Report - usps.com.yzp25.vip/

Report Overview

Submitted URL
usps.com.yzp25.vip/
IP
104.233.140.252
ASN
#54600 PEG-SV
Submitted
2024-04-24 15:51:41
Access
public
Website Title
USPS | Unfortunately, we are experiencing difficulties with delivering your package.
Final URL
usps.com.yzp25.vip/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
usps.com.yzp25.vip	unknown	unknown	No data	No data	6.6 kB	1.8 MB	104.233.140.252
api.ipify.org	3267	2014-01-05	2014-10-06	2024-04-23	433 B	267 B	104.26.12.205
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	447 B	5.3 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service
2024-04-24	medium	usps.com.yzp25.vip/	United States Postal Service

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	usps.com.yzp25.vip/	492 B	2024-04-01	2024-05-01
Pretty URL usps.com.yzp25.vip/ IP 104.233.140.252 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-01 06:33:17 Last Seen2024-05-01 17:43:06 Times Seen6 Hash 52b702b7e18ef46742f8047371b25875 704e3280449e34aea7b80b4e97e7acbb144762de 8f2c2b527773a1c8e0bde27569107893ec3809a7f88e69b9f1f92d621b39084b Loading...

	usps.com.yzp25.vip/assets/jss/jquery-3.6.0.js	87 kB	2023-03-07	2024-05-05
Pretty URL usps.com.yzp25.vip/assets/jss/jquery-3.6.0.js IP 104.233.140.252 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-05 21:07:24 Times Seen64827 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	usps.com.yzp25.vip/assets/jss/loading.js	2.8 kB	2023-08-13	2024-05-01
Pretty URL usps.com.yzp25.vip/assets/jss/loading.js IP 104.233.140.252 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 00:12:14 Last Seen2024-05-01 17:43:06 Times Seen20 Hash 565ffe96fa11ba306681515106d36865 3456e1de59e87ed6bd5e0acbb1613b6235f5423e 382b2a4c7aa8101f7d20da37346684b1527e8fcacd8f78bccac0230b1dff548e Loading...

	usps.com.yzp25.vip/assets/js/loading.js	2.8 kB	2024-04-01	2024-05-01
Pretty URL usps.com.yzp25.vip/assets/js/loading.js IP 104.233.140.252 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-01 06:33:17 Last Seen2024-05-01 17:43:06 Times Seen12 Hash afca2bb3426fbf4d2d30d50e0f7e4bbb 139b4de7db081cda2f263bd61add31547430aecb 2755e0c03ef5e82f56b8d2544a99d122ed294d803216b340d5161431090f0142 Loading...

	usps.com.yzp25.vip/assets/jss/global.js	10 kB	2023-08-13	2024-05-01
Pretty URL usps.com.yzp25.vip/assets/jss/global.js IP 104.233.140.252 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 00:12:14 Last Seen2024-05-01 17:43:06 Times Seen20 Hash 228a4eddddd13068998911f3fd60adc9 97cccb4804026d92c96c187ba8f4523b8485d113 5a6631e5a63c00eb2432acd8d16702589050154e8da2ad5dfb9146dc76c821b6 Loading...

	usps.com.yzp25.vip/assets/jss/chaseIndex.js	14 kB	2024-04-01	2024-05-01
Pretty URL usps.com.yzp25.vip/assets/jss/chaseIndex.js IP 104.233.140.252 ASN #54600 PEG-SV Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-01 06:33:17 Last Seen2024-05-01 17:43:06 Times Seen12 Hash 16af9a0ac08365b0c558a9502ad60f29 aa3b6320d5df4754bfa932c23196df53f12da9f6 cb1ee478f571e68cfefdea567b15284e256599c7a2f0485afdd92a5a546357e6 Loading...

