Report - anz-myconnect.com/intl/secure.php

Report Overview

Submitted URL
anz-myconnect.com/intl/secure.php
IP
104.21.44.193
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 16:05:38
Access
public
Website Title
Login - ANZ Internet Banking
Final URL
anz-myconnect.com/intl/secure.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
anz-myconnect.com	unknown	unknown	No data	No data	6.2 kB	468 kB	104.21.44.193

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/intl/secure.php	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group
2024-05-08	medium	anz-myconnect.com/	Australia and New Zealand Banking Group

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	anz-myconnect.com/files/js/jquery.js	273 kB	2024-05-08	2024-05-08
Pretty URL anz-myconnect.com/files/js/jquery.js IP 104.21.44.193 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 11:43:31 Last Seen2024-05-08 18:06:44 Times Seen29 Hash ac13f1827dee5a019a8be10299ba8053 c53344ce70a37981f58fab50761caa7dc51d874b 6ae7b5c5ea7a25e7ef6981689572c282667d8782312c703a6593424b34ad4cf9 Loading...

	anz-myconnect.com/files/js/clientStatus.js	397 B	2023-07-19	2024-05-19
Pretty URL anz-myconnect.com/files/js/clientStatus.js IP 104.21.44.193 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-19 18:08:10 Last Seen2024-05-19 09:11:56 Times Seen1334 Hash cf74f2a0fe145c80d4b2b284a76c2d61 567890515298391bf79228237e92bd2180e52bf5 70b94b7d45c64d68c378083f4b7feb5b8b2b0d107a2775fbb9813e3ddadb85f2 Loading...

	anz-myconnect.com/files/js/login.js	722 B	2024-05-08	2024-05-08
Pretty URL anz-myconnect.com/files/js/login.js IP 104.21.44.193 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 11:43:31 Last Seen2024-05-08 18:06:44 Times Seen22 Hash c94824c5baa1be08822cc9e17eb2aadd 929c8221bdad74dab044413fb16ce6073061e810 a047df9f46910c8b81f1322e3870d4ba20ed15bd76786aa7a921082f8625f9ca Loading...

HTTP Transactions (12)

URL IP Response Size

anz-myconnect.com/files/fonts/myriadpro-regular.woff

104.21.44.193

200 OK

62 kB

URL GET HTTP/3
anz-myconnect.com/files/fonts/myriadpro-regular.woff
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
Web Open Font Format, CFF, length 61848, version 0.0
Size
62 kB (61848 bytes)
Hash
39338481a9b2c3753b61115062caf9b4
de5b33c5a516a7be6551fdba73e1f2715b98db2f
19b0448c23352d3e85e3f42e9a157a40242b0a36d907e078f7e82d1b8c8c1f8f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/fonts/myriadpro-regular.woff HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/files/css/anz.css
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: font/woff
content-length: 61848
last-modified: Mon, 06 May 2024 13:30:20 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 60
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c8BG6b12HmdC5lzXET34MhwSOdlq%2BU4iEFAX%2BBI5lrKNPLe9T7z7jkpfcEjEDM1GAXa1hkAp1uDagw%2BLzb%2BzeaQ%2Fddt5PK%2BqdsISO3IWnxajkZMndg2%2B112tQf5pSIt8kEVklg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab0b1dd8db4f4-OSL
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/files/css/anz.css

104.21.44.193

200 OK

14 kB

URL GET HTTP/3
anz-myconnect.com/files/css/anz.css
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
ASCII text, with very long lines (344)
Size
14 kB (13622 bytes)
Hash
d1c6e0db697d10d8e3828dc0036a3da1
6bd98e2927b0f75da16870451a4c32bbf37bac07
109af90847986a8f690aee79c748a222f2b04fb9083dfc2bc8b6814344c1b781

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/css/anz.css HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: text/css
last-modified: Mon, 06 May 2024 13:30:22 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 61
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gray7kbMYaQk7aWOxP7n8d3ETk1r9jjNUh4towH%2BDJPEo%2BRJwZnneqFixtf1rvy2ZysCp%2FIuKc2ZYnEAmbV5oFCcoypJG2Ed9OD%2BOqGwKc9Emq8%2FDHXrnErUSZcaeVG6s3e%2BSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880ab0b10c63b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/files/fonts/MYRIADPRO-SEMIBOLD.woff

104.21.44.193

200 OK

62 kB

URL GET HTTP/3
anz-myconnect.com/files/fonts/MYRIADPRO-SEMIBOLD.woff
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
Web Open Font Format, CFF, length 62448, version 0.0
Size
62 kB (62448 bytes)
Hash
6fd5c55d90e96c8af1041794ab70f5f2
be1da7322f84fd756f8437d32500bee9b5877dd7
8f6b883d93b2767c0d04efeeeb65ac92a170c1d966fefc635586d233e5f318cc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/fonts/MYRIADPRO-SEMIBOLD.woff HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/files/css/anz.css
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: font/woff
content-length: 62448
last-modified: Mon, 06 May 2024 13:30:20 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 59
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XXFfcCqKnpt1kGhmaM%2BxYfTLdEUyDqzgFVt90oo4l7MssLAQEsxiA5aWEtHKCK0skQs8ALd%2BfOAGF0ElQT95C%2B0ERIcuDyc3AzHScP6P0aPDp18F9JtBFWWrVzqpj6QlNo%2F%2Flg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab0b20dd1b4f4-OSL
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/files/img/anz-logo.1.0.0.svg

104.21.44.193

200 OK

8.5 kB

URL GET HTTP/3
anz-myconnect.com/files/img/anz-logo.1.0.0.svg
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
SVG Scalable Vector Graphics image
Size
8.5 kB (8451 bytes)
Hash
6ca9d74f9b6b17e8cd97f078fc5d5264
3f9f38eccac3fe8434a9fe6e74674b39be57143a
1becd8c3954398ac0c038c0003da7c0a2dc51a2cef16f9d9bbfcbea93fb459c9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/img/anz-logo.1.0.0.svg HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: image/svg+xml
last-modified: Mon, 06 May 2024 13:30:22 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 61
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lHY9g16mRALobfQcsdUYikRwRJZabtRivF%2FnFz0WjmaUFXHEezhYuiTIlJ3gEJnhQ453DPCZP4LFwdnI%2FiuNxKroBAPoQAJ0%2F%2FEhmViQM4r5ltRxJ6mj4Oumpsad5MAEzHh3%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab0b10c76b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/files/img/ib-login-support.1.0.0.svg

104.21.44.193

200 OK

10 kB

URL GET HTTP/3
anz-myconnect.com/files/img/ib-login-support.1.0.0.svg
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
SVG Scalable Vector Graphics image
Size
10 kB (10336 bytes)
Hash
7161e4c581f1ab3712186d8482ad712e
407c7f0ba6ff7a0957af9f7e208ac4592e6a2db8
0f2f421d03f0dd094f5eeea11c1b78898bb8c38cdc6a9859627617bbb4db363e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/img/ib-login-support.1.0.0.svg HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: image/svg+xml
last-modified: Mon, 06 May 2024 13:30:22 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 61
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B8gew7TXa3Dcq5iNk5VhLdHl5scGuRR18BZw%2BGKdZeSZu%2BMTsf%2B4E8211NWec4vquH5TNSnTeWqDmIjm09kvhfXVQZVaRSlTjLTD0bqYxYQF%2BmA592yxZl7RUA5YQ%2Fru1yyejw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab0b11c80b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/intl/secure.php

104.21.44.193

302 Found

7.4 kB

URL User Request GET HTTP/2
anz-myconnect.com/intl/secure.php
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
data
Size
7.4 kB (7370 bytes)
Hash
a5e19a0f9bd2546072180af7f7e27f30
264d53b65987153def49036f1f2a5a70dc91ed92
ed11fd8667f7d9700f7adcd01990d3bdbf441879b15bb52cef0711dfd1d1d934

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /intl/secure.php HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 08 May 2024 16:05:13 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: //anz-myconnect.com/
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EgdbzzbgTvb4%2B5wKRTB4H4WnxyimxZ%2BnbuSe%2F7hNNP4xxvJIHiAl9IPeIbsHBHdqojvcnNqVK%2BNMISYOprZ8S9PqtEn1bzAMFUtUhEG4bchuOUu%2BqWctTrEq%2B3oDlssjPWVTAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880ab0a47a5c5689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

anz-myconnect.com/intl/favicon.ico

104.21.44.193

404 Not Found

5.6 kB

URL GET HTTP/3
anz-myconnect.com/intl/favicon.ico
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
HTML document, ASCII text
Size
5.6 kB (5572 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /intl/favicon.ico HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:05:15 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 59
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rNqo1Kj607%2FBuGhVqbqDUkHT7tADkgbxKJ4ovwnOmnuyPWagRwI2FNqHnMAWB8vtg2mYrXuANmMGh1OlQtOubvnuUlmdOwY%2Bg60BJtglMpmxe1Y8ZM%2Fe427IqD%2BjLMr6tMXakg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ab0b24e2ab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/

104.21.44.193

302 Found

15 kB

URL User Request GET HTTP/2
anz-myconnect.com/
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type

Size
15 kB (14911 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET / HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 08 May 2024 16:05:14 GMT
content-type: text/html; charset=UTF-8
location: intl/secure.php
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: allowed=1; expires=Wed, 08-May-2024 16:25:14 GMT; Max-Age=1200; path=/
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z4%2BUtCAAhtNX%2FKrBycLbfeEts9wF9Vda82QlTLc2Cjdi1f1Gys%2BfepM3mc1JKHCVgqbBiPZi2EPCbHkvCi9CVBeFhDJ%2B83MyOsRJPJpQyMAYMcTI29FhmbfKIUVAgPMEL2tPmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880ab0a5ec8d5689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

anz-myconnect.com/files/js/jquery.js

104.21.44.193

200 OK

273 kB

URL GET HTTP/3
anz-myconnect.com/files/js/jquery.js
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
273 kB (272615 bytes)
Hash
ac13f1827dee5a019a8be10299ba8053
c53344ce70a37981f58fab50761caa7dc51d874b
6ae7b5c5ea7a25e7ef6981689572c282667d8782312c703a6593424b34ad4cf9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/js/jquery.js HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 13:30:21 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 61
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GT8uU%2BxDklgvbLRaCdoDu4a2Dw5xCcoZA1DI6WEv8tSagWsQfLt1WHgHOzQjeRrM2%2BlCLQZ3LAwwe5nSN3B21Y3fVo8mzn%2BWv5NbWCNzDGZhLKSxcP9TzcEgQAARAcGs2%2FsgAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880ab0b10c51b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/files/js/login.js

104.21.44.193

200 OK

722 B

URL GET HTTP/3
anz-myconnect.com/files/js/login.js
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
JavaScript source, ASCII text, with very long lines (758), with no line terminators
Size
722 B (722 bytes)
Hash
bf8780a7a6f8865bd2246f348696b7f2
a7b1f71ae71ec4f92b7b33cafa9517070d511ec1
4b8d3490495f60b7d1bda7a55b09ccf00506a66e17bead63362eb27df7372dcd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/js/login.js HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 13:30:21 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 61
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ijP%2F112lqvko2uDikruHHjOz2d8lvFYeL1n8OMGUhZ0s%2BDjKdkgscFhFxdm5x%2FrWerj7zec6ZlcoYQtYeRJAnGOihmSWTc%2FByoSkZaZSPIIU2Yt8VGr9getFUqDXsToWCk7pUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880ab0b11c7ab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/files/incl/action.php?type=clientStatus

104.21.44.193

200 OK

0 B

URL GET HTTP/3
anz-myconnect.com/files/incl/action.php?type=clientStatus
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/incl/action.php?type=clientStatus HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:18 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NFnhX2igG9YD5%2Fo2uh8bGjpHRWYuxzf4kX073HKDhk8uF7OUOds4uVe65ZwoUN%2Bd7l%2Bh59j88Z7cALyH9kEAOqRqTHSodyrzzi7fPjZ6a6NHqoKSdniJvr96VVMf%2BvFyvQoDbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880ab0c4793fb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

anz-myconnect.com/files/js/clientStatus.js

104.21.44.193

200 OK

397 B

URL GET HTTP/3
anz-myconnect.com/files/js/clientStatus.js
IP
104.21.44.193:443
ASN
#13335 CLOUDFLARENET

Requested by
https://anz-myconnect.com/intl/secure.php
Certificate
IssuerGoogle Trust Services LLC
Subjectanz-myconnect.com
Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80
ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT

File type
ASCII text, with very long lines (413), with no line terminators
Size
397 B (397 bytes)
Hash
eb47d18525565b0e30f12ed5b2884d2d
0a302c27abb001dffda3a284bf2d08a8c7b50a23
ca7c77aa3f00071673ad0fec0585b9690d746e9b685bfe5bec054e784aa75b36

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Australia and New Zealand Banking Group

HTTP Headers

GET /files/js/clientStatus.js HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=akqk4n1ac4lm15q92d0auirn5d; allowed=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:05:15 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 13:30:21 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: HIT
age: 61
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aIT3ufU38ZH2J9OC%2FSqckoiqvLwhLHQpwMKgyJ4ErL0CytM3oz5BoBgSdohLHBmWSPlVzOBIxthFNrpRZn6pNRXG6A82TyRhZguO1Ur%2Fo0JThTu8Qzj5Y9oOipYcRyVviyt4vw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880ab0b10c5ab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP