Report - sparkasse-push.de/jetzt-verbinden

Report Overview

Submitted URL
sparkasse-push.de/jetzt-verbinden
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-23 16:30:28
Access
public
Website Title
Login Online Banking
Final URL
sparkasse-push.de/jetzt-verbinden
Tags
sparkasse financial phishing
urlquery detections
Phishing - Sparkasse

Detections

urlquery
11
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
sparkasse-push.de	unknown	unknown	2021-04-23	2024-03-25	8.7 kB	1.4 MB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	sparkasse-push.de/assets/select2.min.js	73 kB	2023-03-07	2024-05-03
Pretty URL sparkasse-push.de/assets/select2.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:49 Last Seen2024-05-03 04:32:22 Times Seen1580 Hash 7c98b05dd4f3d7c693eb34690737f0d8 6de10e74a992fca15e803d910d130f826631cb86 f7244fff610595b944f76bf3080d74e3af42b5dd234f8f079e698cc39ac966b0 Loading...

	sparkasse-push.de/assets/jquery-3.6.0.js	289 kB	2023-03-07	2024-05-03
Pretty URL sparkasse-push.de/assets/jquery-3.6.0.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:59 Last Seen2024-05-03 15:28:54 Times Seen5821 Hash 2849239b95f5a9a2aea3f6ed9420bb88 af32f706407ab08f800c5e697cce92466e735847 1fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239 Loading...

	sparkasse-push.de/assets/jquery-ui.js	529 kB	2023-03-07	2024-05-03
Pretty URL sparkasse-push.de/assets/jquery-ui.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:43 Last Seen2024-05-03 18:07:54 Times Seen469 Hash dd5c979b802f985cefb36d3e4239977f 9f0b7689ecae90bc8d0e3ff859d8d600c4b36ee9 e97315234cc1f1c4737d98ea29c0f4d4f06c032dc5943012ae50bc4b10a92276 Loading...

HTTP Transactions (17)

URL IP Response Size

sparkasse-push.de/assets/opttan.css

188.114.96.1

200 OK

38 kB

URL GET HTTP/3
sparkasse-push.de/assets/opttan.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
gzip compressed data, from Unix
Size
38 kB (37985 bytes)
Hash
8bbbb4f639fef41e2d830da395921a2f
c237c012aae047a284eae9ca98ffd4dde9bdc59e
009cd1eed274562b3f3101ea64d5173325520280afab091c7ed30ccba9169582

HTTP Headers

GET /assets/opttan.css HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yMRqmJT0AazLlurXxyAcaDsHH%2B%2BG%2FCaLnpM5Bsl3rpn2kGGytCXmJJQxe7%2BWlYFvNYW5fOL292ghu%2Fpfo102BVHoDN0Q9oY66O0NIgpE0uDGDHftnURk35ElL1t7CGRGV8r4%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339e37129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/opsm.css

188.114.96.1

200 OK

106 kB

URL GET HTTP/3
sparkasse-push.de/assets/opsm.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
gzip compressed data, from Unix
Size
106 kB (106365 bytes)
Hash
7ae35f53cc130aa41ddf4ad49c70e191
f4980721a72f9adc36505d489c56ea97672a5f07
868b48177fe049becb6b740485d184db0778ffc27633af635efb605d4e39d6c8

HTTP Headers

GET /assets/opsm.css HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DgeFm74Kf%2F1b9zi5k%2FkFqwt7F9DCy%2BK8zNc3YvWgJ1VlpIodVozURXrYx8uj30Ntmoks9z9amisVamtetuqZLp%2FNyjQ0%2Ft4dXDvxy2qXf2eFCHC4EwRUckqhDgiMgWkBPfV4fQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339e07129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/internetfiliale/fonts/Sparkasse_web_Bd.ttf

188.114.96.1

404 Not Found

1.6 kB

URL GET HTTP/3
sparkasse-push.de/assets/internetfiliale/fonts/Sparkasse_web_Bd.ttf
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
gzip compressed data, from Unix
Size
1.6 kB (1605 bytes)
Hash
40366c6b0d225af256611e349451d545
4fc5c008bb40ea8bdbe55625902a5d20051cf4de
7dc23c89f3c8db4d9686fb9ec2657932359bc195a2f324cddd73b88980528d5f

HTTP Headers

GET /assets/internetfiliale/fonts/Sparkasse_web_Bd.ttf HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/assets/new.css
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Tue, 23 Apr 2024 16:30:03 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VhBMNqXWKTjgNQou14%2BkIHoqfS5zH%2Bb936rFa4yOPs29ImeVJK04ciAQMJB%2BIT3%2BxqFdDG3Tsz2xjwytcCLq40GKWN4SVwugtiROcmffM%2BLwW42Y97sU4OhtlYD%2F5bmgSiE5Og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 878f3c677ea87129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/new.css

188.114.96.1

200 OK

198 kB

URL GET HTTP/3
sparkasse-push.de/assets/new.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
gzip compressed data, from Unix
Size
198 kB (197503 bytes)
Hash
33fbd836f12ef5372397b61cf740812b
df18f66efda3617b73caf245ab750902ad1647be
7bb437b19eb9b9cf663626d559c71ae900cb125861ac181a8c8fa8f62c2b8aeb

HTTP Headers

GET /assets/new.css HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fw%2FRrQYYI14%2Fwwc790GvlEf1rZbQspoiSufh22iqA5e0x%2B1KiIucepS7KlRXW6VnvQHbg1yCtTwCeSuHY47SzCBHrnWHFaOhDZff8F2hq%2BBgnIqB0VBYrLiIhD5zgZxmr70vTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339de7129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/jquery-ui.js

188.114.96.1

200 OK

529 kB

URL GET HTTP/3
sparkasse-push.de/assets/jquery-ui.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
JavaScript source, ASCII text, with very long lines (1004)
Size
529 kB (529062 bytes)
Hash
dd5c979b802f985cefb36d3e4239977f
9f0b7689ecae90bc8d0e3ff859d8d600c4b36ee9
e97315234cc1f1c4737d98ea29c0f4d4f06c032dc5943012ae50bc4b10a92276

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/jquery-ui.js HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OvqZ%2FaoGoSRbARFuvSlPFu8JDLEP5mPJxtn%2BswCh5ZwEXcXfgpD1szouJ6i5xg7oEZL4wUmPKVWGeChUEkrX%2BIpyzEtKHweUKwW5ADiNKhcQfiLMMdWEqRMOsycfuL%2FSFgoyuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339ef7129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/jquery-ui.css

188.114.96.1

200 OK

36 kB

URL GET HTTP/3
sparkasse-push.de/assets/jquery-ui.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
ASCII text, with very long lines (2363)
Size
36 kB (36099 bytes)
Hash
b0f4491b037aa1c006ff72013ad22482
3ff07dd41184af4d63a08270d84d553e1a05cb7f
58a6f49e92f7d2fd1246d98c568c2ac7d6be832ddfece67ec9f7ef3332766adf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/jquery-ui.css HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:21 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDxJIn8AyfNp03V7rvw7ZOQdFath%2Bc91wIdgwmz69vT5C8GCAdrbhDrhnto%2BaE%2BMaewjpxUkAyHwlWLkb%2Fb7Hw44r1F2BuldQyUA8IKknrbBWxUkTW8Tos5sBJZfU%2FyxyEgckg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339ea7129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/internetfiliale/fonts/Sparkasse_web_Bd.woff

188.114.96.1

200 OK

37 kB

URL GET HTTP/3
sparkasse-push.de/assets/internetfiliale/fonts/Sparkasse_web_Bd.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
Web Open Font Format, TrueType, length 36892, version 2.2621
Size
37 kB (36892 bytes)
Hash
5f90fdbed7642f0f8e97ad31db27a26f
456776c5717c5f966415d7f8175c8b57c233e0b1
e9b9f03e1a75cf22118a30e0503f346e8efb6859276d418e7d1a9a07f73f7002

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/internetfiliale/fonts/Sparkasse_web_Bd.woff HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/assets/new.css
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:03 GMT
content-type: font/woff
content-length: 36892
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:03 GMT
last-modified: Wed, 11 Oct 2023 15:58:00 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3fHiWMoOsVkF49%2FdVKP5nM%2BvdAxN7gA36rDOutMwGg7e0YA3NdwNeYAI2VI0ki7R7ZKYAfhirBvBpqSoRDIhWutbhypph5ycNzLqy%2F7Cxx4JMc67vzsWw1wwzUMRs4yY7yJSLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 878f3c66addb7129-OSL
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/jetzt-verbinden

188.114.96.1

200 OK

3.8 kB

URL User Request GET HTTP/2
sparkasse-push.de/jetzt-verbinden
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (4074), with no line terminators
Size
3.8 kB (3820 bytes)
Hash
71d8add39e574393c230870effadbd85
2525e3c695d98ac9b5bd2fa47a4154d4fc63c449
7e774f04ff0a4724459229d9aa3cc835f7ffab3cd7639e46f498bab086f5b5c8

HTTP Headers

GET /jetzt-verbinden HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T2m%2FJKIhdPfXNhfKYaUAOAw%2FC2IC2WxB8WIA3IyNm4maA4QVgJRbCoFsduDGj%2FPBUbnnv3gr%2FjsJBDh0gg9F7ujnn3%2FGUGUvMz1df3ELev%2B57JtY%2BDjMIscVy%2FgOXSH4Mk811w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c609ce756ba-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

sparkasse-push.de/assets/perf-meter.css

188.114.96.1

200 OK

398 B

URL GET HTTP/3
sparkasse-push.de/assets/perf-meter.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
ASCII text, with very long lines (419), with no line terminators
Size
398 B (398 bytes)
Hash
a10d29a861b91a01fc7a6a5c5e72a263
3b857858afa94fcee26bc12386473c50d168d3ea
9f31554b4e2e69c975b2e71105c60693b721c5f59c9b4c29de678a115217ea75

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/perf-meter.css HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:32 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IEQQpLnjkwFM4sRSfGoZpIFScuzDiQE52yilX8QKs8DmgJuq8Rgbax5yfdV%2BKVydaVFwMzuWVKmJ08nRaIfLxnG59EZJb6dcVoq%2FovVL6aS0eFlMk%2FKisUTYxOVP3pwDBeG4Ow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339e67129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/favicon.ico

188.114.96.1

200 OK

4.3 kB

URL GET HTTP/3
sparkasse-push.de/assets/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
4.3 kB (4286 bytes)
Hash
96cbd1e75e96f76131d6dea46f6c84d7
a93258f218d272f11a8c68999beb901a9676ce37
489457bd142e708c03236d71f4aee3739fa5d7ecf6d6c9db2a61417b0ce0aadd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/favicon.ico HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:03 GMT
content-type: image/x-icon
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:03 GMT
last-modified: Wed, 11 Oct 2023 15:57:19 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OvZExZ5mblFzZ4%2F7%2FA%2BQlITZFTRc5tiLVFts0E7emyLhTdfhwV8Pup1eD168NjRn7%2FzCNte98z5oHCtGeeMKHfM8xHCitG8DixCZfEKiNKu9dvPDz2oSru5q98vpd3QChMMNjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c67cf3f7129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/jquery-3.6.0.js

188.114.96.1

200 OK

289 kB

URL GET HTTP/3
sparkasse-push.de/assets/jquery-3.6.0.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
JavaScript source, ASCII text
Size
289 kB (288580 bytes)
Hash
2849239b95f5a9a2aea3f6ed9420bb88
af32f706407ab08f800c5e697cce92466e735847
1fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/jquery-3.6.0.js HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:20 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ls3QyaBnZkw5OqrSQe%2F5YiBxiRwIRhnJyULits2xkJ7nOctN1t3hDLaxwg3ef2R4ns8XaUumzmKBHYfe3yYvflkBL5jR7xP%2BWSWaprW%2BUY9GUll%2BKVJEbFH25aUOsDPSyJDINQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339eb7129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/select2.min.css

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
sparkasse-push.de/assets/select2.min.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
ASCII text, with very long lines (16263)
Size
16 kB (16264 bytes)
Hash
e71c39430469a3eea74514a2b48f6536
913f9f7b9535aec790ca3ce9d6e35acfaf369993
cda4a81c187015d95ed2c71f1841540b08203cdec5fa2a7d5d1825a3c2166f8c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/select2.min.css HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o%2BXv4qkTwiAkx%2Fe%2BO5zkK8LzqVaDwOu%2BHDP%2BxkQN3j2JOU%2BW%2BI5BnoCsYErJpNP%2BFr2%2B2ldfGUGukD17DRsH0thmrQyuI9eHK0AWNBVpaK3WRQ1fiXfh5UE9afLO048gfEbX7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339f17129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/internetfiliale/fonts/Sparkasse_web_Rg.woff

188.114.96.1

200 OK

42 kB

URL GET HTTP/3
sparkasse-push.de/assets/internetfiliale/fonts/Sparkasse_web_Rg.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
Web Open Font Format, TrueType, length 41472, version 2.2097
Size
42 kB (41472 bytes)
Hash
1e97dfafb57fb87f40f5cc9941fdab7e
2df97632b25215b1befcd86999b40db1a27c03d0
0e9eb66a1b33ae648ada3c56eb55fa149c4f1b88316b5a7255ca9b076740f451

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/internetfiliale/fonts/Sparkasse_web_Rg.woff HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/assets/new.css
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:03 GMT
content-type: font/woff
content-length: 41472
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:03 GMT
last-modified: Wed, 11 Oct 2023 15:58:01 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hwnkDgq1vuoNv0oW5YHyPlCKYXZbcjX8bkl7Q%2BZIZX6vRBFm3JhF2%2B6Ftbugm0TzCmC0MH5XFXifDIrkpio2Nj%2BADPfmOorbmHShMsRfSDy1mKV6u36axoPyHjcyYoPC10%2BEhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 878f3c66add77129-OSL
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/apple-icon-72x72.png

188.114.96.1

200 OK

933 B

URL GET HTTP/3
sparkasse-push.de/assets/apple-icon-72x72.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced
Size
933 B (933 bytes)
Hash
786672c15975de08dd0abf368397a8fa
455d867dc00c8940c6f460aa240ec1fd318eb97c
33c844bc8b0556367db3f9d9ca10367b10bc95575bcf952fb3f6ebe6ac3907a0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/apple-icon-72x72.png HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:03 GMT
content-type: image/png
content-length: 933
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:03 GMT
last-modified: Wed, 11 Oct 2023 15:57:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZcKeBEqrLT3O%2BuDYWf6uMJE8%2FG7e2ItZd9e7ox6e1lkEE5Wdqle6ZDDiDh32hyidSsDr6lCVIBVjKdeMe%2Fo4Sfq7p6xf3tKBG03zVlFEtLsO2fWJH3TKklX6MiBXEbGc%2B5Mkpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 878f3c67cf487129-OSL
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/ospm_custom.css

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
sparkasse-push.de/assets/ospm_custom.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type

Size
18 kB (18250 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/ospm_custom.css HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:31 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KrNMnfbApNwlm63H6UZlxVuPL2eaIC3LmHnRGJvesMwLQ5fY7ilNXTq0x79YUzGwl71Gp%2Bsr8yQT7UcoW9tzb6ZBz2tKXiCEMfv9dMXcBgY5KAGHy6GZ%2FDoLxuHWMdKLGi5TZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339e87129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/select2.min.js

188.114.96.1

200 OK

73 kB

URL GET HTTP/3
sparkasse-push.de/assets/select2.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type

Size
73 kB (73163 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/select2.min.js HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bgj8%2Bfklk2SWvy%2BvSIB1y2dkceHSG6FzAWvalrNENJeLWnXj4biy%2FnhcQAseuyKjofDDatwEzdbsXor0HYEZuRrIT8HReFPnzzbjDW7jdX8gsiaXhOGADI3JH8dR3XWVjlK6ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339f37129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

sparkasse-push.de/assets/logo_ini.svg

188.114.96.1

200 OK

23 kB

URL GET HTTP/3
sparkasse-push.de/assets/logo_ini.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sparkasse-push.de/jetzt-verbinden
Certificate
IssuerGoogle Trust Services LLC
Subjectsparkasse-push.de
Fingerprint0E:A0:DF:E2:12:6B:01:7F:D4:23:C0:FB:05:22:4E:9A:2C:E4:B1:0E
ValidityMon, 18 Mar 2024 21:03:57 GMT - Sun, 16 Jun 2024 21:03:56 GMT

File type
SVG Scalable Vector Graphics image
Size
23 kB (22718 bytes)
Hash
b2f1fb1e28d6945a19f6102e287d8c10
e43846c4e0b5c36ffed6ad2810e6bad4f98423b5
2ee73fd1898343f28de6ed91576db74c150e7f91fd9f6767ae1c52a503a4728a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Sparkasse

HTTP Headers

GET /assets/logo_ini.svg HTTP/1.1
Host: sparkasse-push.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sparkasse-push.de/jetzt-verbinden
Cookie: PHPSESSID=a48f9982c47ce2156adb652183654e67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 23 Apr 2024 16:30:02 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Tue, 30 Apr 2024 16:30:02 GMT
last-modified: Wed, 11 Oct 2023 15:57:23 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HI5IpIygCxKx8S7DqdvXp%2FOIg7tEDkLQQuqhmCrZbOcUwbC3PRRacs7b1GwHo7AceCGu5KUpN9XWjyS8cif9BlGkgI1mSiW%2B1NbrUrb2rq%2F5MqriSLF82uEv3%2BPRZ3uhf6xOxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 878f3c6339fa7129-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (17)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3