| dashboard-loginweb.com/truist/login.php?online_id=377e29a27c4e8d2c3915129b8login_id=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1&session=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1 | 172.67.133.218 | | 167 B |
URL dashboard-loginweb.com/truist/login.php?online_id=377e29a27c4e8d2c3915129b8login_id=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1&session=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1 IP172.67.133.218:0
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /truist/login.php?online_id=377e29a27c4e8d2c3915129b8login_id=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1&session=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1 HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; 4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 18 May 2024 10:27:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 18 May 2024 11:27:31 GMT
Location: https://dashboard-loginweb.com/truist/login.php?online_id=377e29a27c4e8d2c3915129b8login_id=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1&session=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zBDhUzvhLJgohS1qBsZkB4QLYfYQD4JAcCTQaGbfrIXoy4aVduni0L2lmndXQfvgtJ6oEmjSpvGw2go9tRDCXp7mOYKZ86bGmT0vKTR3Ck23vqW%2BXde8moklPoF69SEZvGzFvNW58M9y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 885b27b8ecf556ae-OSL
alt-svc: h2=":443"; ma=60
|
| dashboard-loginweb.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.133.218 | | 0 B |
URL dashboard-loginweb.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.133.218:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; 4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 18 May 2024 10:27:31 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/695da7821231/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h%2FuzdpNdv32yaCWMdjnnT1wd2X6QN9ussw7%2B4dN83PWkhzqKiUsSBlZuD7W7lvgEUfq7Xsos%2BL1gJCQgP%2Bb6SQjt4J7vxkXJEiKkkJKgMJW3PSR6OrvtOVNNQjeKfA%2F0npP76Xj8NMUG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 885b27b9ee4556bd-OSL
alt-svc: h3=":443"; ma=86400
|
| dashboard-loginweb.com/cdn-cgi/challenge-platform/h/b/jsd/r/885b27b90db9b518 | 172.67.133.218 | | 0 B |
URL dashboard-loginweb.com/cdn-cgi/challenge-platform/h/b/jsd/r/885b27b90db9b518 IP172.67.133.218:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/885b27b90db9b518 HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12399
Origin: https://dashboard-loginweb.com
DNT: 1
Connection: keep-alive
Referer: https://dashboard-loginweb.com/truist/login.php?online_id=377e29a27c4e8d2c3915129b8login_id=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1&session=c9603482bbdb0c4bdf4b6000005d04a1c9603482bbdb0c4bdf4b6000005d04a1
Cookie: I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; 4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 18 May 2024 10:27:31 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=pmeiUOc.0qWHqvCBBgOseJM_52XvqobkdvN0CZWMz1o-1716028051-1.0.1.1-gaNpE3W5Tm1_PDuwXJ22LXoXEMk89JVLlppSbIOAJFHvkoF6GMjWBbDQ2tRVnerztXgqSBusNJFAybJZmT6k.g; Path=/; Expires=Sun, 18-May-25 10:27:31 GMT; Domain=.dashboard-loginweb.com; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XJhgS%2BmposPZoG9LVenCTdsru5nqNz%2F8%2FPTQu2MV3psHYl2bSS9xP83x4eoiNGWeTCBUyRLKxAux2lMWX1oVfbaUKuX9bapPGJJlznZhURf1ZU2rapPD6%2B%2B3VVvUVOpRgMKOpEzCLevh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 885b27baffe256bd-OSL
alt-svc: h3=":443"; ma=86400
|