Report - jvbsjda.com/

Report Overview

Submitted URL
jvbsjda.com/
IP
217.160.0.222
ASN
#8560 IONOS SE
Submitted
2024-05-07 18:15:57
Access
public
Website Title
Händler-Login
Final URL
jvbsjda.com/mobile/a2/login/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
login.mobile.de	unknown	unknown	2013-12-05	2024-02-14	1.3 kB	11 kB	23.210.174.30
jvbsjda.com	unknown	2019-12-18	2021-05-01	2024-02-14	485 B	6.4 kB	217.160.0.222

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	jvbsjda.com/	Mobile.de

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	jvbsjda.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (4)

URL IP Response Size

23.210.174.30

404 Not Found

3.8 kB

URL GET HTTP/2
login.mobile.de/a2/css/a2Main.css
IP
23.210.174.30:443
ASN
#16625 AKAMAI-AS

Requested by
https://jvbsjda.com/mobile/a2/login/
Certificate
IssuerDigiCert Inc
Subjectwww.mobile.de
Fingerprint02:6F:25:51:AD:60:F3:D9:92:02:9D:9D:50:04:D1:6C:05:3E:9C:EB
ValidityTue, 19 Dec 2023 00:00:00 GMT - Fri, 20 Dec 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1170)
Size
3.8 kB (3783 bytes)
Hash
c0b854b3313689e37400bbede04e2fae
2ac8ca18a94eaaefdd8c21656b8317a7b09427fc
557c6856dd5846fac0e287fed80559dbe53d257b08927f2ba3c2ce74e8de7a35

HTTP Headers

GET /a2/css/a2Main.css HTTP/1.1
Host: login.mobile.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jvbsjda.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html;charset=utf-8
content-length: 3783
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
pragma: no-cache
content-language: en
cache-control: private, max-age=543
expires: Tue, 07 May 2024 18:24:35 GMT
date: Tue, 07 May 2024 18:15:32 GMT
set-cookie: ak_bmsc=676C7C393FB9BA02C341D108B335EF3F~000000000000000000000000000000~YAAQiANJF6hmlzOPAQAAcJhEVBeSOnvIARZJLM4wGqW0NnwhaFPz9Y7iKnNbXAB5EqVfqOyBQ9PpYZsBAKydspUjJJIb4y9JgGdL40n8Xb/bTsDsg0HqdP8LeSFYmqqNFsM1rnFHP7VsqkXAhiDiAoWoiciIopOJoOxCSVcY02Da77uO5J8DKiIyeqHLePrHdxn+ZeRITB+4v1d+nFmdN0QTeB8pnIlnu9fqZKvuD8m45oiL9qzmW18P93VBlxxUfnv/sbuVoAddfivqowbOCnLxgN+IDLe7qK8n1XaZ5svmM8KIbBtI776dQEa6EFAtyH3EjHl9JgIfwb0NUyh4OKub1lZeNKMI+ZmD3CfhtpngMRaG6CqCnkG2cGsjaVO5OKU5xe39ci0=; Domain=.mobile.de; Path=/; Expires=Tue, 07 May 2024 20:15:32 GMT; Max-Age=7200; SameSite=None; Secure
X-Firefox-Spdy: h2

23.210.174.30

404 Not Found

3.8 kB

URL GET HTTP/2
login.mobile.de/a2/css/icons/logo/icons.logo.data.svg.css
IP
23.210.174.30:443
ASN
#16625 AKAMAI-AS

Requested by
https://jvbsjda.com/mobile/a2/login/
Certificate
IssuerDigiCert Inc
Subjectwww.mobile.de
Fingerprint02:6F:25:51:AD:60:F3:D9:92:02:9D:9D:50:04:D1:6C:05:3E:9C:EB
ValidityTue, 19 Dec 2023 00:00:00 GMT - Fri, 20 Dec 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1170)
Size
3.8 kB (3783 bytes)
Hash
c0b854b3313689e37400bbede04e2fae
2ac8ca18a94eaaefdd8c21656b8317a7b09427fc
557c6856dd5846fac0e287fed80559dbe53d257b08927f2ba3c2ce74e8de7a35

HTTP Headers

GET /a2/css/icons/logo/icons.logo.data.svg.css HTTP/1.1
Host: login.mobile.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jvbsjda.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html;charset=utf-8
content-length: 3783
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
pragma: no-cache
content-language: en
cache-control: private, max-age=600
expires: Tue, 07 May 2024 18:25:32 GMT
date: Tue, 07 May 2024 18:15:32 GMT
set-cookie: ak_bmsc=94FEBB7003CB3BE8480B7E7C141E48C3~000000000000000000000000000000~YAAQiANJF6lmlzOPAQAAg5hEVBcYeZEViLfNVkWBc9tOUBWaVJixLdHB3QAyJFg33tPK0LX131jgzQTeoSL9+Axm0yBYltMVII1qqfRB1mXOK0eSS3BZCvwSAL0Iv/VOsLGOCCUKEv07ldJHpZFWOZWg7c5zH2YkwLF0w+OYd0muLkw8PAFUZIrnKBaYtJo6jap7R7KcLQXO3iIdeDVDzWOWI2TYnsgupAmuHs+h6SUgYzj821upK/aahh0iszMkaQ2kQS9DFTDe6TiRvOSblbmQlfHvrbmXXs7no8JqzIcCtTC+e0vS+RqWtVi22m7TCNvvS0Sk0Pbtl04icUtjCHUkLGsCTplZow29qScImsbhJ68JcvhRpwOMwFLE6XbFutryjM8WT48=; Domain=.mobile.de; Path=/; Expires=Tue, 07 May 2024 20:15:32 GMT; Max-Age=7200; SameSite=None; Secure
X-Firefox-Spdy: h2

23.210.174.30

576 B

URL GET
login.mobile.de/favicon.ico
IP
23.210.174.30:0
ASN
#16625 AKAMAI-AS

Requested by
https://jvbsjda.com/mobile/a2/login/
Certificate
IssuerDigiCert Inc
Subjectwww.mobile.de
Fingerprint02:6F:25:51:AD:60:F3:D9:92:02:9D:9D:50:04:D1:6C:05:3E:9C:EB
ValidityTue, 19 Dec 2023 00:00:00 GMT - Fri, 20 Dec 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16
Size
576 B (576 bytes)
Hash
e4d16d425e41747ee013acbde5b73431
3d12a85ae76e1a3c6e5faa320009b8869aabfa0c
e58c5ecd2b514360ebc3c840a04b1f6dfbc4e6527695b93f0f2c15a52077e123

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: login.mobile.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jvbsjda.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
strict-transport-security: max-age=63072000; includeSubDomains; preload
last-modified: Fri, 19 Apr 2024 12:57:30 GMT
etag: "66226a3a-47e"
accept-ranges: bytes
content-encoding: gzip
content-length: 576
cache-control: private, max-age=585
expires: Tue, 07 May 2024 18:25:17 GMT
date: Tue, 07 May 2024 18:15:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

jvbsjda.com/mobile/a2/login/

217.160.0.222

200 OK

6.3 kB

URL User Request GET HTTP/2
jvbsjda.com/mobile/a2/login/
IP
217.160.0.222:443
ASN
#8560 IONOS SE

Certificate
IssuerDigiCert Inc
Subjectjvbsjda.com
FingerprintB6:A7:09:8B:4B:4E:25:B4:C1:F3:56:9D:DA:4F:B6:5B:1E:C9:A8:2E
ValiditySun, 05 May 2024 00:00:00 GMT - Tue, 27 May 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (6524), with no line terminators
Size
6.3 kB (6276 bytes)
Hash
2eddba46396ecf2d0bcdfbda5ca46f75
0beaad30c8705ffd242d3a7cbe6c4fcc069f144e
e0cbd2d30cc3624764ff9476ba578ed396bcaa273fa1134e9452a4bcb11eb3c4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Mobile.de
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /mobile/a2/login/ HTTP/1.1
Host: jvbsjda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 07 May 2024 18:15:32 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (4)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers