Report - onecapitalschoicebank.com/

Report Overview

Submitted URL
onecapitalschoicebank.com/
IP
176.123.0.55
ASN
#200019 Alexhost Srl
Submitted
2024-05-04 06:22:40
Access
public
Website Title
OneCapitalChoice Bank - Home
Final URL
onecapitalschoicebank.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	1.5 kB	43 kB	216.58.207.227
translate.googleapis.com	1005	2005-01-25	2012-05-31	2024-05-03	1.7 kB	75 kB	142.250.74.74
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04	2024-05-03	539 B	2.2 kB	142.250.74.106
translate.google.com	1156	1997-09-15	2012-05-30	2024-05-02	938 B	92 kB	216.58.211.14
onecapitalschoicebank.com	unknown	unknown	No data	No data	44 kB	2.3 MB	176.123.0.55
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	491 B	1.9 kB	142.250.74.106
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-05-03	2.2 kB	14 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed
2024-05-04	medium	onecapitalschoicebank.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	onecapitalschoicebank.com/assets/templates/basic/js/lib/wow.min.js	8.4 kB	2023-03-07	2024-05-17
Pretty URL onecapitalschoicebank.com/assets/templates/basic/js/lib/wow.min.js IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-05-17 23:25:54 Times Seen4039 Hash 36050285bfeeb7395752f0f9bbc08273 5924f7bbbf1dfa3f0926851d01f782f23a59e805 0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69 Loading...

	onecapitalschoicebank.com/	329 B	2023-03-25	2024-05-04
Pretty URL onecapitalschoicebank.com/ IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-25 22:21:41 Last Seen2024-05-04 08:22:47 Times Seen18 Hash 0d46d849c75ad92a8471dd545cdf2dd2 8de187748f8712566f19ace0df28185ee3a125cc 220c72cb3c5a8fedb5bc4d2c04476f14af8ee83e342081362de3bb901f5fc096 Loading...

	onecapitalschoicebank.com/	819 B	2024-05-04	2024-05-04
Pretty URL onecapitalschoicebank.com/ IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 08:22:47 Last Seen2024-05-04 08:22:47 Times Seen1 Hash 0eeed7a58768e7ed1f16f11fc8c2e444 a38017702600650f5a6146048702d39555b48e92 5f0625d609c6cad54b849590422c3239baa8c5d2e91241bd97418728d8b5b6d2 Loading...

	onecapitalschoicebank.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js	81 kB	2023-03-07	2024-05-15
Pretty URL onecapitalschoicebank.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2024-05-15 23:54:33 Times Seen501 Hash a3b0a9f767ac0014b919593207a08b27 cd42a3722f0d90bfed00cb2e9be372b07aa8562f 886a0d1005f4d663e11473c81ea20b2b9d618372313df55223d2c571dffc5698 Loading...

	onecapitalschoicebank.com/assets/global/js/iziToast.min.js	18 kB	2023-03-07	2024-05-17
Pretty URL onecapitalschoicebank.com/assets/global/js/iziToast.min.js IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:25 Last Seen2024-05-17 16:11:36 Times Seen700 Hash a05a127c793145cec6b721f14fced3e5 5d753b1c803de12f4d2217ab0d143d4dcf047010 ac860be79a4cfe434ea68f002638f79371d9a85a3b045a1aaf10dc98df551497 Loading...

	onecapitalschoicebank.com/assets/templates/basic/js/lib/slick.min.js	43 kB	2023-03-07	2024-05-18
Pretty URL onecapitalschoicebank.com/assets/templates/basic/js/lib/slick.min.js IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:34 Last Seen2024-05-18 08:13:20 Times Seen35443 Hash d5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740 Loading...

	onecapitalschoicebank.com/assets/templates/basic/js/lightcase.js	54 kB	2023-03-07	2024-05-15
Pretty URL onecapitalschoicebank.com/assets/templates/basic/js/lightcase.js IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:15 Last Seen2024-05-15 23:54:33 Times Seen80 Hash bcb8b4bf4540610376d7264f3548abb1 ea8d9142646ff5ffbcda2a1cc17c7df1add52632 d67b17de1379089afa66d726f59b8c2466f6da628396b5fa626099975b412b4f Loading...

