| dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 | 172.67.133.218 | 403 Forbidden | 167 B |
URL User Request GET HTTP/3dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 IP172.67.133.218:443
CertificateIssuerGoogle Trust Services LLC Subjectdashboard-loginweb.com FingerprintD8:83:A1:3B:70:E1:A9:6A:1C:36:C8:EB:1C:60:83:4A:E1:F7:97:5C ValidityMon, 06 May 2024 12:22:12 GMT - Sun, 04 Aug 2024 12:22:11 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: 7GOSnXt_n3VoUtpqZZgXCY_HOTA=FTqeQ6rGDi6WqZVjkyFCtN5C5jg; JgWdJw3wKMqhxnyl7iCL-4zP9vQ=1716028034; Vu-qwRYr9_Zujp0cdZ7Y4dRbeyw=1716114434; jY1QvLdyjv35OazJHIsckRz5754=a0C9XQV0_W6qJdOQI3J0C2PYAhk
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 18 May 2024 10:27:22 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 18 May 2024 11:27:22 GMT
Location: https://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iru9FRtiYu34hHWU2ReUPtPNDFGjZbM69JcL3ExOxcG9vJ5pwrfFuUG18zU0ko8Uoeg1wcYaJIeZ6T%2FwAdKv653OaZ%2B8IX58BRB4r%2BLVrlKmK%2BHKM2UgcUR8Viv%2FFbUWWC0Jj15nlyQD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 885b27843e22b503-OSL
alt-svc: h2=":443"; ma=60
|
|
| dashboard-loginweb.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.5.211 | 302 Found | 0 B |
URL GET HTTP/3dashboard-loginweb.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.5.211:443
Requested byhttps://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 CertificateIssuerGoogle Trust Services LLC Subjectdashboard-loginweb.com FingerprintD8:83:A1:3B:70:E1:A9:6A:1C:36:C8:EB:1C:60:83:4A:E1:F7:97:5C ValidityMon, 06 May 2024 12:22:12 GMT - Sun, 04 Aug 2024 12:22:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 7GOSnXt_n3VoUtpqZZgXCY_HOTA=FTqeQ6rGDi6WqZVjkyFCtN5C5jg; JgWdJw3wKMqhxnyl7iCL-4zP9vQ=1716028034; Vu-qwRYr9_Zujp0cdZ7Y4dRbeyw=1716114434; jY1QvLdyjv35OazJHIsckRz5754=a0C9XQV0_W6qJdOQI3J0C2PYAhk; fMIoc7Hz_FvbT94ZEhEHqIr0668=lkLPZiL_UVgRTxwDers97UXe5XU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 18 May 2024 10:27:23 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/695da7821231/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OAWHMXuuZRR0iu8pFmONf6UC8%2FSvXEp201Qo%2FNdvC5ecujbM8qe0LiuAz9UEK5hYmuGAZVE9J3zZBzH6bOVzblVhpJ%2F4Z2mWMkgHyNtrRo3O76sCdlgpDAbvUY0pkk0LSidb9DTakIBm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 885b27858c827129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 | 104.21.5.211 | 403 Forbidden | 0 B |
URL User Request GET HTTP/3dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 IP104.21.5.211:443
CertificateIssuerGoogle Trust Services LLC Subjectdashboard-loginweb.com FingerprintD8:83:A1:3B:70:E1:A9:6A:1C:36:C8:EB:1C:60:83:4A:E1:F7:97:5C ValidityMon, 06 May 2024 12:22:12 GMT - Sun, 04 Aug 2024 12:22:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
cvcxOEH8EYeHQIurFtQN1Sgdbs: 37292541
X-Requested-with: XMLHttpRequest
X-Requested-TimeStamp:
X-Requested-TimeStamp-Expire:
X-Requested-TimeStamp-Combination:
X-Requested-Type: GET
X-Requested-Type-Combination: GET
iDA-jMBpH2boTMbdC5Z-PygNeU8: Y8-Kz67hYps1qieQKUCxewN6l0Y
Content-type: application/x-www-form-urlencoded
Content-Length: 22
Origin: https://dashboard-loginweb.com
DNT: 1
Connection: keep-alive
Referer: https://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501
Cookie: 7GOSnXt_n3VoUtpqZZgXCY_HOTA=FTqeQ6rGDi6WqZVjkyFCtN5C5jg; JgWdJw3wKMqhxnyl7iCL-4zP9vQ=1716028034; Vu-qwRYr9_Zujp0cdZ7Y4dRbeyw=1716114434; jY1QvLdyjv35OazJHIsckRz5754=a0C9XQV0_W6qJdOQI3J0C2PYAhk; fMIoc7Hz_FvbT94ZEhEHqIr0668=lkLPZiL_UVgRTxwDers97UXe5XU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 18 May 2024 10:27:23 GMT
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
set-cookie: I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; path=/; expires=Sun, 19-May-24 10:27:23 GMT; Max-Age=86400;
JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; path=/; expires=Sun, 19-May-24 10:27:23 GMT; Max-Age=86400;
ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; path=/; expires=Sun, 19-May-24 10:27:23 GMT; Max-Age=86400;
fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; path=/; expires=Sun, 19-May-24 10:27:23 GMT; Max-Age=86400;
4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw; path=/; expires=Sun, 19-May-24 10:27:23 GMT; Max-Age=86400;
x-frame-options: SAMEORIGIN
cache-control: public, max-age=0 no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UsJ77P6E8ZDkwDFaQwPtGW2DL%2BfpMvNswFBPUDWq1TJ0%2B6PlpwCFvkilkhtTYSOMEHz%2FIfzxXh1DAw9GPYKOTh7cc%2BEkqLS00FjAbA2RbxDHhYCmVxVFbhMSZHWLtYCZGURzIIAn4vPE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 885b27858c7e7129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dashboard-loginweb.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.5.211 | 302 Found | 0 B |
URL GET HTTP/3dashboard-loginweb.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.5.211:443
Requested byhttps://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 CertificateIssuerGoogle Trust Services LLC Subjectdashboard-loginweb.com FingerprintD8:83:A1:3B:70:E1:A9:6A:1C:36:C8:EB:1C:60:83:4A:E1:F7:97:5C ValidityMon, 06 May 2024 12:22:12 GMT - Sun, 04 Aug 2024 12:22:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 7GOSnXt_n3VoUtpqZZgXCY_HOTA=FTqeQ6rGDi6WqZVjkyFCtN5C5jg; JgWdJw3wKMqhxnyl7iCL-4zP9vQ=1716028034; Vu-qwRYr9_Zujp0cdZ7Y4dRbeyw=1716114434; jY1QvLdyjv35OazJHIsckRz5754=a0C9XQV0_W6qJdOQI3J0C2PYAhk; fMIoc7Hz_FvbT94ZEhEHqIr0668=lkLPZiL_UVgRTxwDers97UXe5XU; I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; 4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 18 May 2024 10:27:23 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/695da7821231/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=90%2FXeBiqVkxbTTN5mrNiK2JZ%2BEOxNPBxRvKK8%2FG6SXbZwQQwmmaWKYMffMLtGWTE3TvmOLz3U6J6y9U72WtYnP%2BKhjRo%2Bl%2FMmQECZi6Ynad5IG5fCfgNXjW2Mx9E92QH6iFYcgJJtNlP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 885b27876d4656a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dashboard-loginweb.com/cdn-cgi/challenge-platform/h/b/jsd/r/885b2786cc7956a5 | 104.21.5.211 | 200 OK | 0 B |
URL POST HTTP/3dashboard-loginweb.com/cdn-cgi/challenge-platform/h/b/jsd/r/885b2786cc7956a5 IP104.21.5.211:443
Requested byhttps://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 CertificateIssuerGoogle Trust Services LLC Subjectdashboard-loginweb.com FingerprintD8:83:A1:3B:70:E1:A9:6A:1C:36:C8:EB:1C:60:83:4A:E1:F7:97:5C ValidityMon, 06 May 2024 12:22:12 GMT - Sun, 04 Aug 2024 12:22:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/885b2786cc7956a5 HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12398
Origin: https://dashboard-loginweb.com
DNT: 1
Connection: keep-alive
Referer: https://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501
Cookie: 7GOSnXt_n3VoUtpqZZgXCY_HOTA=FTqeQ6rGDi6WqZVjkyFCtN5C5jg; JgWdJw3wKMqhxnyl7iCL-4zP9vQ=1716028034; Vu-qwRYr9_Zujp0cdZ7Y4dRbeyw=1716114434; jY1QvLdyjv35OazJHIsckRz5754=a0C9XQV0_W6qJdOQI3J0C2PYAhk; fMIoc7Hz_FvbT94ZEhEHqIr0668=lkLPZiL_UVgRTxwDers97UXe5XU; I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; 4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 18 May 2024 10:27:23 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=KhtZnZQcAjvWqpUYNy4cIxoALzaHuXWPGC0FXa9zgcI-1716028043-1.0.1.1-8tEpVNv2v1SO1Kri1OvENo4H4FREfEop3wxZZw7Zt._pwNgg3SdoMagw.MA4PAFA72DCsUZHlN8KtSp7dT3GtQ; Path=/; Expires=Sun, 18-May-25 10:27:23 GMT; Domain=.dashboard-loginweb.com; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iBQD%2BQQ%2BnrbKtCB0qYxESG%2F5eikQPiXkrCylUbz5gopcSPnoPs%2B%2Fx06SIg40zKNIeedfj5u0KJq02084nAXbyeXWUd%2BC%2FKxQxyJ3vkI3CHrq50JIpWrbLCnBpoRQAC%2BaSmP138Yw%2FJj1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 885b27886e7956a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| dashboard-loginweb.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/695da7821231/main.js | 104.21.5.211 | 200 OK | 7.9 kB |
URL GET HTTP/3dashboard-loginweb.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/695da7821231/main.js IP104.21.5.211:443
Requested byhttps://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 CertificateIssuerGoogle Trust Services LLC Subjectdashboard-loginweb.com FingerprintD8:83:A1:3B:70:E1:A9:6A:1C:36:C8:EB:1C:60:83:4A:E1:F7:97:5C ValidityMon, 06 May 2024 12:22:12 GMT - Sun, 04 Aug 2024 12:22:11 GMT
File typeJavaScript source, ASCII text, with very long lines (7890), with no line terminators Hash015681b451e7b2441c51f584b7bc88ab e0a8d763d8e950d34ee5d4afac03006efe7cc741 24e1b003d26030964b8c3de7e20d3c9db4a345e42b1632e927852cdcfd6d18ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/695da7821231/main.js HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 7GOSnXt_n3VoUtpqZZgXCY_HOTA=FTqeQ6rGDi6WqZVjkyFCtN5C5jg; JgWdJw3wKMqhxnyl7iCL-4zP9vQ=1716028034; Vu-qwRYr9_Zujp0cdZ7Y4dRbeyw=1716114434; jY1QvLdyjv35OazJHIsckRz5754=a0C9XQV0_W6qJdOQI3J0C2PYAhk; fMIoc7Hz_FvbT94ZEhEHqIr0668=lkLPZiL_UVgRTxwDers97UXe5XU; I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; 4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 18 May 2024 10:27:23 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LcG3AnEqar3kEeNiddV5LYlJmbZxbTTskUvGaFRwSQJmsIP9mNipcPpTk4qf4Ir%2FZ%2FhZRk2txku89RAa23cDmYYuiMJfKDtjGKliFrLR1bpDiJcrzg58%2Bm1aCM%2FHz5L%2F2PNn%2F2r7ZM0b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 885b27878d7356a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dashboard-loginweb.com/favicon.ico | 104.21.5.211 | 403 Forbidden | 146 B |
URL GET HTTP/3dashboard-loginweb.com/favicon.ico IP104.21.5.211:443
Requested byhttps://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501 CertificateIssuerGoogle Trust Services LLC Subjectdashboard-loginweb.com FingerprintD8:83:A1:3B:70:E1:A9:6A:1C:36:C8:EB:1C:60:83:4A:E1:F7:97:5C ValidityMon, 06 May 2024 12:22:12 GMT - Sun, 04 Aug 2024 12:22:11 GMT
File typeHTML document, ASCII text, with no line terminators Hashbcfacc6f2d2ee7cd5e014be08612f93e 7bb6f49a83b5186d5f8598e852bfbeee102d8a4d ef1a3d1af87d9d441ef37f001f2ffb6900ef0a7a4884a5ef165bc2b09e224b38
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: dashboard-loginweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dashboard-loginweb.com/truist/login.php?online_id=3500b36c9fb443176803b9047login_id=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501&session=33c37c9788c580afffdc9281ecbb650133c37c9788c580afffdc9281ecbb6501
Cookie: 7GOSnXt_n3VoUtpqZZgXCY_HOTA=FTqeQ6rGDi6WqZVjkyFCtN5C5jg; JgWdJw3wKMqhxnyl7iCL-4zP9vQ=1716028034; Vu-qwRYr9_Zujp0cdZ7Y4dRbeyw=1716114434; jY1QvLdyjv35OazJHIsckRz5754=a0C9XQV0_W6qJdOQI3J0C2PYAhk; fMIoc7Hz_FvbT94ZEhEHqIr0668=lkLPZiL_UVgRTxwDers97UXe5XU; I7sGmxxJQ6bCWZ2vf3Ey23bUWck=xGvcNAUiktZj2YWAIWEVXrdZ9fc; JaGieGiBhbptvAr3XIOY84kM8_s=1716028043; ExwjJ78AvAp1ugmoiC5J8W0YHVo=1716114443; fiL2YFmlf_uVotoKmqYlhHll1b0=EvpKBDia9TNeE-VMQnqK0KKDZIc; 4eUb6hNWOLMaS4rCsGkhGdYbVE8=FCff_w9zEi-ldZz02fDj0jySEuw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sat, 18 May 2024 10:27:23 GMT
content-type: text/html
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
cache-control: public, max-age=315360000, stale-while-revalidate=315360000, stale-if-error=315360000, immutable
pragma: public
cf-cache-status: HIT
age: 315977
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tNPfueL4ZdPe3I3HvG62bgqz%2FVzzYYZQRbcqZWm2BukJJpZq6x9HNnSg2YtnrBm3nmaACp50r8cjuDd7SgS76xaPgy0Hxhigxx6026qMxGjTHzeZ9Mz3g7t4RrYz9i%2BGr2J97sQm9o88"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 885b27876d2f56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|