| sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com | 208.91.199.230 | 200 OK | 4.7 kB |
URL User Request GET HTTP/2sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com IP208.91.199.230:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerLet's Encrypt Subject*.sevenseas-travel.com Fingerprint19:50:3D:73:76:74:3C:54:1D:D6:24:4F:23:7D:2A:7D:2F:C8:1C:FE ValidityThu, 21 Mar 2024 11:14:10 GMT - Wed, 19 Jun 2024 11:14:09 GMT
File typeHTML document, Unicode text, UTF-8 text Hash23af569ea25c835fbf9b125d451377cb 43296a7bf2f2228b0725406246c8c1c321c01ceb cf1d231ee5b2c3b299f214623c746e4e1ee6ce63fb098d6ee9b3952cb676c7be
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Docusign |
GET /docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com HTTP/1.1
Host: sevenseas-travel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 08:39:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4658
content-type: text/html
date: Fri, 10 May 2024 13:50:30 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| seeklogo.com/images/D/docusign-logo-2C4F5FAE95-seeklogo.com.png | 104.21.84.83 | 200 OK | 2.5 kB |
URL GET HTTP/2seeklogo.com/images/D/docusign-logo-2C4F5FAE95-seeklogo.com.png IP104.21.84.83:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subjectseeklogo.com Fingerprint79:1C:65:70:D5:30:59:87:BB:3C:90:04:40:65:19:45:8D:96:3A:37 ValiditySun, 31 Mar 2024 10:17:27 GMT - Sat, 29 Jun 2024 10:17:26 GMT
File typePNG image data, 300 x 300, 8-bit colormap, non-interlaced Hash539bae789201d3577c14106c34df631d b00ad53a3779811136b4e8ec979c5f1574929889 2f2dc59ea0dc82ff30683861f43987f900f1861a6635de031264a69577d62eb4
GET /images/D/docusign-logo-2C4F5FAE95-seeklogo.com.png HTTP/1.1
Host: seeklogo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 13:50:31 GMT
content-type: image/png
content-length: 2527
cache-control: public, max-age=31536000
last-modified: Sun, 27 Nov 2022 01:23:07 GMT
etag: "1d901fecdc9865f"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-download-options: noopen
content-security-policy: upgrade-insecure-requests; frame-ancestors 'self'
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: HIT
age: 38840
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FFWBxj8naXI20qeVAxoWM5ZsKV8RNCm69dWDrsh%2Fgy2muxG9FA4ARruIC7zPadcEjJV5qbPL5IMluKAGlcBXsDr6bW8qy9xDSag%2FffAkenzK%2FBBnBc4hnPbdIZr0JgM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a66152d0fb500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css | 151.101.65.229 | 200 OK | 25 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css IP151.101.65.229:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65306) Hashabe91756d18b7cd60871a2f47c1e8192 7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d 7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sevenseas-travel.com
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 13:50:31 GMT
age: 28872271
x-served-by: cache-fra-eddf8230097-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2
|
|
| docucdn-a.akamaihd.net/olive/images/2.47.0/header-logos/docusign.svg | 95.101.11.74 | 200 OK | 1.3 kB |
URL GET HTTP/2docucdn-a.akamaihd.net/olive/images/2.47.0/header-logos/docusign.svg IP95.101.11.74:443 ASN#20940 Akamai International B.V.
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint28:39:AF:63:7D:02:E8:F7:17:23:A0:EE:E0:C9:2F:9C:64:17:68:0A ValidityThu, 18 Apr 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash440fe9f91ffea5c808b75d74298423e7 c42c5c7b43ef49f1c1a3191efd5624477e9cc549 7c5e35b0c8299b8660a9c4f4393c7af2ced0143540a1ecdf266d174b690b779b
GET /olive/images/2.47.0/header-logos/docusign.svg HTTP/1.1
Host: docucdn-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "440fe9f91ffea5c808b75d74298423e7:1660684826.417675"
last-modified: Fri, 12 Aug 2022 19:56:41 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31509326
date: Fri, 10 May 2024 13:50:31 GMT
content-length: 1257
access-control-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.min.js | 151.101.65.229 | 200 OK | 17 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.min.js IP151.101.65.229:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (59810) Hasha08792f518b51f0f1422b5c96df9eb8a 3f094f010bfb0c022a51b62778d4361d1cad3fd6 5c36e28c9a7bd864b673e223db7e1934923227536ffbdf871f58b6f09b9ac8c9
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sevenseas-travel.com
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"eab9-PwlPAQv7DAIqUbYneNQ2HRytP9Y"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 13:50:31 GMT
age: 1508630
x-served-by: cache-fra-eddf8230043-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17261
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/XvbjKjJH/godady.png | 162.19.88.69 | 200 OK | 6.1 kB |
URL GET HTTP/2i.postimg.cc/XvbjKjJH/godady.png IP162.19.88.69:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subjectpostimg.cc Fingerprint53:90:A2:AC:6E:D0:9C:56:06:D5:4F:6E:EE:C9:67:58:10:CF:9A:D6 ValidityMon, 22 Apr 2024 06:32:22 GMT - Sun, 21 Jul 2024 06:32:21 GMT
File typePNG image data, 449 x 112, 8-bit colormap, non-interlaced Hashb90a682bf93d8425fc6c75df2066f094 fe627bf26bc763ca82763c7feb1e56d501df7b0d 4e1c147cea32aec46acef6f96073e557a06a383931424aca70ee84840e659e59
GET /XvbjKjJH/godady.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 13:50:31 GMT
content-type: image/png
content-length: 6092
last-modified: Mon, 25 Mar 2024 22:03:26 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@popperjs/core@2.9.2/dist/umd/popper.min.js | 151.101.65.229 | 200 OK | 6.9 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@popperjs/core@2.9.2/dist/umd/popper.min.js IP151.101.65.229:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (18506) Hash83e6ef063fa41ff8d8c00956a7cd3fd9 8eeb7bf71e8a978b82a1a198015f14d73d2ea592 5a07c69f9061eb12e39a031358a4f567f30a002ad6182639ac84fd1bda2f6e65
GET /npm/@popperjs/core@2.9.2/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sevenseas-travel.com
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.9.2
x-jsd-version-type: version
etag: W/"48a2-jut79x6Kl4uCoaGYAV8U1z0upZI"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 13:50:31 GMT
age: 20245462
x-served-by: cache-fra-eddf8230074-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6930
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js | 151.101.65.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js IP151.101.65.229:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash0aa8d64e726c4a57adb5c88f9115996b 901169527507ff9e662cf64d8e361f359308970d 7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sevenseas-travel.com
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 13:50:31 GMT
age: 1563614
x-served-by: cache-fra-eddf8230080-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23943
X-Firefox-Spdy: h2
|
|
| sevenseas-travel.com/docuu/Docusign24/dbb/home/images/8ac12962c05648c55ca85771f4a69b2d.gif | 208.91.199.230 | 404 Not Found | 355 B |
URL GET HTTP/2sevenseas-travel.com/docuu/Docusign24/dbb/home/images/8ac12962c05648c55ca85771f4a69b2d.gif IP208.91.199.230:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subject*.sevenseas-travel.com Fingerprint19:50:3D:73:76:74:3C:54:1D:D6:24:4F:23:7D:2A:7D:2F:C8:1C:FE ValidityThu, 21 Mar 2024 11:14:10 GMT - Wed, 19 Jun 2024 11:14:09 GMT
File typeHTML document, ASCII text Hash59f6ae7c7f154ec74d418d4ed6fc5b0e 674860108a41ab23ba5f73635749332bd8a46b7e 50e0767f2731da7ddb56d719dc85a7f830c4a860d8f09d0f25401d3dc7097d7d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Docusign |
GET /docuu/Docusign24/dbb/home/images/8ac12962c05648c55ca85771f4a69b2d.gif HTTP/1.1
Host: sevenseas-travel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 15 Mar 2022 22:07:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Fri, 10 May 2024 13:50:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| sevenseas-travel.com/docuu/Docusign24/dbb/home/officrout.png | 208.91.199.230 | 200 OK | 18 kB |
URL GET HTTP/2sevenseas-travel.com/docuu/Docusign24/dbb/home/officrout.png IP208.91.199.230:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subject*.sevenseas-travel.com Fingerprint19:50:3D:73:76:74:3C:54:1D:D6:24:4F:23:7D:2A:7D:2F:C8:1C:FE ValidityThu, 21 Mar 2024 11:14:10 GMT - Wed, 19 Jun 2024 11:14:09 GMT
File typePNG image data, 187 x 188, 8-bit/color RGBA, non-interlaced Hasha5cdadd60382e9ae6228121542eb1c2a cec15f6470d0237569e931d7d11752b41ac5d8a3 71e729939e175f4ae9d3fcc645d6b7389ec341a47a84950e047197331fdc22f1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Docusign |
GET /docuu/Docusign24/dbb/home/officrout.png HTTP/1.1
Host: sevenseas-travel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 08:39:38 GMT
accept-ranges: bytes
content-length: 18147
content-type: image/png
date: Fri, 10 May 2024 13:50:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| sevenseas-travel.com/docuu/Docusign24/dbb/home/webmailout.png | 208.91.199.230 | 200 OK | 22 kB |
URL GET HTTP/2sevenseas-travel.com/docuu/Docusign24/dbb/home/webmailout.png IP208.91.199.230:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subject*.sevenseas-travel.com Fingerprint19:50:3D:73:76:74:3C:54:1D:D6:24:4F:23:7D:2A:7D:2F:C8:1C:FE ValidityThu, 21 Mar 2024 11:14:10 GMT - Wed, 19 Jun 2024 11:14:09 GMT
File typePNG image data, 190 x 187, 8-bit/color RGBA, non-interlaced Hash6843a244e12fab158aa189680b5e7049 0e1c691f87cc4fa35c88344974f2829c40176b70 3a9b144d6482b78afc4e0a940a1d3c22240f14fa535b808cf4dab9635339569f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Docusign |
GET /docuu/Docusign24/dbb/home/webmailout.png HTTP/1.1
Host: sevenseas-travel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 08:39:38 GMT
accept-ranges: bytes
content-length: 21882
content-type: image/png
date: Fri, 10 May 2024 13:50:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| sevenseas-travel.com/docuu/Docusign24/dbb/home/app.js | 208.91.199.230 | 200 OK | 1.9 kB |
URL GET HTTP/2sevenseas-travel.com/docuu/Docusign24/dbb/home/app.js IP208.91.199.230:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subject*.sevenseas-travel.com Fingerprint19:50:3D:73:76:74:3C:54:1D:D6:24:4F:23:7D:2A:7D:2F:C8:1C:FE ValidityThu, 21 Mar 2024 11:14:10 GMT - Wed, 19 Jun 2024 11:14:09 GMT
Hash3e00a098bb4493328406cce9488c9d4c e78930e3cc1e649d0d006df128c495d336891cff 3279deca74335f6de8fb42f5449448cb2d1a9f8dd96dc1311be5e7dbd627a7d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Docusign |
GET /docuu/Docusign24/dbb/home/app.js HTTP/1.1
Host: sevenseas-travel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 08:58:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1942
content-type: application/javascript
date: Fri, 10 May 2024 13:50:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.docusign.com/sites/all/themes/custom/docusign/favicons/favicon.ico | 151.101.194.133 | | 1.4 kB |
URL GET www.docusign.com/sites/all/themes/custom/docusign/favicons/favicon.ico IP151.101.194.133:0
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerDigiCert Inc Subjectwww.docusign.com Fingerprint2E:4B:A6:1E:A7:6D:EE:E5:14:17:84:6E:4B:CF:55:45:30:B5:3A:69 ValidityTue, 07 May 2024 00:00:00 GMT - Sat, 07 Jun 2025 23:59:59 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash2f656f44f3bb7aae0b32a718785010da e587361f27963fbf38fa689e15d7d39a3aa3464f 820a8b3c2ce442fc5c7fae21b8238b81cff97a648255fb73c9fedc41e7e685ce
GET /sites/all/themes/custom/docusign/favicons/favicon.ico HTTP/1.1
Host: www.docusign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=31622400
content-type: image/x-icon
etag: "66237e3a-3c2e"
expires: Mon, 21 Apr 2025 11:52:06 GMT
last-modified: Sat, 20 Apr 2024 08:35:06 GMT
server: nginx
x-pantheon-styx-hostname: styx-fe3-b-c7695954b-blb9d
x-styx-req-id: 69236a6b-ff0c-11ee-9bde-7e3417314868
content-encoding: gzip
x-timer: S1713847238.088117,VS0,VE112
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 10 May 2024 13:50:31 GMT
age: 1735106
x-served-by: cache-chi-kigq8000093-CHI, cache-hel1410027-HEL, cache-hel1410020-HEL
x-cache: HIT, MISS, HIT
x-cache-hits: 0, 0, 22
vary: Accept-Encoding, X-Original-Host
strict-transport-security: max-age=31557600; includeSubDomains; preload
set-cookie: ds_ts_re=0; HttpOnly; SameSite=Strict; Secure; Path=/
content-length: 1362
X-Firefox-Spdy: h2
|
|
| roundcube.net/images/roundcube_logo_icon.svg | 104.21.3.227 | 200 OK | 1.1 kB |
URL GET HTTP/2roundcube.net/images/roundcube_logo_icon.svg IP104.21.3.227:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subjectroundcube.net Fingerprint2B:80:CD:0D:E1:B0:0F:02:3E:5C:70:2B:78:ED:BD:2A:C7:F6:6A:79 ValidityWed, 24 Apr 2024 09:50:17 GMT - Tue, 23 Jul 2024 09:50:16 GMT
File typeSVG Scalable Vector Graphics image Hash1bbdfdeb92e23a3d6620f3600eff6d1d a8177e6a754dae714947739908c7bfa909a796aa a1e0204e429a211b95ce770802cc8107f9fcbf6697445a3bdda974488b3276ab
GET /images/roundcube_logo_icon.svg HTTP/1.1
Host: roundcube.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 13:50:31 GMT
content-type: image/svg+xml
x-origin-cache: HIT
last-modified: Sun, 18 Feb 2024 08:12:01 GMT
vary: Accept-Encoding
access-control-allow-origin: *
etag: W/"65d1bbd1-477"
expires: Fri, 10 May 2024 14:00:31 GMT
cache-control: max-age=7200
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 3550:C495D:1245F8:151404:66311F73
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vvccuJ9hvmjfq5rRhN%2BEoayT8Y%2BLIM6sjwh4NjuK%2Fatuk2XdZDm%2BozGf696eE7XUbGPihFHzy4u0%2FMOgvULf4D8uAC2%2B0BykO5LCL%2FvaoozSRaRY1QKhHs6DTkW5JSoL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881a66153905b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.glitch.global/8d5109a6-1873-4f95-9253-bd838b3669c7/video.mp4 | 151.101.66.132 | 206 Partial Content | 1.6 MB |
URL GET HTTP/2cdn.glitch.global/8d5109a6-1873-4f95-9253-bd838b3669c7/video.mp4 IP151.101.66.132:443
Requested byhttps://sevenseas-travel.com/docuu/Docusign24/dbb/home/index.html?utm_source=infos-newsletter-9d249f.beehiiv.com CertificateIssuerLet's Encrypt Subjectcdn.glitch.global FingerprintF2:EB:85:15:C1:89:0D:2A:EF:A5:2E:07:1E:4F:69:31:EF:1C:8C:06 ValiditySun, 31 Mar 2024 19:31:34 GMT - Sat, 29 Jun 2024 19:31:33 GMT
Size1.6 MB (1572864 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /8d5109a6-1873-4f95-9253-bd838b3669c7/video.mp4 HTTP/1.1
Host: cdn.glitch.global
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://sevenseas-travel.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
x-amz-id-2: 3jrH1O3mP/MZNFLNNAcybBY2dKFRvNMcp9Qy4BNNp6Nge0dYy9doYVNyS2dGmAePV8K6IdobWuE=
x-amz-request-id: TXQR05KSD56AXNC7
last-modified: Mon, 04 Apr 2022 12:42:29 GMT
etag: "710095c093f6424f5bad42c310538527"
cache-control: max-age=31536000
content-type: video/mp4
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET, HEAD, POST
access-control-allow-origin: *
content-security-policy: script-src 'none'
accept-ranges: bytes
date: Fri, 10 May 2024 13:50:31 GMT
age: 401793
x-served-by: cache-iad-kiad7000062-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 2344, 6
x-timer: S1715349031.333734,VS0,VE0
content-range: bytes 0-20737963/20737964
content-length: 20737964
X-Firefox-Spdy: h2
|
|