HTTP Transactions (20)

URL IP Response Size

usps.com.yzp25.vip/

104.233.140.252

18 kB

URL
usps.com.yzp25.vip/
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
HTML document, Unicode text, UTF-8 text, with very long lines (4500), with CRLF line terminators
Size
18 kB (17700 bytes)
Hash
796cec5c5c9cd8bfe1f6e6d3e351bc35
ccb7744764fef60b12b4868a4290f087f707a910
d7cb173af73564bc12252dd5dd83d0abe6cf78f302fd8a771fd705a1152d8eb9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET / HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

usps.com.yzp25.vip/assets/jss/loading.js

104.233.140.252

200 OK

966 B

URL GET HTTP/1.1
usps.com.yzp25.vip/assets/jss/loading.js
IP
104.233.140.252:80
ASN
#54600 PEG-SV

Requested by
http://usps.com.yzp25.vip/

File type
C++ source, Unicode text, UTF-8 text, with very long lines (1150)
Size
966 B (966 bytes)
Hash
565ffe96fa11ba306681515106d36865
3456e1de59e87ed6bd5e0acbb1613b6235f5423e
382b2a4c7aa8101f7d20da37346684b1527e8fcacd8f78bccac0230b1dff548e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/jss/loading.js HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: application/javascript
Last-Modified: Mon, 07 Aug 2023 14:18:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64d0fd40-ae8"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/csss/loading.css

104.233.140.252

503 B

URL
usps.com.yzp25.vip/assets/csss/loading.css
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
ASCII text
Size
503 B (503 bytes)
Hash
c5e5299f876b896c6452953f7e6eadbb
f0ccc1e8dc76a8fb665e25983f7cb58d767afa92
35b261f5cdc9b60d58cf2d2fd328596d4b5d5f59165004d5bef63566ea90f86b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/csss/loading.css HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: text/css
Last-Modified: Wed, 27 Dec 2023 20:12:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"658c851c-63d"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/js/loading.js

104.233.140.252

978 B

URL
usps.com.yzp25.vip/assets/js/loading.js
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
C++ source, Unicode text, UTF-8 text, with very long lines (1152)
Size
978 B (978 bytes)
Hash
afca2bb3426fbf4d2d30d50e0f7e4bbb
139b4de7db081cda2f263bd61add31547430aecb
2755e0c03ef5e82f56b8d2544a99d122ed294d803216b340d5161431090f0142

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/js/loading.js HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: application/javascript
Last-Modified: Wed, 27 Dec 2023 19:24:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"658c79f2-af0"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/jss/global.js

104.233.140.252

4.1 kB

URL
usps.com.yzp25.vip/assets/jss/global.js
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
JavaScript source, Unicode text, UTF-8 text
Size
4.1 kB (4054 bytes)
Hash
228a4eddddd13068998911f3fd60adc9
97cccb4804026d92c96c187ba8f4523b8485d113
5a6631e5a63c00eb2432acd8d16702589050154e8da2ad5dfb9146dc76c821b6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/jss/global.js HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: application/javascript
Last-Modified: Mon, 07 Aug 2023 14:18:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64d0fd40-27e0"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/csss/logon.css

104.233.140.252

20 kB

URL
usps.com.yzp25.vip/assets/csss/logon.css
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (20178 bytes)
Hash
075ebfe9c70873dc731eae94ae6235b2
8fb288ce43b08ebc6d4002b7cc33bf3d35b8aa24
502905fec89dc0506d15bd3ddbec175e13b2c68b7eb13344df8363b831af4149

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/csss/logon.css HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: text/css
Last-Modified: Mon, 07 Aug 2023 16:35:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64d11d64-1ad7c"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/jss/jquery-3.6.0.js

104.233.140.252

200 OK

34 kB

URL GET HTTP/1.1
usps.com.yzp25.vip/assets/jss/jquery-3.6.0.js
IP
104.233.140.252:80
ASN
#54600 PEG-SV

Requested by
http://usps.com.yzp25.vip/

File type
JavaScript source, ASCII text, with very long lines (32058)
Size
34 kB (33861 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/jss/jquery-3.6.0.js HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: application/javascript
Last-Modified: Mon, 07 Aug 2023 14:18:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64d0fd40-15283"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/jss/chaseIndex.js

104.233.140.252

2.5 kB

URL
usps.com.yzp25.vip/assets/jss/chaseIndex.js
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
JavaScript source, ASCII text
Size
2.5 kB (2480 bytes)
Hash
16af9a0ac08365b0c558a9502ad60f29
aa3b6320d5df4754bfa932c23196df53f12da9f6
cb1ee478f571e68cfefdea567b15284e256599c7a2f0485afdd92a5a546357e6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/jss/chaseIndex.js HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: application/javascript
Last-Modified: Fri, 05 Jan 2024 13:50:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"65980914-3619"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/css/index-73ae538f.css

104.233.140.252

69 kB

URL
usps.com.yzp25.vip/assets/css/index-73ae538f.css
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
ASCII text, with very long lines (65536), with no line terminators
Size
69 kB (69215 bytes)
Hash
932eb88ea989b98f9ac0ab0cc38feca8
3c7870a901fe5c1c6abeaba92478128f2c6b0b3f
73ae538f4b1e98378b7d43dcb24dd8059e454144066da88ffd268ca0a565de52

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/css/index-73ae538f.css HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: text/css
Last-Modified: Mon, 25 Dec 2023 11:04:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"658961d0-5d615"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/csss/blue-ui.css

104.233.140.252

77 kB

URL
usps.com.yzp25.vip/assets/csss/blue-ui.css
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (76714 bytes)
Hash
f64e3fcd28eba654e28f1d329098ac78
b185d3328a1dfd2ba5d377a986dc39709380827b
08a2e99a35f83d0a5b3f2388cd3f80be5fe693c1a1626f797930f03427005c88

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/csss/blue-ui.css HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: text/css
Last-Modified: Mon, 07 Aug 2023 16:38:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64d11df0-7c92c"
Expires: Thu, 25 Apr 2024 03:51:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

usps.com.yzp25.vip/assets/images/hamburger.svg

104.233.140.252

200 OK

546 B

URL GET HTTP/1.1
usps.com.yzp25.vip/assets/images/hamburger.svg
IP
104.233.140.252:80
ASN
#54600 PEG-SV

Requested by
http://usps.com.yzp25.vip/

File type
SVG Scalable Vector Graphics image
Size
546 B (546 bytes)
Hash
37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/images/hamburger.svg HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: image/svg+xml
Content-Length: 546
Last-Modified: Mon, 25 Dec 2023 11:04:48 GMT
Connection: keep-alive
ETag: "658961d0-222"
Accept-Ranges: bytes

usps.com.yzp25.vip/assets/images/logo_mobile.svg

104.233.140.252

200 OK

2.1 kB

URL GET HTTP/1.1
usps.com.yzp25.vip/assets/images/logo_mobile.svg
IP
104.233.140.252:80
ASN
#54600 PEG-SV

Requested by
http://usps.com.yzp25.vip/

File type
SVG Scalable Vector Graphics image
Size
2.1 kB (2060 bytes)
Hash
f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/images/logo_mobile.svg HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: image/svg+xml
Content-Length: 2060
Last-Modified: Mon, 25 Dec 2023 11:04:48 GMT
Connection: keep-alive
ETag: "658961d0-80c"
Accept-Ranges: bytes

usps.com.yzp25.vip/assets/images/search.svg

104.233.140.252

1.5 kB

URL
usps.com.yzp25.vip/assets/images/search.svg
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1465 bytes)
Hash
ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/images/search.svg HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: image/svg+xml
Content-Length: 1465
Last-Modified: Mon, 25 Dec 2023 11:04:48 GMT
Connection: keep-alive
ETag: "658961d0-5b9"
Accept-Ranges: bytes

usps.com.yzp25.vip/assets/images/pinterest54x53-59f5e4d4.png

104.233.140.252

5.5 kB

URL
usps.com.yzp25.vip/assets/images/pinterest54x53-59f5e4d4.png
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
PNG image data, 54 x 53, 8-bit/color RGBA, non-interlaced
Size
5.5 kB (5504 bytes)
Hash
60b7e19b951102216d97687121434d69
3d8b6c6462f9c88bdec6849e111788b2ca97e2aa
59f5e4d40c77bc5155713bc956ddb8f4c14e3438d906a920f977073a071fb228

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/images/pinterest54x53-59f5e4d4.png HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: image/png
Content-Length: 5504
Last-Modified: Mon, 25 Dec 2023 11:04:50 GMT
Connection: keep-alive
ETag: "658961d2-1580"
Expires: Fri, 24 May 2024 15:51:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

usps.com.yzp25.vip/assets/images/logo-mini-sb-585262db.png

104.233.140.252

200 OK

24 kB

URL GET HTTP/1.1
usps.com.yzp25.vip/assets/images/logo-mini-sb-585262db.png
IP
104.233.140.252:80
ASN
#54600 PEG-SV

Requested by
http://usps.com.yzp25.vip/

File type
PNG image data, 135 x 16, 8-bit/color RGBA, non-interlaced
Size
24 kB (23625 bytes)
Hash
43707dd65a8c8ec7754b7b45fd483488
f258a5de57dfa37baf13296da6055e8f8881d742
585262db6911000f59795831f9db7bb41477bcafb135c82b51b0473363134fcf

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/images/logo-mini-sb-585262db.png HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: image/png
Content-Length: 23625
Last-Modified: Mon, 25 Dec 2023 11:04:50 GMT
Connection: keep-alive
ETag: "658961d2-5c49"
Expires: Fri, 24 May 2024 15:51:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

usps.com.yzp25.vip/assets/images/logo_mobile.svg

104.233.140.252

200 OK

2.1 kB

URL GET HTTP/1.1
usps.com.yzp25.vip/assets/images/logo_mobile.svg
IP
104.233.140.252:80
ASN
#54600 PEG-SV

Requested by
http://usps.com.yzp25.vip/

File type
SVG Scalable Vector Graphics image
Size
2.1 kB (2060 bytes)
Hash
f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/images/logo_mobile.svg HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:18 GMT
Content-Type: image/svg+xml
Content-Length: 2060
Last-Modified: Mon, 25 Dec 2023 11:04:48 GMT
Connection: keep-alive
ETag: "658961d0-80c"
Accept-Ranges: bytes

usps.com.yzp25.vip/assets/images/Results145.png

104.233.140.252

1.6 MB

URL
usps.com.yzp25.vip/assets/images/Results145.png
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
PNG image data, 780 x 500, 8-bit/color RGBA, non-interlaced
Size
1.6 MB (1563099 bytes)
Hash
735ea6b6f4d9e6808705435cfc953acd
1359531b6b86638273cc37aebb3efdd0ce11ffce
2edd3675a5481090f654519be5df43c1cc94bacedc7443495a65a7bd75c7e025

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /assets/images/Results145.png HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:17 GMT
Content-Type: image/png
Content-Length: 1563099
Last-Modified: Thu, 21 Dec 2023 04:53:48 GMT
Connection: keep-alive
ETag: "6583c4dc-17d9db"
Expires: Fri, 24 May 2024 15:51:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

api.ipify.org/?format=json

104.26.12.205

21 B

URL
api.ipify.org/?format=json
IP
104.26.12.205:0
ASN
#13335 CLOUDFLARENET

File type
JSON text data
Size
21 B (21 bytes)
Hash
7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65

HTTP Headers

GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://usps.com.yzp25.vip
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 15:51:19 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879741026e6856b1-OSL
X-Firefox-Spdy: h2

usps.com.yzp25.vip/api/index/get_cookie

104.233.140.252

49 B

URL
usps.com.yzp25.vip/api/index/get_cookie
IP
104.233.140.252:0
ASN
#54600 PEG-SV

File type
JSON text data
Size
49 B (49 bytes)
Hash
63903940f81e993e8f5f2d24e60fd1b3
c38abcce098cfbfc5652fe4e7746ea4c6280a56b
9c0663bfb4b0130224ee0f34446e047821e5e09070e794d9f616afb77fdf58e5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

POST /api/index/get_cookie HTTP/1.1
Host: usps.com.yzp25.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json;charset=utf-8
X-Requested-With: XMLHttpRequest
Content-Length: 27
Origin: http://usps.com.yzp25.vip
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Cookie: CHASE=91.90.42.154
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 15:51:19 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://usps.com.yzp25.vip
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400

fonts.googleapis.com/css?family=Source+Code+Pro:300,400

142.250.74.106

200 OK

4.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Source+Code+Pro:300,400
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
http://usps.com.yzp25.vip/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (4828), with no line terminators
Size
4.7 kB (4716 bytes)
Hash
b80091a83f103efcf61d526f66baca9c
be6bcdcda26d288332f65f7cb87f418d7210c982
3f89781398c950ab3585484c1e2900b203c3d1a3a1fc31619b665a3bd0f00256

HTTP Headers

GET /css?family=Source+Code+Pro:300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://usps.com.yzp25.vip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 15:51:17 GMT
date: Wed, 24 Apr 2024 15:51:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (20)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN