Report Overview

  1. Submitted URL

    secure.adnxs.com/clktrb?id=704169&redir=//Agsolutionregeg33.energycomercio.com.br/x2/v23/Agsolution/ZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ==//Agsolutionregeg33.energycomercio.com.br/x2/v23/Agsolution/ZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ==

  2. IP

    185.89.210.244

    ASN

    #29990 ASN-APPNEX

  3. Submitted

    2024-04-23 08:29:42

    Access

    public

  4. Website Title

    a1a57284.b7109115dcf087f0e7eb8004.workers.dev/?qrc=ellen.heyninck@agsolution.be

  5. Final URL

    a1a57284.b7109115dcf087f0e7eb8004.workers.dev/?qrc=ellen.heyninck@agsolution.be

  6. Tags

  7. urlquery detections

    Phishing - Microsoft Outlook

Detections

  2. urlquery

    16

  3. Network Intrusion Detection

    0

  4. Threat Detection Systems

    0

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
a1a57284.b7109115dcf087f0e7eb8004.workers.devunknownunknownNo dataNo data
secure.adnxs.com3962008-05-272012-05-222024-04-21
agsolutionregeg33.energycomercio.com.brunknownunknownNo dataNo data
mrbatatacolombia.comunknown2020-10-162020-10-172024-04-17
challenges.cloudflare.comunknown2009-02-172021-10-202024-04-22
mewilson.netunknown2024-01-172024-02-022024-04-11
outlook.office365.com512005-06-202013-04-112021-03-15
r4.res.office365.com1802005-06-202017-03-032024-04-22

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


JavaScript (184)

HTTP Transactions (38)

URLIPResponseSize
secure.adnxs.com/clktrb?id=704169&redir=//Agsolutionregeg33.energycomercio.com.br/x2/v23/Agsolution/ZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ==//Agsolutionregeg33.energycomercio.com.br/x2/v23/Agsolution/ZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ==
185.89.210.90 0 B
secure.adnxs.com/bounce?%2Fclktrb%3Fid%3D704169%26redir%3D%2F%2FAgsolutionregeg33.energycomercio.com.br%2Fx2%2Fv23%2FAgsolution%2FZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ%3D%3D%2F%2FAgsolutionregeg33.energycomercio.com.br%2Fx2%2Fv23%2FAgsolution%2FZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ%3D%3D
185.89.210.90 0 B
agsolutionregeg33.energycomercio.com.br/x2/v23/Agsolution/ZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ==//Agsolutionregeg33.energycomercio.com.br/x2/v23/Agsolution/ZWxsZW4uaGV5bmluY2tAYWdzb2x1dGlvbi5iZQ==
192.185.214.195 0 B
mrbatatacolombia.com/REDIRECT/9KHWFL/ellen.heyninck@agsolution.be
192.211.56.74 1.9 kB
challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback
104.17.2.184 0 B
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
104.17.2.184 61 B
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/878c7c2f88e3b4f4/1713860959024/BGfrrAsA_3CxW4W
104.17.2.184 61 B
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/878c7c2f88e3b4f4/1713860959025/35a02759aa00aa4507892729b9f3ff7ad5872ae2ef617343a7035f4b42eb17de/M6MZo-hBYTbkepC
104.17.2.184 1 B
mewilson.net/?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL21ld2lsc29uLm5ldCIsImRvbWFpbiI6Im1ld2lsc29uLm5ldCIsImtleSI6IjZaa2hHR2Y4b2lyMSIsInFyYyI6ImVsbGVuLmhleW5pbmNrQGFnc29sdXRpb24uYmUiLCJpYXQiOjE3MTM4NjA5NjYsImV4cCI6MTcxMzg2MTA4Nn0.jm4K7kqE602eS-62p8XtEtC8PPQow1IaRvaqSvOQyIA
5.230.73.24302 Found0 B
mewilson.net/?qrc=ellen.heyninck%40agsolution.be
5.230.73.24302 Moved Temporarily0 B
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1459834569:1713859964:femH68MjEPud-4JZTF6Tg-0QPRxnekR2Rp--4v65d40/878c7c2f88e3b4f4/90e10714cada63d
104.17.2.184 7.1 kB
mewilson.net/owa/?login_hint=ellen.heyninck%40agsolution.be
5.230.73.24302 Found1.4 kB
mewilson.net/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_1ito3russhq-9gioj-zd4w2.css
5.230.73.24200 OK20 kB
challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=onloadTurnstileCallback
104.17.2.184 730 kB
outlook.office365.com/owa/prefetch.aspx
40.99.215.34200 OK1.2 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif
5.230.73.24200 OK2.7 kB
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=878c7c2f88e3b4f4
104.17.2.184 179 kB
mewilson.net/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_l2bvdjfwt697xziuhxpwsg2.js
5.230.73.24200 OK179 kB
r4.res.office365.com/owa/prem/15.20.7472.44/scripts/boot.worldwide.2.mouse.js
23.36.79.43200 OK170 kB
r4.res.office365.com/owa/prem/15.20.7472.44/scripts/boot.worldwide.3.mouse.js
23.36.79.43200 OK146 kB
r4.res.office365.com/owa/prem/15.20.7472.44/resources/images/0/sprite1.mouse.png
23.36.79.43200 OK132 B
r4.res.office365.com/owa/prem/15.20.7472.44/resources/images/0/sprite1.mouse.css
23.36.79.43200 OK288 B
r4.res.office365.com/owa/prem/15.20.7472.44/resources/styles/0/boot.worldwide.mouse.css
23.36.79.43200 OK44 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/images/appbackgrounds/49-small_e58aafc980614a9cd7796bea7b5ea8f0.jpg
5.230.73.24200 OK987 B
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/images/appbackgrounds/49_7916a894ebde7d29c2cc29b267f1299f.jpg
5.230.73.24200 OK18 kB
r4.res.office365.com/owa/prem/15.20.7472.44/scripts/boot.worldwide.0.mouse.js
23.36.79.43200 OK181 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/images/applogos/53_8b36337037cff88c3df203bb73d58e41.png
5.230.73.24200 OK5.1 kB
r4.res.office365.com/owa/prem/15.20.7472.44/resources/styles/fonts/office365icons.woff
23.36.79.43200 OK78 kB
r4.res.office365.com/owa/prem/15.20.7472.44/resources/styles/fonts/office365icons.woff
23.36.79.43200 OK78 kB
r4.res.office365.com/owa/prem/15.20.7472.44/scripts/boot.worldwide.1.mouse.js
23.36.79.43200 OK660 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
5.230.73.24200 OK3.7 kB
a1a57284.b7109115dcf087f0e7eb8004.workers.dev/?qrc=ellen.heyninck@agsolution.be
104.21.83.250200 OK1.2 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_ppassword_f7b06b70c72b4590b779.js
5.230.73.24200 OK24 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js
5.230.73.24200 OK110 kB
a1a57284.b7109115dcf087f0e7eb8004.workers.dev/favicon.ico
104.21.83.250200 OK3.3 kB
mewilson.net/?dnmi7lfy0=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
5.230.73.24200 OK39 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_jHSrlUosdD1xxbmcR_lMNA2.js
5.230.73.24200 OK689 kB
mewilson.net/aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif
5.230.73.24200 OK3.6 kB