167 Contabo GmbH
Title
Sign in with myGov - myGov
Phishing - Australian Government

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
eu2.contabostorage.com	unknown	unknown	No data	No data	11 kB	833 kB	185.219.143.84
fonts.gstatic.com	unknown	unknown	No data	No data	1.6 kB	123 kB	142.250.74.35
fonts.googleapis.com	8877	unknown	No data	No data	491 B	34 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/ruxitagentjs_ICA2NVfghjqrux_10253221019152312.js	ScriptElement	258 kB	2023-03-09	2025-05-14
Pretty URL eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/ruxitagentjs_ICA2NVfghjqrux_10253221019152312.js IP 185.219.143.84 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:02 Last Seen2025-05-14 12:35 Times Seen20 Hash c042e0ef1fbd76b702c1cc1a6308a993 c13975492bbbf65dfd0153cc35ae5abfc70ff732 da505e58bfb9de59f6c56ef0f0ceb296d42d3682ea25f8b75620621d8f4cdcb5 Loading...

	eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/login.js	ScriptElement	1.6 kB	2023-03-07	2025-05-14
Pretty URL eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/login.js IP 185.219.143.85 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2025-05-14 12:35 Times Seen227 Hash b370795fcbbe14ef5fe323bdb5501fce f68bc3a5786e9c04d71686ed0876b6e29f670e85 3398bdeeb65157116e93bdeef72d320cb5d90700b149a62f60ff1dcb2ac8f9a5 Loading...

	eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-vendor.js	ScriptElement	152 kB	2023-03-07	2025-05-14
Pretty URL eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-vendor.js IP 185.219.143.85 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2025-05-14 12:35 Times Seen205 Hash 977ee72ff0891a72f5766a357cc78336 3cb5504b13591ce0471b29dec114b94df7420ddb 2bedda083bdbe6820e493159f1e3e27146b96ef6840094bd74447925e8c66e26 Loading...

	eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-application.js	ScriptElement	76 kB	2023-07-10	2025-05-14
Pretty URL eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-application.js IP 185.219.143.85 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-10 06:01 Last Seen2025-05-14 12:35 Times Seen51 Hash d4a04c5e1e9bfa9d69fd8cc581bc4da6 fc7260cd69cdb1c3dea3aa6e5eb1b6544fabd9b0 107af7740499970450ef1475538b290f01f48e863cb6660e272066843582cec8 Loading...

HTTP Transactions (19)

URL IP Response Size

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/ruxitagentjs_ICA2NVfghjqrux_10253221019152312.js

185.219.143.84

200 OK

258 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/ruxitagentjs_ICA2NVfghjqrux_10253221019152312.js
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2009)
Size
258 kB (258135 bytes)
Hash
c042e0ef1fbd76b702c1cc1a6308a993
c13975492bbbf65dfd0153cc35ae5abfc70ff732
da505e58bfb9de59f6c56ef0f0ceb296d42d3682ea25f8b75620621d8f4cdcb5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Australian Government

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/ruxitagentjs_ICA2NVfghjqrux_10253221019152312.js HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/javascript
content-length: 258135
x-ratelimit-remaining-second: 248
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 248
ratelimit-reset: 1
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:49:52 GMT
x-rgw-object-type: Normal
etag: "c042e0ef1fbd76b702c1cc1a6308a993"
x-amz-request-id: tx000007ee35d9906a06545-006804cce6-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/mgv2-application.css

185.219.143.85

200 OK

129 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/mgv2-application.css
IP
185.219.143.85:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (59825)
Size
129 kB (129233 bytes)
Hash
9891bfbd12224aca7b12e4ba5522806e
da1571708e406f2589f4c1cbee3df1f384fdb202
58c6f22e85c4dce659f52d5300ad812066000f225bc34121b2737213f61e4455

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/mgv2-application.css HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/css
content-length: 129233
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 249
ratelimit-reset: 1
x-ratelimit-remaining-second: 249
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:51:37 GMT
x-rgw-object-type: Normal
etag: "9891bfbd12224aca7b12e4ba5522806e"
x-amz-request-id: tx0000033ab0dabf771b003-006814628b-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-vendor.js

185.219.143.85

200 OK

152 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-vendor.js
IP
185.219.143.85:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32058)
Size
152 kB (152015 bytes)
Hash
977ee72ff0891a72f5766a357cc78336
3cb5504b13591ce0471b29dec114b94df7420ddb
2bedda083bdbe6820e493159f1e3e27146b96ef6840094bd74447925e8c66e26

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Australian Government

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-vendor.js HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/javascript
content-length: 152015
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 247
ratelimit-reset: 1
x-ratelimit-remaining-second: 247
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:49:48 GMT
x-rgw-object-type: Normal
etag: "977ee72ff0891a72f5766a357cc78336"
x-amz-request-id: tx00000d863b505127750e4-006804cce7-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu2.contabostorage.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 May 2025 10:03:46 GMT
expires: Fri, 01 May 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 374287
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/favicon-16x16.png

185.219.143.84

200 OK

238 B

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/favicon-16x16.png
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
238 B (238 bytes)
Hash
734603b796e313e6b30c5314cfff7a0d
9ef8bcab45a447a173ba98d4e8af6114c30a1aca
5e70f30259d620e25efa88586a8871d5c94113f0b0d7d6f3e817f585891bf154

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Australian Government

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/favicon-16x16.png HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Cookie: dtCookie=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN; rxVisitor=17464681128819NFJI44BE9EH9492TPG5GOMMRSNGBA1J; dtPC=-28$468112877_558h2vQDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0e0; rxvt=1746469913232|1746468112882; dtLatC=83; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/png
content-length: 238
x-ratelimit-remaining-second: 247
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 247
ratelimit-reset: 1
server: nginx
date: Mon, 05 May 2025 18:01:53 GMT
last-modified: Sat, 19 Apr 2025 22:47:44 GMT
x-rgw-object-type: Normal
etag: "734603b796e313e6b30c5314cfff7a0d"
x-amz-request-id: tx0000005d3e7409e9721c5-006818fd11-13d6131f-eu5
x-proxy-cache: MISS
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN&svrid=-28&flavor=post&vi=QDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0&modifiedSince=1689746966948&rf=https%3A%2F%2Feu2.contabostorage.com%2F0f057bf4d91340d3ae18d5f31372fa7e%3Amygo%2Fnew%2Findex.html%3F_kx%3DLOKa786TK2JuNtVuLRdHAA.TN5mwb&bp=3&app=5f15dc81410a75c1&crc=2653684505&en=gpalpirq&end=1

185.219.143.84

401 Unauthorized

26 B

URL POST
eu2.contabostorage.com/LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN&svrid=-28&flavor=post&vi=QDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0&modifiedSince=1689746966948&rf=https%3A%2F%2Feu2.contabostorage.com%2F0f057bf4d91340d3ae18d5f31372fa7e%3Amygo%2Fnew%2Findex.html%3F_kx%3DLOKa786TK2JuNtVuLRdHAA.TN5mwb&bp=3&app=5f15dc81410a75c1&crc=2653684505&en=gpalpirq&end=1
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
JSON text data
Size
26 B (26 bytes)
Hash
6beba43f75111faeb2f4f15e3063e515
a658c7b65a35dbb258251e04fd160e3dbeae71bc
3e7db788e384631f8a9f299d1797e6f8af6d16d643a1c91f9e83ae15212de45c

HTTP Headers

POST /LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN&svrid=-28&flavor=post&vi=QDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0&modifiedSince=1689746966948&rf=https%3A%2F%2Feu2.contabostorage.com%2F0f057bf4d91340d3ae18d5f31372fa7e%3Amygo%2Fnew%2Findex.html%3F_kx%3DLOKa786TK2JuNtVuLRdHAA.TN5mwb&bp=3&app=5f15dc81410a75c1&crc=2653684505&en=gpalpirq&end=1 HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3071
Origin: https://eu2.contabostorage.com
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Cookie: dtCookie=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN; rxVisitor=17464681128819NFJI44BE9EH9492TPG5GOMMRSNGBA1J; dtPC=-28$468112877_558h-vQDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0e0; rxvt=1746469913232|1746468112882; dtLatC=83; dtSa=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 401 Unauthorized
date: Mon, 05 May 2025 18:01:56 GMT
content-type: application/json; charset=utf-8
content-length: 26
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb

185.219.143.84

200 OK

7.6 kB

URL User Request GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (605), with CRLF line terminators
Size
7.6 kB (7612 bytes)
Hash
71cf3bd470370594cd68b8d128491338
0748b20708ba11f6785cc332360e8461fda0038f
7cddc8985d90f6a7f9729c12ac21920b49567d18037ae5c469f38021f1898543

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
x-ratelimit-remaining-second: 249
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 249
ratelimit-reset: 1
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sun, 20 Apr 2025 10:29:38 GMT
x-rgw-object-type: Normal
etag: W/"71cf3bd470370594cd68b8d128491338"
x-amz-request-id: tx0000027e355a05c884c75-006818f47d-13d6131f-eu5
x-proxy-cache: REVALIDATED
content-encoding: gzip
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/blugov.css

185.219.143.85

200 OK

72 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/blugov.css
IP
185.219.143.85:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (71749 bytes)
Hash
774a184f53b03f66194070c6e40ed39b
233453f789e583e61b87bb90673d544041a2da55
159d50fc7452417f7f8eb52cf1c88b3a4988ae00b60e8b7e30a8cc8f97966503

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/blugov.css HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/css
content-length: 71749
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 248
ratelimit-reset: 1
x-ratelimit-remaining-second: 248
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:51:43 GMT
x-rgw-object-type: Normal
etag: "774a184f53b03f66194070c6e40ed39b"
x-amz-request-id: tx0000092541d965776f2a4-006814628b-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/images/myGov-cobranded-logo-white.svg

185.219.143.84

200 OK

64 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/images/myGov-cobranded-logo-white.svg
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
64 kB (64140 bytes)
Hash
de646b2f77f5fa27d55a01bbb9cf584e
33316eb871adf6e08af7c780eb15872549d08dc3
10b11a7c97b90bcf7ad520ac94c5769d08540ce1ee3b84d487c587bf128e3388

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Australian Government

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/images/myGov-cobranded-logo-white.svg HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/svg+xml
content-length: 64140
x-ratelimit-remaining-second: 247
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 247
ratelimit-reset: 1
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:48:27 GMT
x-rgw-object-type: Normal
etag: "de646b2f77f5fa27d55a01bbb9cf584e"
x-amz-request-id: tx0000012424aac335fee18-006814628b-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/login.js

185.219.143.85

200 OK

1.6 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/login.js
IP
185.219.143.85:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1560), with no line terminators
Size
1.6 kB (1560 bytes)
Hash
b370795fcbbe14ef5fe323bdb5501fce
f68bc3a5786e9c04d71686ed0876b6e29f670e85
3398bdeeb65157116e93bdeef72d320cb5d90700b149a62f60ff1dcb2ac8f9a5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Australian Government

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/login.js HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/javascript
content-length: 1560
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 245
ratelimit-reset: 1
x-ratelimit-remaining-second: 245
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:49:53 GMT
x-rgw-object-type: Normal
etag: "b370795fcbbe14ef5fe323bdb5501fce"
x-amz-request-id: tx00000bcf3ccf4e05d6cd3-006804cce7-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-application.js

185.219.143.85

200 OK

76 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-application.js
IP
185.219.143.85:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
76 kB (76010 bytes)
Hash
d4a04c5e1e9bfa9d69fd8cc581bc4da6
fc7260cd69cdb1c3dea3aa6e5eb1b6544fabd9b0
107af7740499970450ef1475538b290f01f48e863cb6660e272066843582cec8

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/script/mgv2-application.js HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: text/javascript
content-length: 76010
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 246
ratelimit-reset: 1
x-ratelimit-remaining-second: 246
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:49:56 GMT
x-rgw-object-type: Normal
etag: "d4a04c5e1e9bfa9d69fd8cc581bc4da6"
x-amz-request-id: tx00000bf4a4a2a4f700130-006804cce7-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/icons/icon-blugov-info.svg

185.219.143.84

403 Forbidden

228 B

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/icons/icon-blugov-info.svg
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
XML 1.0 document, ASCII text, with no line terminators
Size
228 B (228 bytes)
Hash
3035d67afe309efbe6af52cdda8cd5d6
d28d7b53caaedcbfb2f5c0ba31d4a2eac4994c1c
0e6248ae7503f61948661a80997704b5e1896afc68ff1f5f255972abfa777264

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/icons/icon-blugov-info.svg HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/blugov.css
Cookie: dtCookie=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN; rxVisitor=17464681128819NFJI44BE9EH9492TPG5GOMMRSNGBA1J; dtPC=-28$468112877_558h1vQDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0e0; rxvt=1746469912889|1746468112882; dtLatC=83; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
content-type: application/xml
content-length: 228
x-ratelimit-remaining-second: 249
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 249
ratelimit-reset: 1
server: nginx
date: Mon, 05 May 2025 18:01:53 GMT
x-amz-request-id: tx000002204d0d44c417f78-006818fd11-13d6131f-eu5
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/blugov/M-myGov-Coloured%20Line.svg

185.219.143.84

403 Forbidden

228 B

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/blugov/M-myGov-Coloured%20Line.svg
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
XML 1.0 document, ASCII text, with no line terminators
Size
228 B (228 bytes)
Hash
f9f9d21f6a4258b4de8c1d9d8943484a
bf67640aa8e51567f668eacf961d42703be4f765
5a58602a6b9a520f5505321c4792b7a683aea1f7168224f549da173646745dc0

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/blugov/M-myGov-Coloured%20Line.svg HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Cookie: dtCookie=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN; rxVisitor=17464681128819NFJI44BE9EH9492TPG5GOMMRSNGBA1J; dtPC=-28$468112877_558h1vQDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0e0; rxvt=1746469912889|1746468112882; dtLatC=83; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
content-type: application/xml
content-length: 228
x-ratelimit-remaining-second: 248
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 248
ratelimit-reset: 1
server: nginx
date: Mon, 05 May 2025 18:01:53 GMT
x-amz-request-id: tx00000a971e344c23a7a4b-006818fd11-13d6131f-eu5
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

185.219.143.84

401 Unauthorized

26 B

URL POST
eu2.contabostorage.com/LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN&svrid=-28&flavor=post&vi=QDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0&modifiedSince=1689746966948&rf=https%3A%2F%2Feu2.contabostorage.com%2F0f057bf4d91340d3ae18d5f31372fa7e%3Amygo%2Fnew%2Findex.html%3F_kx%3DLOKa786TK2JuNtVuLRdHAA.TN5mwb&bp=3&app=5f15dc81410a75c1&crc=849334826&en=gpalpirq&end=1
IP
185.219.143.84:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
JSON text data
Size
26 B (26 bytes)
Hash
6beba43f75111faeb2f4f15e3063e515
a658c7b65a35dbb258251e04fd160e3dbeae71bc
3e7db788e384631f8a9f299d1797e6f8af6d16d643a1c91f9e83ae15212de45c

HTTP Headers

POST /LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN&svrid=-28&flavor=post&vi=QDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0&modifiedSince=1689746966948&rf=https%3A%2F%2Feu2.contabostorage.com%2F0f057bf4d91340d3ae18d5f31372fa7e%3Amygo%2Fnew%2Findex.html%3F_kx%3DLOKa786TK2JuNtVuLRdHAA.TN5mwb&bp=3&app=5f15dc81410a75c1&crc=849334826&en=gpalpirq&end=1 HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1347
Origin: https://eu2.contabostorage.com
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Cookie: dtCookie=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN; rxVisitor=17464681128819NFJI44BE9EH9492TPG5GOMMRSNGBA1J; dtPC=-28$468112877_558h-vQDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0e0; rxvt=1746469913232|1746468112882; dtLatC=83; dtSa=-
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 401 Unauthorized
date: Mon, 05 May 2025 18:01:54 GMT
content-type: application/json; charset=utf-8
content-length: 26
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

fonts.googleapis.com/css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap

142.250.74.10

200 OK

34 kB

URL GET
fonts.googleapis.com/css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text, with very long lines (1572)
Size
34 kB (33586 bytes)
Hash
5b5df7e12216a325dfe81de5fc2c51c2
10e600e37ccfa74c6770a5b209e9c788fb8032f8
7152d59c7b6d70aa091ca515e8c9f93032ce69f05df1499ee01dfcab0b5d7b87

HTTP Headers

GET /css?family=Montserrat:200,400,700|Roboto:300,400,500,700,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 May 2025 18:01:52 GMT
date: Mon, 05 May 2025 18:01:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/images/myGov-cobranded-logo-black.svg

185.219.143.85

200 OK

64 kB

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/images/myGov-cobranded-logo-black.svg
IP
185.219.143.85:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
64 kB (64143 bytes)
Hash
b53f20300babca4ebb422e59b888be1f
699c5898c6dd9d2b8b949db2e13c8f0b0d29e26b
954aa858b3bffb8511bc41bc88b07d2b24597c37faf522550e26c9aa3b0d220d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Australian Government

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/images/myGov-cobranded-logo-black.svg HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
content-type: image/svg+xml
content-length: 64143
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 244
ratelimit-reset: 1
x-ratelimit-remaining-second: 244
server: nginx
date: Mon, 05 May 2025 18:01:52 GMT
last-modified: Sat, 19 Apr 2025 22:48:26 GMT
x-rgw-object-type: Normal
etag: "b53f20300babca4ebb422e59b888be1f"
x-amz-request-id: tx00000ada182b65695eb8b-006814628b-13d6131f-eu5
x-proxy-cache: HIT
accept-ranges: bytes
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/icons/icon-external-link.svg

185.219.143.85

403 Forbidden

228 B

URL GET
eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/icons/icon-external-link.svg
IP
185.219.143.85:443
ASN
#51167 Contabo GmbH

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerZeroSSL
Subjectcontabostorage.com
Fingerprint29:21:AE:CF:00:FB:92:56:DD:A9:29:C8:A7:EE:F9:1A:1D:3C:B8:0E
ValidityThu, 24 Apr 2025 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
XML 1.0 document, ASCII text, with no line terminators
Size
228 B (228 bytes)
Hash
e4385c7e06f02096c958b8e1df65ecaf
a8cdd165d94b47af9aabe3a85328e28f76ce509f
484921050cbb3ef5eaebd8f5862e20ada40e767da00cf3d32004e6c14bb8fc1a

HTTP Headers

GET /0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/icons/icon-external-link.svg HTTP/1.1
Host: eu2.contabostorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/stylesheet/mgv2-application.css
Cookie: dtCookie=v_4_srv_-2D28_sn_ELOHR98APH6URP79SE3OTF1NLPJ79VMN; rxVisitor=17464681128819NFJI44BE9EH9492TPG5GOMMRSNGBA1J; dtPC=-28$468112877_558h1vQDUKPRLUWRCURBHWCOUHNOMOAQFJQJVC-0e0; rxvt=1746469912889|1746468112882; dtLatC=83; dtSa=-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
content-type: application/xml
content-length: 228
x-ratelimit-limit-second: 250
ratelimit-limit: 250
ratelimit-remaining: 249
ratelimit-reset: 1
x-ratelimit-remaining-second: 249
server: nginx
date: Mon, 05 May 2025 18:01:53 GMT
x-amz-request-id: tx000000384d7ae7ec4e933-006818fd11-13d6131f-eu5
access-control-allow-origin: *
strict-transport-security: max-age=16000000; includeSubDomains; preload;

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu2.contabostorage.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 May 2025 10:03:46 GMT
expires: Fri, 01 May 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 374287
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://eu2.contabostorage.com/0f057bf4d91340d3ae18d5f31372fa7e:mygo/new/index.html?_kx=LOKa786TK2JuNtVuLRdHAA.TN5mwb
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu2.contabostorage.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 May 2025 10:03:46 GMT
expires: Fri, 01 May 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 374287
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (19)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET