| office-outlook.pages.dev/static/media/bg.631a63e5ef883a76fda3.jpg | 188.114.96.1 | 200 OK | 42 kB |
URL GET HTTP/3office-outlook.pages.dev/static/media/bg.631a63e5ef883a76fda3.jpg IP188.114.96.1:443
Requested byhttps://office-outlook.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:08:31 21:49:19], progressive, precision 8, 1366x768, components 3 Hash4860b3f5c2527b01beb37df985da7005 cbc935483ba7350a1f99e43eb4a6e5f04fdb1500 e61d76a5ce6532cc01241cdb4028157ed3c5f3a3d45cb0f0e01f3a961d3a7c01
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /static/media/bg.631a63e5ef883a76fda3.jpg HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office-outlook.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:00:54 GMT
content-type: image/jpeg
content-length: 42147
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a2d244332dc9f7fd57744114cb0a7dff"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ddNU8RP63WNK67wJybatGXtsB%2BEW1fG7jEDHFiCtPF9cXHp7eESepUq8YAKTOGV3sxb1Yq%2BfIKKS05TUEZxrvwoVbTmsMln%2BUopfPKZWabNcvSck9cR8HxQxNk1jjJXd2bzogaEv91SmiKA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8769fd86eafc56b1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| office-outlook.pages.dev/logo192.png | 188.114.96.1 | 200 OK | 17 kB |
URL GET HTTP/3office-outlook.pages.dev/logo192.png IP188.114.96.1:443
Requested byhttps://office-outlook.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /logo192.png HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office-outlook.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:00:54 GMT
content-type: image/png
content-length: 17174
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "8d1e833ac70432107335619ff01ccff9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ltgOXv3%2FHFEschMF8Fc%2BbZOK9aBbgcC8HcT8dkSVxneWBe%2BRp%2BT4%2BeYQiutPIDaPye9ri74oI328FmbZsxNPYtUCrbWGiShGN1BgDKvXimW5DJJeg6v7PUhT63U4mFPkeZjcx1ZUKXARSo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8769fd872b1856b1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| office-outlook.pages.dev/favicon.ico | 188.114.96.1 | 200 OK | 17 kB |
URL GET HTTP/3office-outlook.pages.dev/favicon.ico IP188.114.96.1:443
Requested byhttps://office-outlook.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /favicon.ico HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office-outlook.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:00:54 GMT
content-type: image/vnd.microsoft.icon
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b52ae8d8fe9d158bb668e6c4d9c14505"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b6%2BfBwruECLNemfkSpG5QRnVpcusdwGyjDmsynr8exvdjARUOj%2B4ku7yVR6sPW2KbhHYxOzN53cqMR3RR3ttRuFjQ9KFJGFAk4K5SYeDPb%2BhwmnAfFDGp4XldtDsnlzqqjozY5CihqeAmEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8769fd872b1956b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| office-outlook.pages.dev/ | 188.114.96.1 | 200 OK | 642 B |
URL User Request GET HTTP/2office-outlook.pages.dev/ IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
File typeHTML document, ASCII text, with very long lines (680), with no line terminators Hash9fd0ba9e7b395d38e8b46c3e0c69abb6 58f23171d554b153914978e8cdd7dec1df2ae526 9ebe1a57cf6bd8e0795fb09cd795de7ff1dedd390dc802f9826a1068064f535e
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET / HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 04:00:54 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f1dabd909cdc6b36d1fa9062cc4f8367"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1WqC80U2LwUjlDb35iKemlAIPLnsacGvUIv3FLYWTsvsOdhvAxp%2BTJAkxakhiCKRYDGVROp9QXwL2ttjiGIqHU4XIfrWmymKczhm%2BnZaXnNzFtCN9yyagKQLgBP5io7%2BYM5ZyTN1%2BiZOc5I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8769fd843c4c56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| office-outlook.pages.dev/static/js/main.4c46b03a.js | 188.114.96.1 | 200 OK | 206 kB |
URL GET HTTP/3office-outlook.pages.dev/static/js/main.4c46b03a.js IP188.114.96.1:443
Requested byhttps://office-outlook.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
File typeJavaScript source, ASCII text, with very long lines (65465) Size206 kB (206530 bytes) Hash576c1550657abd7b2d0b67ebcfbc9379 3007dad679b990f9bbfe7bae03431ac5c75b939a 8ce1f8a5440ffbccf21f54f8ae0e722802fe7e070187df8ef46e2316ad3c7d5e
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Suspicious Javascript code | OpenPhish | phishing | Outlook |
GET /static/js/main.4c46b03a.js HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office-outlook.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:00:54 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"99d9dcc61f49e0c3590903e3a9ac0e74"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R5sLTxKSuDkGGVwDGKElmrU1qc52JbijjOQSuzsAwo7VNrNEMVVZl3akHOqblED2ga%2FMwaDTwA6vOcZpCtaJfYeBxrCTdDR9QSYa9guG%2BVXmR3XlNZjP79P%2B7kSIiTBwphodSf9YlG9yyW4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8769fd862a9e56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| office-outlook.pages.dev/static/css/main.b8fb084f.css | 188.114.96.1 | 200 OK | 1.7 kB |
URL GET HTTP/3office-outlook.pages.dev/static/css/main.b8fb084f.css IP188.114.96.1:443
Requested byhttps://office-outlook.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
File typeASCII text, with very long lines (1693), with no line terminators Hashf38c27cb32faa96ccc688cebae81d517 ec83cc15c71356dd356488f44c5887927f983215 9461207333e3c65b76b2604745756d88c03b0fdc46164cd7d1340d2ad16a6b81
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /static/css/main.b8fb084f.css HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office-outlook.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:00:54 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5df9d213d4e363cdf8f6fcefdbadc545"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4MJbupYESofDrRHf4hu4JMz9YDawP6UQNrABBgjz4L9jX7oyaNRlUCYBPvpsJDb0h%2B%2BZNAW%2FZ%2B9THlJDo9b0pERkqIa3hG1DLaN1vCF3CuB6QHmwzJl0zR99AVBGqEto%2B6L0w9bcbny8Yqk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8769fd863a9f56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| office-outlook.pages.dev/static/media/microsoft_logo.564db913a7fa0ca42727161c6d031bef.svg | 0.0.0.0 | | 0 B |
URL GET office-outlook.pages.dev/static/media/microsoft_logo.564db913a7fa0ca42727161c6d031bef.svg IP0.0.0.0:0
Requested byhttps://office-outlook.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /static/media/microsoft_logo.564db913a7fa0ca42727161c6d031bef.svg HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office-outlook.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| office-outlook.pages.dev/static/media/microsoft_logo.564db913a7fa0ca42727161c6d031bef.svg | 188.114.96.1 | 200 OK | 3.7 kB |
URL GET HTTP/3office-outlook.pages.dev/static/media/microsoft_logo.564db913a7fa0ca42727161c6d031bef.svg IP188.114.96.1:443
Requested byhttps://office-outlook.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectoffice-outlook.pages.dev Fingerprint24:7A:20:E9:B9:B0:B6:80:DF:49:1F:A0:03:97:2B:A6:18:91:F8:C0 ValidityThu, 18 Apr 2024 17:16:55 GMT - Wed, 17 Jul 2024 17:16:54 GMT
File typeSVG Scalable Vector Graphics image Hashd633a913e6f3b1f45774b9874dfc85e0 5ba1344048578062c93cfddfdf8458477eaca476 c1fbfbd9a81fc4d9c9539a65bdfb4c6738926b8d4681b0346706196413e92714
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /static/media/microsoft_logo.564db913a7fa0ca42727161c6d031bef.svg HTTP/1.1
Host: office-outlook.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office-outlook.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:00:54 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b4d7a556445aa167d4959571a81c93db"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6iXFS47lTd9cQp4gDbipDm1zSB0GA6RKnOgYAGzgyUnoCdpRrjY5USeYfyIT8tJmiHLB%2FxLAzDNP%2BJEkSkxme0Tx4fSnqF98NsEBVBJOK6Nh%2Fkq8prNNC3QkCupOYhIod4dTLx8MWYsAaW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8769fd86eafb56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|