	onecapitalschoicebank.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=AAM/d=1/rs=AN8SPfrdL42lD7iOsFcyX54sihEfBzX4rw/m=el_conf	89 kB	2024-05-04	2024-05-04
Pretty URL onecapitalschoicebank.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=AAM/d=1/rs=AN8SPfrdL42lD7iOsFcyX54sihEfBzX4rw/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:22:47 Last Seen2024-05-04 08:22:47 Times Seen2 Hash d1692bb470ff4b25d431fe825628b3fe b2aa5070d906c7a8898f3d3305d6375603a71acb 70d986f6da11f431ad226d7f9b08dce263a22e39d3afde0b313ada63ce5d7c36 Loading...

	onecapitalschoicebank.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-18
Pretty URL onecapitalschoicebank.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-05-18 07:34:13 Times Seen14359 Hash b61aa6e2d68d21b3546b5b418bf0e9c3 9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7 f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b Loading...

	onecapitalschoicebank.com/assets/templates/basic/js/app.js	5.0 kB	2023-03-07	2024-05-15
Pretty URL onecapitalschoicebank.com/assets/templates/basic/js/app.js IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:15 Last Seen2024-05-15 23:54:33 Times Seen18 Hash 010de18f8f6e7996425e02648dfa5a44 c9308cfb2d3e699b4a7f8b5ea2f3ff5fa57a1b5d 1f6985d708c1d38ad6096f7b1abf804a1cef14788337562437c4b95cc622f50c Loading...

	onecapitalschoicebank.com/	966 B	2024-05-04	2024-05-04
Pretty URL onecapitalschoicebank.com/ IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 08:22:47 Last Seen2024-05-04 08:22:47 Times Seen1 Hash c398784c86dea95ac87a0931597914af 971bd675220f2a7d8efedf85e746f57d3c24489c 8e4b1528dba213502b73e80923ed4edb3b496e10682aaea31e6b9ba320bd8721 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main	210 kB	2024-05-02	2024-05-06
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 21:39:42 Last Seen2024-05-06 19:41:31 Times Seen97 Hash 605f56f43acc68919c70135617d4d7f5 b8378f17248b2beb8ad28dc47d89d570917752eb a91e9b2563b0fcf3155dd2afb6a8f88dcee2fb654ce55cc1cb0436e1fe024bac Loading...

	onecapitalschoicebank.com/	501 B	2023-03-07	2024-05-15
Pretty URL onecapitalschoicebank.com/ IP 176.123.0.55 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:05:15 Last Seen2024-05-15 23:54:32 Times Seen11 Hash 02027638ba6d86ce44b36f66bf4747f8 a4b60ea384d4547816863e9fbf3a8340d6cb0758 b3c8375cba0dfd152213bbed763a3d50943a105a09581227f30f2949dc3ac522 Loading...

		Size	First Seen	Last Seen
	#1 Write - 257d49463eeec3d54ec1746b4c93362e	3.0 kB	2023-12-04	2024-05-06
Pretty Observations First Seen2023-12-04 22:37:12 Last Seen2024-05-06 19:41:31 Times Seen218 Hash 257d49463eeec3d54ec1746b4c93362e 96149ec43996ef38de4cb2f0501d1a2f8e2834c3 e79ec683492f3ada142c6dda65bfe1eee30b29eb2c8fd7baf00fcca3afc79f71 Loading...

HTTP Transactions (51)

URL IP Response Size

onecapitalschoicebank.com/assets/images/logoIcon/logo.png

176.123.0.55

200 OK

9.3 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/logoIcon/logo.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 489 x 100, 8-bit/color RGBA, non-interlaced
Size
9.3 kB (9308 bytes)
Hash
c2583db088c53391d37211e99a9e72b1
c237a9bcb355f8d3c702b61380ea9d9d83433d61
089e16284f2c873bc109daa9581fc7b30d1aaa83ee7c517c6d53c33185897ee2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/logoIcon/logo.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 9308
last-modified: Mon, 06 Jun 2022 03:57:08 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-1.png

176.123.0.55

200 OK

59 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-1.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 6004 x 1204, 8-bit/color RGBA, non-interlaced
Size
59 kB (59376 bytes)
Hash
4213c49e0f4f7bcd45fd28aee8c741c3
2517c2565746c672462c1a1447f0a051b7879421
152525ccecdefe278523c6a5202fbcfd2dbf8e84eb27731c7c01bf37d8a4a2fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/images/elements/white-wave-1.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 59376
last-modified: Thu, 08 Jul 2021 15:05:48 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-2.png

176.123.0.55

200 OK

58 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-2.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 6004 x 1204, 8-bit/color RGBA, non-interlaced
Size
58 kB (57488 bytes)
Hash
77bafa6973a2db4e9444b838fbd0d87c
63869b30fe2b30988b709d4a5c5066ce1657c6dc
d8ad124882205653f68573919b090d44e05347407e0ec391549d125662039ad9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/images/elements/white-wave-2.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 57488
last-modified: Thu, 08 Jul 2021 15:07:14 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/partner_section/61000a7d441c71627392637.png

176.123.0.55

200 OK

8.5 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/partner_section/61000a7d441c71627392637.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced
Size
8.5 kB (8458 bytes)
Hash
c877e8b5534009a7aac53fcb7217e66e
6ad35a577de49962abd058278b12587dd3b2d0d0
4f7d94e0dd5f6737eb084b795f4127cee3277b05c0654ff4ac67207d68ee8c0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/partner_section/61000a7d441c71627392637.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 8458
last-modified: Tue, 27 Jul 2021 16:30:38 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/partner_section/610009d71ce7c1627392471.png

176.123.0.55

200 OK

18 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/partner_section/610009d71ce7c1627392471.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced
Size
18 kB (17642 bytes)
Hash
48474ca587ee60b0062fdd6aa5fcf985
e8bd5dda72f30442c9ba24d0239508298c4780ae
44198e2d044c09a6bfcb047f11357733414427f99b345470e3fdf3533013b2b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/partner_section/610009d71ce7c1627392471.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 17642
last-modified: Tue, 27 Jul 2021 16:27:52 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/partner_section/61000905dec851627392261.png

176.123.0.55

200 OK

11 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/partner_section/61000905dec851627392261.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced
Size
11 kB (10775 bytes)
Hash
29144dbcd11e7118d6dd93655972d439
d781796492b077fc7a5afad14f369a0200a20b20
6db34574280a11f0fdb7ca3b0ea719f3a35dff8818dc731870b7c69acae8d419

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/partner_section/61000905dec851627392261.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 10775
last-modified: Tue, 27 Jul 2021 16:24:22 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/partner_section/610008c8078b71627392200.png

176.123.0.55

200 OK

10 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/partner_section/610008c8078b71627392200.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced
Size
10 kB (10408 bytes)
Hash
69f643384060be63fbfe50a58d678194
142c57e2ca30c4ede10c6de25c850e94380bb7e1
a2644abc6be0a478e74cc75219bf2fee36b1778f3da7d62d2b34e34005b2eb32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/partner_section/610008c8078b71627392200.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 10408
last-modified: Tue, 27 Jul 2021 16:23:22 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/partner_section/6100088e88e2d1627392142.png

176.123.0.55

200 OK

18 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/partner_section/6100088e88e2d1627392142.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced
Size
18 kB (17998 bytes)
Hash
a3b2bb8ce3985dea5cf169c2c4ed8d2e
0b546d003c2e1aa1b428d9e307f1053d1280b7d8
3838ee068c2be9fbe063809e683af351ce50583cc495935386db6656dfdc2404

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/partner_section/6100088e88e2d1627392142.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 17998
last-modified: Tue, 27 Jul 2021 16:22:24 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/partner_section/6100084858a641627392072.png

176.123.0.55

200 OK

14 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/partner_section/6100084858a641627392072.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced
Size
14 kB (14362 bytes)
Hash
b324018888ce5474385bd9a8b56a6e10
77a8a0df43dfe5c4a171f554b1adf776b14cfc5f
e07476c154a007b6dc661644aa5944e81a98321a70bd1f242388394af3267057

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/partner_section/6100084858a641627392072.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 14362
last-modified: Tue, 27 Jul 2021 16:21:14 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/partner_section/610007f09805f1627391984.png

176.123.0.55

200 OK

14 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/partner_section/610007f09805f1627391984.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced
Size
14 kB (14528 bytes)
Hash
2c16441295525a98adc44b749b309170
2770cd0199175a8b06cb4e0a36e701c5274c46ab
4aa64b08e747a2334f63f72d95b0ad5c8d1cc9e2bf3c3502f7b9e001621c14f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/partner_section/610007f09805f1627391984.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 14528
last-modified: Tue, 27 Jul 2021 16:19:46 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/about/60c75675a19651623676533.jpg

