| anz-myconnect.com/files/img/anz-logo.1.0.0.svg | 104.21.44.193 | 200 OK | 64 kB |
URL GET HTTP/3anz-myconnect.com/files/img/anz-logo.1.0.0.svg IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeSVG Scalable Vector Graphics image Hash6ca9d74f9b6b17e8cd97f078fc5d5264 3f9f38eccac3fe8434a9fe6e74674b39be57143a 1becd8c3954398ac0c038c0003da7c0a2dc51a2cef16f9d9bbfcbea93fb459c9
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/img/anz-logo.1.0.0.svg HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:14 GMT
content-type: image/svg+xml
last-modified: Mon, 06 May 2024 13:30:22 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gv1MUxNalsrQtBMSLJDRn6iMgNU%2FgQD42md3cNmGXevj6i%2F4sMnq2Zmj98OY8APVYSAt%2Bs2LZrzfN%2FQWe4JMPtjSGkiV1a3Sz5xdIBunzQmdOKuqP50Iv2yMHs9xWW4cn8TvTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aaf377f2056b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/js/clientStatus.js | 104.21.44.193 | 200 OK | 63 kB |
URL GET HTTP/3anz-myconnect.com/files/js/clientStatus.js IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
Hashcf74f2a0fe145c80d4b2b284a76c2d61 567890515298391bf79228237e92bd2180e52bf5 70b94b7d45c64d68c378083f4b7feb5b8b2b0d107a2775fbb9813e3ddadb85f2
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/js/clientStatus.js HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:14 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 13:30:21 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MZmWOsUVbtIdZANt8UNaVf%2F3wpdxrvgqSVQ%2FdAAQgOJVOM%2FKnnJ9%2FTaliL17HqRSsQQlVTtZn8AU6fExewk%2F9AdnGAxKc6A2J4j5Dc3N9pgXCo2pKjMGE%2BS8e9buABUW4Tp5Jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880aaf377eff56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/css/anz.css | 104.21.44.193 | | 14 kB |
URL anz-myconnect.com/files/css/anz.css IP104.21.44.193:0
CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeASCII text, with very long lines (344) Hashd1c6e0db697d10d8e3828dc0036a3da1 6bd98e2927b0f75da16870451a4c32bbf37bac07 109af90847986a8f690aee79c748a222f2b04fb9083dfc2bc8b6814344c1b781
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/css/anz.css HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:14 GMT
content-type: text/css
last-modified: Mon, 06 May 2024 13:30:22 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pZzEBOq5iH4PrW14siqxfEJmgqerwLAJAmDJYrV5sdyxJhJVcgeEAR3h9gu5JqE%2FpTOCSDy3RRsb0xHN2wI94ssNpowx6%2FiLkXq%2BTFHUAkfHkhRvYNqbxqz1HAIX0T%2Frl3jY8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880aaf377f1b56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/js/jquery.js | 104.21.44.193 | 200 OK | 88 kB |
URL GET HTTP/3anz-myconnect.com/files/js/jquery.js IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashac13f1827dee5a019a8be10299ba8053 c53344ce70a37981f58fab50761caa7dc51d874b 6ae7b5c5ea7a25e7ef6981689572c282667d8782312c703a6593424b34ad4cf9
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/js/jquery.js HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:14 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 13:30:21 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lNtXuays95JipQ7l6PuskxxgdaRL2ImMvs1INrGSxRWYEB6BQIF9BGttvKAAOEE7H%2Fe0V%2Bf%2B0b54KVeL7GLJcaQDJX3wTcG4miXi%2BLBy4h28dXM3P7HmDSArGMDIOpCLY3bdvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880aaf376eec56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/intl/favicon.ico | 104.21.44.193 | 404 Not Found | 9.9 kB |
URL GET HTTP/3anz-myconnect.com/intl/favicon.ico IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /intl/favicon.ico HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:04:16 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O%2B9wDl8iYehAnE%2Fvp8JW6u4%2BPl3oUlhq5ryx8OtDWpB7%2By9F5BDPoKvnU1C7iGrlXLySgyvT52mpf63sBRuCSPJ7%2F934UedUHtJ4rlzIiGiW%2BTVW4JcS1An74XARmwFUyYzG%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aaf3a9bdd56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/intl/secure.php | 104.21.44.193 | 200 OK | 15 kB |
URL User Request GET HTTP/3anz-myconnect.com/intl/secure.php IP104.21.44.193:443
CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /intl/secure.php HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:14 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R%2F0Z3bvt9uJjLs3yT1cwOobMFFeqrxfgAGHi%2BqHh3rvLDy71sWA25L%2FjhVmFae88iyPIVjq0fDVIo6v2oqbEHjDftV6pchXTOTPAYVVIsI0ThhHqlwfIHi8iD2N7K9BnbDdZiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880aaf33c80e56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/js/login.js | 104.21.44.193 | 200 OK | 722 B |
URL GET HTTP/3anz-myconnect.com/files/js/login.js IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeJavaScript source, ASCII text, with very long lines (758), with no line terminators Hashbf8780a7a6f8865bd2246f348696b7f2 a7b1f71ae71ec4f92b7b33cafa9517070d511ec1 4b8d3490495f60b7d1bda7a55b09ccf00506a66e17bead63362eb27df7372dcd
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/js/login.js HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:14 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 13:30:21 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0l53MXvIyYtx%2F8RWj%2BRbAon98SrB4DDeFmntNQAqKBjxlneSanKeZCd%2B5xNsEyjWY2O81p6sJC7GARF5HmmNx6p44nKOGL%2FMYhE6F3y2TigiarTGYcpXlhJXPdj6q1tC8559uA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880aaf378f2256b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/img/ib-login-support.1.0.0.svg | 104.21.44.193 | 200 OK | 11 kB |
URL GET HTTP/3anz-myconnect.com/files/img/ib-login-support.1.0.0.svg IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeSVG Scalable Vector Graphics image Hash7161e4c581f1ab3712186d8482ad712e 407c7f0ba6ff7a0957af9f7e208ac4592e6a2db8 0f2f421d03f0dd094f5eeea11c1b78898bb8c38cdc6a9859627617bbb4db363e
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/img/ib-login-support.1.0.0.svg HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:14 GMT
content-type: image/svg+xml
last-modified: Mon, 06 May 2024 13:30:22 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hUV0ilbJ9XCupfUXrZs1uGw1J3dXcb8Vu9Iaqks4ZwbUAEq4xJNlXnhoM3mqiovXZptBWjzCmE1tiP9LqqLxL4UsSvt1n38mQUGavGvCasIhJisms38kdTfBmGICg9BbBSo4xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aaf378f2856b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/fonts/MYRIADPRO-SEMIBOLD.woff | 104.21.44.193 | 200 OK | 62 kB |
URL GET HTTP/3anz-myconnect.com/files/fonts/MYRIADPRO-SEMIBOLD.woff IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeWeb Open Font Format, CFF, length 62448, version 0.0 Hash6fd5c55d90e96c8af1041794ab70f5f2 be1da7322f84fd756f8437d32500bee9b5877dd7 8f6b883d93b2767c0d04efeeeb65ac92a170c1d966fefc635586d233e5f318cc
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/fonts/MYRIADPRO-SEMIBOLD.woff HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/files/css/anz.css
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:16 GMT
content-type: font/woff
content-length: 62448
last-modified: Mon, 06 May 2024 13:30:20 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UNJHMGaUlcgdn%2FYVSFnSaUzXDYq6r5BjVObHn7TL3V3IdD9leZJtJxG2Scs2ukpba4l%2FFOI82UWwA%2Bi%2BcJOealUVfUd2dOaNaoyN%2Bmh3dScdn9tXh4%2BeQ%2ByWRwCON6UwRCqsGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aaf39197a56b4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.44.193 | 302 Found | 15 kB |
URL User Request GET HTTP/3IP104.21.44.193:443
CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET / HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 08 May 2024 16:04:13 GMT
content-type: text/html; charset=UTF-8
location: intl/secure.php
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: allowed=1; expires=Wed, 08-May-2024 16:24:13 GMT; Max-Age=1200; path=/
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DikjqJuXMp1BDpf2OnNTR1yR2uk3Y0%2BgE5vW6NbuoCbEw9Me0H9m3HApKQkqWKVRIGgSaCbYf0%2BgUt%2FjDy6LXvzSBByt5ZNho3rNMSBupWi9UXhCH032JK6iOcvSHJgQihShlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880aaf27af6256b4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/fonts/myriadpro-regular.woff | 104.21.44.193 | 200 OK | 62 kB |
URL GET HTTP/3anz-myconnect.com/files/fonts/myriadpro-regular.woff IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
File typeWeb Open Font Format, CFF, length 61848, version 0.0 Hash39338481a9b2c3753b61115062caf9b4 de5b33c5a516a7be6551fdba73e1f2715b98db2f 19b0448c23352d3e85e3f42e9a157a40242b0a36d907e078f7e82d1b8c8c1f8f
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/fonts/myriadpro-regular.woff HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/files/css/anz.css
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:15 GMT
content-type: font/woff
content-length: 61848
last-modified: Mon, 06 May 2024 13:30:20 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DyxCupE6ZKDdhcA6ROT5JuAkkjRb4Ql6%2BaUtGrgFUGwL%2FZi3hF8cJ1ZLbZ9lK9iCoFKCza3GSgoWWNGdTa5hxDmy%2FtJz9NyMae3y3dI87GrxpRvliCei2epVQrDtWmojjh6w%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aaf38d90b56b4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| anz-myconnect.com/files/incl/action.php?type=clientStatus | 104.21.44.193 | 200 OK | 0 B |
URL GET HTTP/3anz-myconnect.com/files/incl/action.php?type=clientStatus IP104.21.44.193:443
Requested byhttps://anz-myconnect.com/intl/secure.php CertificateIssuerGoogle Trust Services LLC Subjectanz-myconnect.com Fingerprint04:12:07:28:92:F0:6E:FD:0E:D6:48:9C:80:37:9D:D1:4C:B2:E9:80 ValidityWed, 08 May 2024 05:53:43 GMT - Tue, 06 Aug 2024 05:53:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Australia and New Zealand Banking Group |
GET /files/incl/action.php?type=clientStatus HTTP/1.1
Host: anz-myconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://anz-myconnect.com/intl/secure.php
Cookie: PHPSESSID=lek44d390viliktt2pk338tdef; allowed=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:04:17 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
sec-fetch-site: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZMH08XOjixFwzXp6SK2zkwCSuS4PoyQJfDs5J%2BoDXddE4TW62XnWL9nI8v193%2BEsLEbw%2BNt9wDh21IMxYzh09HmBOXyl8H3FGDjGQKBBeZRxzFL8lTJ1F2c2ta7QZtE6dB%2BkUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880aaf4b6b4b56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|