Report - server1579824.netart.com/AGR/tel.php/

Report Overview

Submitted URL
server1579824.netart.com/AGR/tel.php/
IP
77.55.89.87
ASN
#15967 Nazwa.pl Sp.z.o.o.
Submitted
2024-05-02 00:03:48
Access
public
Website Title
Société Générale | Connexion
Final URL
server1579824.netart.com/AGR/tel.php/
Tags
societe_generale financial phishing
urlquery detections
Phishing - Societe Generale

Detections

urlquery
12
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
netartcadv2.ocsp-certum.com	unknown	2013-12-19	2024-02-04	2024-03-28	339 B	1.7 kB	95.101.10.193
server1579824.netart.com	unknown	unknown	No data	No data	5.4 kB	68 kB	77.55.89.87

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-28	medium	server1579824.netart.com/AGR/tel.php/	Societe Generale

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	server1579824.netart.com/AGR/tel.php/	178 B	2023-03-07	2024-05-14
Pretty URL server1579824.netart.com/AGR/tel.php/ IP 77.55.89.87 ASN #15967 Nazwa.pl Sp.z.o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:02:36 Last Seen2024-05-14 16:56:09 Times Seen234 Hash 7b2ea28b6db361bac578436bf271f604 b3a40eefe2b78bf0c9b92b888ef5def6cb5a1fad c1ef8a22127bb6bec80b93e70f3505ed75edd5e5c983867c24a8d91aa9873696 Loading...

HTTP Transactions (12)

URL IP Response Size

netartcadv2.ocsp-certum.com/

95.101.10.193

1.5 kB

URL
netartcadv2.ocsp-certum.com/
IP
95.101.10.193:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.5 kB (1484 bytes)
Hash
d576ab18206afa15986e4ff0663fe76c
0b808a8682f30f6b39fe76fd8bfe0c86004e2720
fdab0d6aea43d7cc2cdeb26bcb8d6b05ddec85e18447b3c6a1616e79216376c0

HTTP Headers

POST / HTTP/1.1
Host: netartcadv2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1484
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Thu, 02 May 2024 00:03:23 GMT
Connection: keep-alive
X-N: S

server1579824.netart.com/AGR/tel.php/

77.55.89.87

200 OK

2.8 kB

URL User Request GET HTTP/2
server1579824.netart.com/AGR/tel.php/
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (306)
Size
2.8 kB (2762 bytes)
Hash
3ca09c85aed46f7db73dabc0431f9301
e4a037709f208be5645bbb17f1e3b267ca049fe0
eba6ce1d339717bc9391ed5326b91b9e1dee267a094cca3ae7eac16e0bbe28be

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale
OpenPhish	phishing	Societe Generale

HTTP Headers

GET /AGR/tel.php/ HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:23 GMT
content-type: text/html; charset=UTF-8
content-length: 2762
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/css/spec56_btn_gsm_all_gcd_20190320190559.min.css

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/css/spec56_btn_gsm_all_gcd_20190320190559.min.css
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4619 bytes)
Hash
5fa32765ea47cbc534a3929ce49e9e72
d44aed694145bc17b8e78125d1caa6e545ac3ad8
baae9a574be1ed9f5a4d6c531b03ef6a739ab45e8402c8a9d324d701537e0e8f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/css/spec56_btn_gsm_all_gcd_20190320190559.min.css HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4619
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/css/index_20190723161948.min.css

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/css/index_20190723161948.min.css
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4622 bytes)
Hash
87580af9e9e82447a4d3449742c8f4fd
b63abd56de3bf40bbc7b1587cb5eda1724e828c4
32ef65fb5c664c7181bf1fdd1b38867a8b376e9dd4beaabf631d4d3b7ed513fc

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/css/index_20190723161948.min.css HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4622
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/css/inbenta.css

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/css/inbenta.css
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4619 bytes)
Hash
89bc3062ba27b18d42357ca86ce5e0fb
75c0840f3fdc4b24b9921a82158c60984e28b251
6c62e0ed59c74e9003be8e32681154b6e6bcd8678199fe55406f3569ea818fa2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/css/inbenta.css HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4619
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/css/style.css

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/css/style.css
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4618 bytes)
Hash
33c08ba83e41cdb16b21d32872ad6bb2
0f342ebbebaa3a60130e919074b96731560a6a1a
c98339afdbcafc1a4725e38702a0083a4df7fe3d7be07ac2846167cf98022420

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/css/style.css HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4618
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/img/logo-sg-muet.svg

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/img/logo-sg-muet.svg
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4616 bytes)
Hash
710d8b2cd05e307490994f57e2d3248f
1276496b82d2bd1957c164544fef6e9759cebb6c
e63108dce5de02309c1c315d9b6cbde648ff027e90dddd796d571849fd1f8418

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/img/logo-sg-muet.svg HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4616
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/img/loader.gif

77.55.89.87

200 OK

19 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/img/loader.gif
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
19 kB (18986 bytes)
Hash
c87076fddebec10dcb4c74f0a423e2c0
68aa48f665c48360f7045003e57e50ebf15b580e
cadf71af339aed51619b37363bb87e9ea1c4c091dc063dc8ef227e4c1ac895ff

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/img/loader.gif HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 18986
x-mod-pagespeed: enabled
vary: Accept-Encoding
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/img/logo-sg.svg

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/img/logo-sg.svg
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4617 bytes)
Hash
8bd218e28f5645d296d3b92e5debdc30
95718720823f95dc5d6b0e77e3aaf280973269c6
c9d3ff4076e779d1bdc68b49f47ff268a94410b3ac82c702bf7f17c81f8a0d0e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/img/logo-sg.svg HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4617
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/img/logo-sg-seul.svg

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/img/logo-sg-seul.svg
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4619 bytes)
Hash
834017647aed2bdb26b14718bc6f24e5
52d2c9a39b3b5a897374e0d1d86ba77a4c75d58d
7599829b9b29462294beca9006b6db2e4048e3268c3b72c31da58af1137ba1d3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/img/logo-sg-seul.svg HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4619
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/css/print_20190320190559.min.css

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/css/print_20190320190559.min.css
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4622 bytes)
Hash
ff8253e959079e256d0363a8f90ec535
e2193aae5dacc87c1800ae613fac1091d094d127
97eeff2c0cfdbae6492a300b303e7127ac080982c998a8b507f516eceba1a300

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/css/print_20190320190559.min.css HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4622
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

server1579824.netart.com/AGR/tel.php/files/img/favicon.ico

77.55.89.87

200 OK

4.6 kB

URL GET HTTP/2
server1579824.netart.com/AGR/tel.php/files/img/favicon.ico
IP
77.55.89.87:443
ASN
#15967 Nazwa.pl Sp.z.o.o.

Requested by
https://server1579824.netart.com/AGR/tel.php/
Certificate
Issuernetart.com sp. z o.o.
Subject*.netart.com
Fingerprint09:D2:A2:55:5C:40:07:C6:E2:BE:B6:DC:22:32:72:5D:A6:27:CC:33
ValidityMon, 17 Jul 2023 07:24:42 GMT - Sat, 13 Jul 2024 00:00:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (768)
Size
4.6 kB (4615 bytes)
Hash
5a7816956c100dc5faccfcaf28c8f5ee
485a65118456c22e784457b6201ffe46544a8486
31a2b9dcdba8e0c7f394033f297ed73a0a244147f99991ac0350160465ca9848

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Societe Generale

HTTP Headers

GET /AGR/tel.php/files/img/favicon.ico HTTP/1.1
Host: server1579824.netart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://server1579824.netart.com/AGR/tel.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 00:03:24 GMT
content-type: text/html; charset=UTF-8
content-length: 4615
x-mod-pagespeed: enabled
vary: Accept-Encoding
content-encoding: br
cache-control: max-age=0, no-cache
age: 0
x-cdn-netart.com-location: AMS
x-cdn-netart.com-age: 0
x-cdn-netart.com-cache: MISS
x-cdn-netart.com-policyused: app=no-cache
server: Apache/2
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers