| contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 | 54.39.128.125 | 200 OK | 23 kB |
URL User Request GET HTTP/1.1contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 IP54.39.128.125:443
CertificateIssuercPanel, Inc. Subjectcontract-cpec.com FingerprintD6:4B:AD:B6:51:CE:F9:2D:AA:71:B2:AF:1B:5F:7A:4E:BC:7C:87:54 ValidityMon, 18 Mar 2024 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash9c2a5659b537927861169adcea576af3 e719dc2fa4a8c0dd25d04f09d0979de71846e7d2 70624cee73512e2e915937d7d530c0cca2be7d5c503a70ae9d7054efc6fc4c5b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 HTTP/1.1
Host: contract-cpec.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 04:08:36 GMT
Server: Apache
Keep-Alive: timeout=5, max=120
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| contract-cpec.com/navy.lk/Zimbra%20Web%20Client%20Sign%20In_files/common,login,zhtml,skin.css | 54.39.128.125 | 200 OK | 65 kB |
URL GET HTTP/1.1contract-cpec.com/navy.lk/Zimbra%20Web%20Client%20Sign%20In_files/common,login,zhtml,skin.css IP54.39.128.125:443
Requested byhttps://contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 CertificateIssuercPanel, Inc. Subjectcontract-cpec.com FingerprintD6:4B:AD:B6:51:CE:F9:2D:AA:71:B2:AF:1B:5F:7A:4E:BC:7C:87:54 ValidityMon, 18 Mar 2024 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (751) Hashf5416d4161b72df305996ea27999ef52 d80f0e572e31ef2ae421eca24184bc55c5fd308b 23560a89920f183015c822802a98baeab1c145098bbee5fe0ebdcf1ca5243f5e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /navy.lk/Zimbra%20Web%20Client%20Sign%20In_files/common,login,zhtml,skin.css HTTP/1.1
Host: contract-cpec.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 04:08:36 GMT
Server: Apache
Last-Modified: Tue, 16 Apr 2024 06:32:15 GMT
Accept-Ranges: bytes
Content-Length: 65214
Keep-Alive: timeout=5, max=119
Connection: Keep-Alive
Content-Type: text/css
|
|
| contract-cpec.com/navy.lk/srillanka_image.PNG | 54.39.128.125 | 200 OK | 6.5 kB |
URL GET HTTP/1.1contract-cpec.com/navy.lk/srillanka_image.PNG IP54.39.128.125:443
Requested byhttps://contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 CertificateIssuercPanel, Inc. Subjectcontract-cpec.com FingerprintD6:4B:AD:B6:51:CE:F9:2D:AA:71:B2:AF:1B:5F:7A:4E:BC:7C:87:54 ValidityMon, 18 Mar 2024 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
File typePNG image data, 247 x 60, 8-bit/color RGBA, non-interlaced Hash0d82d3af8de68a121a5b75f98f9afa03 36a875d049d2617aca4f48a8132d45d7ebb2fc5e 91c426b3a4ddb825f37d0ac810b94cb15c7a8d47a9d80bbbd29621f0002b2daf
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /navy.lk/srillanka_image.PNG HTTP/1.1
Host: contract-cpec.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 04:08:36 GMT
Server: Apache
Last-Modified: Tue, 16 Apr 2024 11:10:01 GMT
Accept-Ranges: bytes
Content-Length: 6474
Keep-Alive: timeout=5, max=118
Connection: Keep-Alive
Content-Type: image/png
|
|
| contract-cpec.com/img/new-back-ground-image.png | 54.39.128.125 | 404 Not Found | 315 B |
URL GET HTTP/1.1contract-cpec.com/img/new-back-ground-image.png IP54.39.128.125:443
Requested byhttps://contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 CertificateIssuercPanel, Inc. Subjectcontract-cpec.com FingerprintD6:4B:AD:B6:51:CE:F9:2D:AA:71:B2:AF:1B:5F:7A:4E:BC:7C:87:54 ValidityMon, 18 Mar 2024 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/new-back-ground-image.png HTTP/1.1
Host: contract-cpec.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://contract-cpec.com/navy.lk/Zimbra%20Web%20Client%20Sign%20In_files/common,login,zhtml,skin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 19 Apr 2024 04:08:36 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=120
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| contract-cpec.com/navy.lk/img/questionMark.png | 54.39.128.125 | 404 Not Found | 315 B |
URL GET HTTP/1.1contract-cpec.com/navy.lk/img/questionMark.png IP54.39.128.125:443
Requested byhttps://contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 CertificateIssuercPanel, Inc. Subjectcontract-cpec.com FingerprintD6:4B:AD:B6:51:CE:F9:2D:AA:71:B2:AF:1B:5F:7A:4E:BC:7C:87:54 ValidityMon, 18 Mar 2024 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /navy.lk/img/questionMark.png HTTP/1.1
Host: contract-cpec.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://contract-cpec.com/navy.lk/Zimbra%20Web%20Client%20Sign%20In_files/common,login,zhtml,skin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 19 Apr 2024 04:08:36 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=117
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| mail.navy.mil.bd/img/logo/favicon.ico | 114.130.68.195 | 200 OK | 1.2 kB |
URL GET HTTP/2mail.navy.mil.bd/img/logo/favicon.ico IP114.130.68.195:443 ASN#17806 Tire-1 IP Transit Provider of Bangladesh
Requested byhttps://contract-cpec.com/navy.lk/login.php?CeIpywqWUnFLWCBjyN=&dat=bmhxc2VjeUBuYXZ5LmxrIA==&pg=aHR0cHM6Ly9jb250cmFjdC1jcGVjLmNvbS9uYXZ5LmxrL01pbmltdW0gQ2FkZXIgUmVxdWlybWVudC5wZGYg&cetBaQUOWeHdVfCO&zks0 CertificateIssuerDigiCert Inc Subjectmail.navy.mil.bd Fingerprint65:F0:9A:AF:ED:ED:C8:2E:FE:BA:40:8F:F5:D6:8A:E2:98:A6:63:57 ValidityThu, 25 Jan 2024 00:00:00 GMT - Thu, 02 Jan 2025 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8c7d1c14e4b9c42f07bd6b800d93b806 87e49826ffb3bc1ddac38feebb6bb98eaef568b2 1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
GET /img/logo/favicon.ico HTTP/1.1
Host: mail.navy.mil.bd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://contract-cpec.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 19 Apr 2024 04:09:08 GMT
content-type: image/x-icon
content-length: 1150
x-frame-options: SAMEORIGIN
expires: Sun, 19 May 2024 05:09:08 GMT
cache-control: public, max-age=2595600
last-modified: Fri, 01 Dec 2023 12:16:30 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|