176.123.0.55

200 OK

69 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/about/60c75675a19651623676533.jpg
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 650x485, components 3
Size
69 kB (68783 bytes)
Hash
16022d87e87bf4b4cd7fbbba9e92a6a3
447aebe710e1cfa0e6041bb9def2edb27242d643
51392f2fe402f539f56dceb1ad1cc44d41bff45df00b281b869e8c4950703548

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/about/60c75675a19651623676533.jpg HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/jpeg
content-length: 68783
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
1.2 kB (1222 bytes)
Hash
db15baa85e7cec8919d1c4a70d3d2a08
3f5fc176066b635ec0c7011d466e93673680365d
22201da9fb8c3c93ab4c2e0a38abcf4673811476406c756a005f2683c6829b16

HTTP Headers

GET /css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 06:22:13 GMT
date: Sat, 04 May 2024 06:22:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/global/js/iziToast.min.js

176.123.0.55

200 OK

5.6 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/global/js/iziToast.min.js
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
5.6 kB (5598 bytes)
Hash
c4742c4b59c800493361a91114602563
ae19b893fd42003afdf9bc7034314b11ef2cb13e
47a1f04bdf0b0bf59cd6cd8c9463762ce624986c77d05ac899b7cd1f4bd5ce4b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/global/js/iziToast.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 30 Jun 2021 02:57:44 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/global/css/iziToast.min.css

176.123.0.55

200 OK

20 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/global/css/iziToast.min.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
20 kB (19722 bytes)
Hash
78cb5b3607d3e156b3669351826d9d63
6c2ce0db3330a13119ccff3b64ed7267c18e4fe1
2fad4b8114a9167d1193ec1bca875960656a7fb89e01c3b8e0143852347c6836

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/global/css/iziToast.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 30 Jun 2021 02:57:44 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/js/lightcase.js

176.123.0.55

200 OK

22 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/js/lightcase.js
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
22 kB (21650 bytes)
Hash
03def6c9c5d398b98b722de29cf64881
ad1afa2ddc84df13c29b3190830cae4df7b9ce51
e1234c3426503cac50f0e7e5d1a7e7d64d5902d79410e31ca645d1c2d431371d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/js/lightcase.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:13 GMT
expires: Sat, 03 May 2025 16:31:13 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 49861
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js

176.123.0.55

200 OK

400 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
400 kB (400273 bytes)
Hash
0f9cd907fbb72ea322dbde3c8daea34e
2a2bf268c3d547608253cb4c6602b41509f712cc
bb670657a78a42dd0ffb3ff616e281050c74ebda6000048f0dd7b656e42b42ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/js/lib/jquery-3.5.1.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/why_choose/60d497b25b98a1624545202.jpg

176.123.0.55

200 OK

314 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/why_choose/60d497b25b98a1624545202.jpg
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 1920x1280, components 3
Size
314 kB (313811 bytes)
Hash
2e8d31e0bead1bdde573b8de0a7b560e
a72c57c6bdcc1f3d22912aee979cdf4ff018c1a7
551b9ff72ef7ccdf2c6c9b84b685149296deddc3b6d284db9918081d5de0845a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/why_choose/60d497b25b98a1624545202.jpg HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: image/jpeg
content-length: 313811
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/js/lib/slick.min.js

176.123.0.55

200 OK

52 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/js/lib/slick.min.js
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
52 kB (51956 bytes)
Hash
772214e5ecdb82fa3998e6176c404a50
eba964254a4aeebc6222dba110beaac3b5419ffb
45f7d5224055d88ae548b260c5295bab9b38b54277e6cd4be0eeeccb3fa99b87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/js/lib/slick.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 22:40:35 GMT
expires: Fri, 02 May 2025 22:40:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 114099
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-solid-900.woff2

176.123.0.55

200 OK

79 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-solid-900.woff2
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 79444, version 331.524
Size
79 kB (79444 bytes)
Hash
b15db15f746f29ffa02638cb455b8ec0
75a88815c47a249eadb5f0edc1675957f860cca7
7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 79444
last-modified: Thu, 01 Jul 2021 15:35:22 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/js/app.js

176.123.0.55

200 OK

23 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/js/app.js
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
23 kB (22927 bytes)
Hash
2a0342664b61f043cb19b909fca274b8
451d1dfddcb227e743192d41c13c06a25264b322
30e1e72ea37c9e9268ce05620401e6fb8935dd02abfae517f0dea12d3646aecb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/js/app.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 17 Jul 2021 10:16:56 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/exo/v21/4UaOrEtFpBISc36j.woff2

216.58.207.227

200 OK

21 kB

URL GET HTTP/2
fonts.gstatic.com/s/exo/v21/4UaOrEtFpBISc36j.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21400, version 1.0
Size
21 kB (21400 bytes)
Hash
a4f30d3991eed8f78531c584a3355b55
d9abd700bd57cd2a35bf3ab4280af18d6712dbd5
533560ab5ad5c4f2c81404249e7277e57c2ea8e434b5a4965932d93ad5fc56d8

HTTP Headers

GET /s/exo/v21/4UaOrEtFpBISc36j.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21400
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 08:53:17 GMT
expires: Sat, 03 May 2025 08:53:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:48:44 GMT
content-type: font/woff2
age: 77337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/fonts/la-solid-900.woff2

176.123.0.55

200 OK

97 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/fonts/la-solid-900.woff2
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 96752, version 1.0
Size
97 kB (96752 bytes)
Hash
36fc297902c9a2e857858baa6ac25f2c
89d9531c0c70a8751dff83c1917baab1f16a2071
10a68e01209d939afa9318ee71601b0a6e10f025d4cd6d98a492d340b73941fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/fonts/la-solid-900.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/line-awesome.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 96752
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-regular-400.woff2

176.123.0.55

200 OK

14 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-regular-400.woff2
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13584, version 331.524
Size
14 kB (13584 bytes)
Hash
c20b5b7362d8d7bb7eddf94344ace33e
260bb01acd44d88dcb7f501a238ab968f86bef9e
6a8c8e9e1e7f692c21af1956de163f3d026778e6449fe93a09a671847ca1ae65

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 13584
last-modified: Thu, 01 Jul 2021 15:35:22 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-brands-400.woff2

176.123.0.55

200 OK

77 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-brands-400.woff2
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 76612, version 331.524
Size
77 kB (76612 bytes)
Hash
a06da7f0950f9dd366fc9db9d56d618a
509988477da79c146cb93fb728405f18e923c2de
5d9190292acdd48ba0fc35080f7e7448f3cdf0d79199a4d23f0f49b5341fdf29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 76612
last-modified: Thu, 01 Jul 2021 15:35:22 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main

142.250.74.74

200 OK

73 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2297)
Size
73 kB (72608 bytes)
Hash
605f56f43acc68919c70135617d4d7f5
b8378f17248b2beb8ad28dc47d89d570917752eb
a91e9b2563b0fcf3155dd2afb6a8f88dcee2fb654ce55cc1cb0436e1fe024bac

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 72608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:14:19 GMT
expires: Fri, 02 May 2025 17:14:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 May 2024 19:12:22 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 133675
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/logoIcon/logo.png

176.123.0.55

200 OK

9.3 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/logoIcon/logo.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 489 x 100, 8-bit/color RGBA, non-interlaced
Size
9.3 kB (9308 bytes)
Hash
c2583db088c53391d37211e99a9e72b1
c237a9bcb355f8d3c702b61380ea9d9d83433d61
089e16284f2c873bc109daa9581fc7b30d1aaa83ee7c517c6d53c33185897ee2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/logoIcon/logo.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:14 GMT
content-type: image/png
content-length: 9308
last-modified: Mon, 06 Jun 2022 03:57:08 GMT
expires: Wed, 03 Jul 2024 06:22:14 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png

142.250.74.35

200 OK

910 B

URL GET HTTP/3
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced
Size
910 B (910 bytes)
Hash
efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 07:21:52 GMT
expires: Sat, 03 May 2025 07:21:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/png
vary: Origin
age: 82822
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/3
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
SVG Scalable Vector Graphics image
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:32:19 GMT
expires: Sat, 03 May 2025 11:32:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 67795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:13:15 GMT
expires: Fri, 02 May 2025 02:13:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 187739
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.106

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 04 May 2024 06:22:15 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=513=AGcA_QOQyYMDNCmGJhCian-TWY6c-ZDud_oBQqTl4aAkZyh2mp_g-xDVa2hz8-p9xnKO_ItTRJAac4qGEGuXgzOxKuwyl4H8-Ito4GdD9vfoFphZZkFvIaI4aXrhJr3aGqAWwlQ9YkEOPP3teD85iDIWFcybcLojHEaguXJbWis; expires=Sun, 03-Nov-2024 06:22:15 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
expires: Sat, 04 May 2024 06:22:15 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

onecapitalschoicebank.com/assets/templates/basic/css/main.css

176.123.0.55

200 OK

15 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/main.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
15 kB (14757 bytes)
Hash
e72968ee11d1f8c67daa4f5a5db6e014
034ca0ea660c7667763aafed778265a47b4a1f2b
c920b1029c7ffc0e65303aa14e30b3d5eba85374c71be8f645eead6960c222e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/main.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 07 Sep 2021 13:33:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:13 GMT
expires: Sat, 03 May 2025 16:31:13 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 49862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

onecapitalschoicebank.com/assets/images/logoIcon/favicon.png

176.123.0.55

200 OK

14 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/logoIcon/favicon.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Size
14 kB (13572 bytes)
Hash
1ec43eeea478e0bd5388863999134bb4
36fff49b90994546c9793d789cd342b215b9e438
5f078cbffed13783f38340c213a36aa2ff2ee34f5a6044808d2651fa3991e2b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/logoIcon/favicon.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:14 GMT
content-type: image/png
content-length: 13572
last-modified: Tue, 10 Aug 2021 15:23:36 GMT
expires: Wed, 03 Jul 2024 06:22:14 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.74

200 OK

0 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://onecapitalschoicebank.com/
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://onecapitalschoicebank.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 04 May 2024 06:22:24 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.74

200 OK

131 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://onecapitalschoicebank.com/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 1186
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://onecapitalschoicebank.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 04 May 2024 06:22:25 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

onecapitalschoicebank.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js

176.123.0.55

200 OK

81 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65293)
Size
81 kB (80821 bytes)
Hash
a3b0a9f767ac0014b919593207a08b27
cd42a3722f0d90bfed00cb2e9be372b07aa8562f
886a0d1005f4d663e11473c81ea20b2b9d618372313df55223d2c571dffc5698

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/js/lib/bootstrap.bundle.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/css/line-awesome.min.css

176.123.0.55

200 OK

90 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/line-awesome.min.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
90 kB (89768 bytes)
Hash
83990816d866ab76b13d84ace2719131
766d43778e58361f7a4afacaba0522acd43235db
bea206623c78b4e67179f151e75883719faf521e192add54d14570dfebf4e032

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/line-awesome.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/css/lib/slick.css

176.123.0.55

200 OK

1.8 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/lib/slick.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1895), with no line terminators
Size
1.8 kB (1776 bytes)
Hash
b3f4dd9bd98c76eb638e0cc6d0184721
2fbbc2e81bf1ac6dde9bf24c013524df1973480a
b2dce8f0973f7debc99cd2dfb90f65f37004c26c81a131def9cefa00c7fa00dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/lib/slick.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/css/custom.css

176.123.0.55

200 OK

4.5 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/custom.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4926), with no line terminators
Size
4.5 kB (4461 bytes)
Hash
430e8d7b84a26db4dbaa86da932debd0
970e2b9c561c41bf788fe613140a31e9e2e882c2
08f1df64a5602550e238e61b8444a26fae45eb0c39890eeb65af8b484fc94dc8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/custom.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 06 Sep 2021 23:08:44 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/js/lib/wow.min.js

176.123.0.55

200 OK

8.4 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/js/lib/wow.min.js
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (8515), with no line terminators
Size
8.4 kB (8415 bytes)
Hash
da4ec6a3e988677b1eff06cb90e95927
4083d1ec23a24f9f0eeb025501b9806b567249aa
85a9285b248eb56c2268288cfcea3ea7806c912ebb82d256fcd7c4e5b7e9c740

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/js/lib/wow.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/images/elements/right-arrow.png

176.123.0.55

200 OK

41 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/images/elements/right-arrow.png
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
PNG image data, 2133 x 2133, 8-bit/color RGBA, non-interlaced
Size
41 kB (41392 bytes)
Hash
6d7b1621cc6394dad52ed3b5190e158e
3f40b5943730289de46cd8187b84a7256dc1a6a9
450653504df54779e11ce8db2e6c0ae6223c9e6ce17da46ea9efd8efdb66c8fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/images/elements/right-arrow.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/main.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: image/png
content-length: 41392
last-modified: Thu, 08 Jul 2021 12:25:38 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/

176.123.0.55

200 OK

52 kB

URL User Request GET HTTP/2
onecapitalschoicebank.com/
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type

Size
52 kB (51649 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:11 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; expires=Sat, 04-May-2024 08:22:11 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D; expires=Sat, 04-May-2024 08:22:11 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/css/all.min.css

176.123.0.55

200 OK

59 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/all.min.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (58392)
Size
59 kB (58578 bytes)
Hash
76cb46c10b6c0293433b371bae2414b2
0038dc97c79451578b7bd48af60ba62282b4082b
876d023d9d10c97941b80c3b03e2a5b94631ff7a4af9cee5604a6a2d39718d84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/all.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

216.58.211.14

200 OK

89 kB

URL GET HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JavaScript source, ASCII text, with very long lines (2064)
Size
89 kB (89367 bytes)
Hash
d1692bb470ff4b25d431fe825628b3fe
b2aa5070d906c7a8898f3d3305d6375603a71acb
70d986f6da11f431ad226d7f9b08dce263a22e39d3afde0b313ada63ce5d7c36

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 06:22:12 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c

176.123.0.55

200 OK

4.2 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4409), with no line terminators
Size
4.2 kB (4151 bytes)
Hash
3674886ed6c5ff4142432b52a9153a47
c2922220f6e80cb523579737a49180d9e1d4e9f4
8841c447f624b0f73095037a1b11ad590a5fe2eac8d4a473d182b39c65c98191

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: text/css;charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/images/frontend/banner/60c756944f1271623676564.jpg

176.123.0.55

200 OK

369 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/images/frontend/banner/60c756944f1271623676564.jpg
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 1920x1280, components 3
Size
369 kB (369119 bytes)
Hash
13316ccec61c1c97a8697fbad586829c
4bfbc37e1638bf41cd8663d9e49a4163c2092e78
d25aaa9ac79b4f2232df9e29e4193317e4849a0704673a4f9a985582320cccfb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/images/frontend/banner/60c756944f1271623676564.jpg HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: image/jpeg
content-length: 369119
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/css/lib/bootstrap.min.css

176.123.0.55

200 OK

153 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/lib/bootstrap.min.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type

Size
153 kB (153111 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/lib/bootstrap.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

onecapitalschoicebank.com/assets/templates/basic/css/lightcase.css

176.123.0.55

200 OK

17 kB

URL GET HTTP/2
onecapitalschoicebank.com/assets/templates/basic/css/lightcase.css
IP
176.123.0.55:443
ASN
#200019 Alexhost Srl

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuercPanel, Inc.
Subjectonecapitalschoicebank.com
FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4
ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (428)
Size
17 kB (17009 bytes)
Hash
80b7c66f2e29e454c97163847d7dbf33
e6d0e505dcd94d227f5d7e729bf8fa31cc3f4b4a
6abe037a0f81d267b7204382b790c50db94d6ea85b6103e20c7e1299b48051bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/templates/basic/css/lightcase.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2

translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20240501

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20240501
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://onecapitalschoicebank.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20240501 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
content-type: image/gif; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 06:22:15 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-KHRD1pTT0oTXlUig9mxmHA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/TranslateApiHttp/web-reports?context=eJzjEtDikmLw0pBicEqfwRoExELcHNNXXN_IJnDhyiNtAGiHCUQ"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=19.SE=l38YbydJ5xdS09he91YlPb6EXBp_UKaguItMuj7DK_K8PMqXbpJ6fS5gnSsoHQzos3CqEsI5vWLqKr__ODXYHSOTzjDDfg3dcAg03_puklkfJu0YR8r2_iGCdohXp_zHyK-riE6_ohtIauHY9a7hmIKla9z6fF5ZM4Hs5f-T1Hk; expires=Tue, 03-Jun-2025 22:40:33 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML