Report - shopsdpty2.crossworldfreighters.com

Report Overview

Submitted URL
shopsdpty2.crossworldfreighters.com
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-09 09:45:57
Access
public
Website Title
Amazon
Final URL
shopsdpty2.crossworldfreighters.com/#/pages/login/login
Tags
amazon phishing
urlquery detections
Phishing - Amazon

Detections

urlquery
33
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
shopsdpty2.crossworldfreighters.com	unknown	unknown	No data	No data	16 kB	1.1 MB	188.114.97.1
shopsdesapi.zxbourse07.com	unknown	unknown	No data	No data	3.5 kB	11 kB	104.21.33.191
cdn.dcloud.net.cn	116868	2013-07-17	2018-09-15	2024-05-08	454 B	579 B	124.220.205.65

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	shopsdpty2.crossworldfreighters.com/static/js/pages-login-login.856eddd6.js	21 kB	2024-05-09	2024-05-09
Pretty URL shopsdpty2.crossworldfreighters.com/static/js/pages-login-login.856eddd6.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 11:46:03 Last Seen2024-05-09 11:46:03 Times Seen1 Hash 8393e8292cc875432442218bc1aedb2f 0e5fc8012c69e5014ad90efa5d9a8ef1c29d7ed2 412e1bc64ee455504ddcd4abf5dd6586415230247aa6c0b48d07cd9a2e5ba63f Loading...

	shopsdpty2.crossworldfreighters.com/	1.1 kB	2023-12-11	2024-05-20
Pretty URL shopsdpty2.crossworldfreighters.com/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-11 13:49:44 Last Seen2024-05-20 04:06:52 Times Seen7 Hash f742b6a08681ea1edd49d4208e63bab0 2579e0d12cf234fdce0e0a0fd80fefd3a557ee71 0e09269b74f2dac042910847b2d5520cb80d2f8852a009745ea7a32c7576c034 Loading...

	shopsdpty2.crossworldfreighters.com/static/js/chunk-vendors.a41c24e3.js	608 kB	2023-12-11	2024-05-20
Pretty URL shopsdpty2.crossworldfreighters.com/static/js/chunk-vendors.a41c24e3.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-11 13:49:44 Last Seen2024-05-20 04:06:53 Times Seen8 Hash 3946e319a12cc60c42e5a47f2acb3fa4 e95bf225109a4d3db6d7ce62edf588cb69d0e860 3697adad3e664431bf166aebc8e13120c6f9089cc7ca7f7c704c1b5bf93855a7 Loading...

	shopsdpty2.crossworldfreighters.com/static/js/index.36afe555.js	564 kB	2024-05-09	2024-05-09
Pretty URL shopsdpty2.crossworldfreighters.com/static/js/index.36afe555.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 11:46:03 Last Seen2024-05-09 11:46:04 Times Seen1 Hash deef6875bb96d46ba4cbe40c4be87383 24cbf1f899f5f27d1e532e8a70e923f73d434598 0dbd1275f63a7fc24df586192353bdbb26507bf4ea0f278afb55816e714df83f Loading...

	shopsdpty2.crossworldfreighters.com/static/js/pages-booking-orderInfo-orderInfo~pages-bookingRecord-bookingRecord~pages-index-index.07cd7272.js	45 kB	2024-05-09	2024-05-20
Pretty URL shopsdpty2.crossworldfreighters.com/static/js/pages-booking-orderInfo-orderInfo~pages-bookingRecord-bookingRecord~pages-index-index.07cd7272.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 11:46:04 Last Seen2024-05-20 04:06:53 Times Seen2 Hash c8dd9ee5b0b8f14b1fed52b461b9cad0 27da1e41f064bad8c6e91e85f87ad6cdecc0867a f546db4a27e44431509b3b0169540f55100e404ddcbc122717b692b59f041dfa Loading...

	shopsdpty2.crossworldfreighters.com/static/js/pages-index-index.0f3ef3d3.js	44 kB	2024-05-09	2024-05-20
Pretty URL shopsdpty2.crossworldfreighters.com/static/js/pages-index-index.0f3ef3d3.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 11:46:04 Last Seen2024-05-20 04:06:53 Times Seen2 Hash bb8e1557ef5f42f8ec278a0d8d93809b 57aa205c709aa72363da45991ff5ec97f0f4cbac 69b9633609208f5ff4f169a31aff4e07a0eaa8c5d43ced1bb029cc98a5bbac25 Loading...

	shopsdpty2.crossworldfreighters.com/static/js/pages-booking-booking~pages-booking-orderInfo-orderInfo~pages-customer-customer~pages-login-login~pa~66032216.22de2bcb.js	10 kB	2024-05-09	2024-05-20
Pretty URL shopsdpty2.crossworldfreighters.com/static/js/pages-booking-booking~pages-booking-orderInfo-orderInfo~pages-customer-customer~pages-login-login~pa~66032216.22de2bcb.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-09 11:46:04 Last Seen2024-05-20 04:06:53 Times Seen4 Hash b8864429db7b3282cd03e61c1bdc0a4b 32ec40b62b3bf0b8e5384a1392fd0e909149d09b b57e82a202e433dfe3dc14729ab186cc879fd2f82da83f4e1cda0a5d7959db4c Loading...

HTTP Transactions (39)

URL IP Response Size

shopsdpty2.crossworldfreighters.com/static/index.5ca1c9cc.css

188.114.97.1

200 OK

24 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/index.5ca1c9cc.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
gzip compressed data, from Unix
Size
24 kB (23641 bytes)
Hash
1bc2d8e444ec766be40f7d2e34e1ceb1
a4f61ba417b6ed73a6aa4d38bb7337733da95675
58d9146785abbca6fac02d171834a6b99d551c0783587214bd08323d18ca7c5b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/index.5ca1c9cc.css HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:32 GMT
content-type: text/css
last-modified: Mon, 06 May 2024 04:15:01 GMT
vary: Accept-Encoding
etag: W/"66385945-140b2"
expires: Thu, 16 May 2024 09:44:12 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GPkzSUeWg5ObEjlF37WqGlw5FIYntvrT8PkN7ebV32%2Bwfstlt1FC0WVaxT6SJ%2BikLja3TXpwji9vVAYQIA0u84GVSQLi53pHDPIrZ5xUukcLgZekS6Bt5kli%2BAtEHbkc1aGNvwgEv%2FtAR3B1O2njmTFS8OMilw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1d6ce2756bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/js/index.36afe555.js

188.114.97.1

200 OK

188 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/js/index.36afe555.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
gzip compressed data, from Unix
Size
188 kB (188496 bytes)
Hash
bddbdd2b4314a91367e500b3261af659
e9ce9ccc21e25b9d838dce1eefc1876d57c528cb
252d1e444f2de6e80457b72a3e726ef29d06efdaca1fa60d8d6ad968de4555fe

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/js/index.36afe555.js HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:31 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 04:15:01 GMT
vary: Accept-Encoding
etag: W/"66385945-89a08"
expires: Tue, 14 May 2024 17:34:41 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: HIT
age: 144572
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G%2BmQD6V8%2FM%2Bepwgxljhgila510%2B9NN41iBb4MsQllkJNWZVp1APEAv2aHhxlm4drflhZ4B%2FjIe0agnZcNToyycw7yK1W0cLo4zt4U%2BQLFgqe9OGqS35H%2FM%2Bz59s0O4UWnw%2Fb1c3%2FB89%2BDP1voDeaT%2FTPu5Gi0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1d6ce2b56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/

188.114.97.1

200 OK

11 kB

URL User Request GET HTTP/2
shopsdpty2.crossworldfreighters.com/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
CSV text
Size
11 kB (10946 bytes)
Hash
1a97df0d8b4472a86806300d519b2e53
5fba2303a88ea8e49d2ad1644707fb77a415b317
8de7448813135ccc336eafa8f3d1d8dfcfbc4f3f2a756c057cde33da82c40de6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET / HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 09:45:31 GMT
content-type: text/html
last-modified: Mon, 06 May 2024 04:15:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FIj0lwcS%2BDYdLfHuQLPRiuYchUQOWzaIX4IHSZjtOf97PsPhz6VrPp1TGsR8AWH7m9IaSkb8eEwUJjVq190LVog4HHOSNu7nOeDhtIwMrUjWO53CTwyo8%2BamO1Hy0OebMI9BodXhg%2B6nYa9YkCYNWoqNSTR7RQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1d16e30569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

shopsdpty2.crossworldfreighters.com/static/image/optiseller/3.png

188.114.97.1

200 OK

2.5 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/3.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 151 x 150, 8-bit/color RGBA, non-interlaced
Size
2.5 kB (2536 bytes)
Hash
3cbfe67748467a6bb3498957188dc6f3
ad70842a310f38532b61ed6636297838a8e515f3
423c8f446783a37163434b507aa01728c0afb9cdc5ce271ef2701d5e6f1024a8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/3.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 2536
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-9e8"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i6sO2CJKHmPupn5QYb%2BaheMuYpZ9PrgbW%2F7rkPLu%2Be7nPRimBr6fumuMCs5lDGv8cryXfLMfJKjWPk4%2FKqd4lLc6vsHUogn%2FrPr1fwo55P8mWExtgevsqY%2BqKxILRYhTY%2FuAuKfT5jdmKDhseqCCqKxX%2Ffcbmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e48e9c56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/homeActive.da16fd4e.png

188.114.97.1

200 OK

5.1 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/homeActive.da16fd4e.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 260 x 260, 8-bit/color RGBA, non-interlaced
Size
5.1 kB (5113 bytes)
Hash
afbb47a8de0e9ec4a2c3b7c57fe5b44e
124230d71c3ccf40189e7bea49c58c504d39664f
da16fd4e307dd7a8e368e367d4f41dff7322c79bdc2c4404e8cee6c0dccd26b9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/homeActive.da16fd4e.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 5113
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-13f9"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B2dOXaPjZL9OIZmcpA%2Fk%2BFXCGChj2RfkMjey71sViwkU5ggThMw1lHyq08jN9FySkzbiY54HZvBQwHUFKKcdjjq0qzKD6GNFis%2BUaUeED2cd56aocATrf02%2B95nt1CYDVfg%2Fe9RnRw2tO4NwXxRRPSsLQmR%2B%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4bee856bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab5_nor.png

188.114.97.1

404 Not Found

4.1 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab5_nor.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
4.1 kB (4138 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/tabbar/ic_tab5_nor.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 09 May 2024 09:45:34 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B9H0xmF8yGS25WyihIpIK7JEBSlt4o4SC8gKljMRkrTMxVVgHkI9KO1UTM%2BhA1he9mx5CuL58dhCYIW06nNXWfQmgKPVxie7HrIQwNu4l9hwO7yzaSTWEq3OHw58eyd%2BHh8HkWuHCn1NdNoAX63z%2BDUCTFEV6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1dfeda556bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/5.png

188.114.97.1

200 OK

4.3 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/5.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 151 x 151, 8-bit/color RGBA, non-interlaced
Size
4.3 kB (4336 bytes)
Hash
6624aecf2c1fe8449b500ab89a4b7575
15ef1c75a9469809d525b18aa44688b1bd3032a0
6122c2ac7c2f9239c12fc01967c2414161c73f1a101070a553c4decabb118a9f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/5.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 4336
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-10f0"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vLx5pHFjnJ6Orvyo04503OoGdST7DIvuJDUc0k7OZzgBXToICwxjM1fpeFJifl6DFWXJ3PjjEVzBAT74gRLwb8KQaH2EOdN4blU8qv67z0xrSZdmFmTqiNztAJGbOPCkD5mn0E%2FH5%2BloDqejlngLFZhoYVIz4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e49ea656bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/1.png

188.114.97.1

200 OK

3.4 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/1.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
Size
3.4 kB (3396 bytes)
Hash
4a2614b5b86d4d08f6ceccbeb40d0398
5e8e67ee9a58f08e16b3cf36491d220f77b746cb
7ec345de320a985f5e14a1aa7a3ae26b5c5fb4c7d8b772ce20f05d62e65005fb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/1.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 3396
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-d44"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2TRzZw3Zio85pTcRHSXF51o%2FwQHs3H0NfMp3M1p4vKajlDBEGGztpOP7az1hU9og2FLeysxiJgFfTqiBSlTOuMSwPkWf9EY45bMcxKsqz95IeEVeY5BSUWRwWz2A9JuyphlDFqPVK5YgmI5dDJXLLFKA3%2F7uXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e47e8a56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/4.png

188.114.97.1

200 OK

4.7 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/4.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 148 x 148, 8-bit/color RGBA, non-interlaced
Size
4.7 kB (4691 bytes)
Hash
b7b99283c6bdb0eb5a7cc1d3bf728a09
dd62530d6c74d20f252d6d338211e483cdb4a75e
83362c3787abc13ce3bc73672aee7f5e2a9b72b0e6e1167b4255b779b40aca22

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/4.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 4691
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-1253"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tjwqyV9fFCUwMyoclvmMSqjKlnu5z%2BIwz8t4aDeuZ9g6Z03KQtkWGF04zXXsSjLJFJBQgiySPWvRttW5nUmUp9tMmbTFrR9KaI5FkBg0DweQTd9wbTshWgKgfi5x8iTSQYByB2wdbJzWbhECkEd1RIATmVE1zw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e48e9e56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdesapi.zxbourse07.com/api/client/app/config.do?lang=pt

104.21.33.191

200 OK

2.4 kB

URL OPTIONS HTTP/2
shopsdesapi.zxbourse07.com/api/client/app/config.do?lang=pt
IP
104.21.33.191:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerLet's Encrypt
Subjectzxbourse07.com
FingerprintB8:71:3B:32:8D:F2:0E:99:80:8D:73:BB:A4:8F:11:8C:4A:DF:1F:BF
ValiditySun, 24 Mar 2024 10:47:02 GMT - Sat, 22 Jun 2024 10:47:01 GMT

File type
data
Size
2.4 kB (2441 bytes)
Hash
1b7754a07158d369c8ba217eab88c763
00ab1c010fad021c67b75072c50b84a602e77cb4
6aeaf1a37fc11fd3cef8ec15aaa212f31b3b5c605b728820cf12bc98737bf740

HTTP Headers

OPTIONS /api/client/app/config.do?lang=pt HTTP/1.1
Host: shopsdesapi.zxbourse07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://shopsdpty2.crossworldfreighters.com/
Origin: https://shopsdpty2.crossworldfreighters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PATCH, PUT, DELETE, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Sign, Token, X-timetamp, X-id, Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FR2eP%2BeExRbeANyn7Sto7z8DYVg%2Fgyww9LVWXW31c0lTQJvcYSs8sdeTDBFAMWsPqKWdo6%2FulrqSwR9QXAuNVBvVrcMDB3Znm0XbPWC18kDljxK2BgLvK3z68mhSi9%2FSxaPOU%2B%2FRY6cz94wFmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e05858b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

shopsdpty2.crossworldfreighters.com/static/image/optiseller/55.png

188.114.97.1

200 OK

6.0 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/55.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
6.0 kB (6034 bytes)
Hash
36340ed4de8e80d4261caa672fde02ea
ff6b222d18b71ededafa4cc1cd377c3c1e8afd52
e90277bb645b5c94fcfb382e87d6a1c7979c13539bd03cd5d7e924b2294ae5f4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/55.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 6034
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-1792"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N6BVKSWcnpnB1I%2Fd7WMFNXB3zsoYPj3T%2BXJSPwf41OaDqpIc5eluXWdZ6wpSYSwkYgNXFpPSzNdp2q0hIiuat4vdBbffjKk4wvqypFyVY9xTd%2FSUufJuINC7WUyw5rHYXL%2BYfdbuwilZEFisUt6LZyGKEZjz4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4cf0f56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/7.png

188.114.97.1

200 OK

4.3 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/7.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 155 x 149, 8-bit/color RGBA, non-interlaced
Size
4.3 kB (4321 bytes)
Hash
d94686e30612cb4b309f7dc64cdfb028
b0ac2fd95d3de616d7b4589d138c8d1bf352f0af
d53d0bd80e7afe46dc4b4821ad29d5fd072b231b1f3b3ee16044318430228d34

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/7.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 4321
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-10e1"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uhjWZeop1I76mhni4lLyj1qpDoW9uBveYC4kWaYiKN%2FLLgJ3%2BzFq5L3Bxx3rCkWwYCOiwp3CxMYpRyzRuzITFVQzakRP0KET0r%2Bf0pZPMCNHEkB%2B9cY4Gn4XQ33a8WSKO3OqD2U%2BuFHJ3Gxx9P95UjiFq1VVtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e49eba56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/8.png

188.114.97.1

200 OK

2.9 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/8.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2932 bytes)
Hash
c131e237607d1779bf2c4c465cbc562e
9c776263619a5c504d0ee45f4e981735d4d8126d
77ed339b9083bf1ff767c6304b8828c2d129c71fa643571a470662ec6a345c1d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/8.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 2932
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-b74"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jwBIdQ%2B0xQeSQfGnVQT8G9qG1ep%2BinInqtRFMfEvzNyR1pQbAL%2B3uSdfpefQW8Hi%2BEm9m36fFTW6xX1ZS3YTj46hA060l%2FfCrfCmxGHEVVQaXlEMvF5jViYWaCO8d60drajmNZ%2BomW3wEmlIfZqFaY7u30AvEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4aec256bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/44.png

188.114.97.1

200 OK

6.3 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/44.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
6.3 kB (6280 bytes)
Hash
df1e282a7f1738d409defc960f2c80d9
9eba7ecb53d972cf2cf19c69b99cb8a99c4415d7
b9bbf4cff756a055f9544f7e66533d6de32802b88d2500c063198d9da391a5a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/44.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 6280
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-1888"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OYOjqD%2Bi%2F4S48v7k30KaSOBveC4Xt9MbSpk9zGjGWlJPMfahW4A%2FNQ8k7d35diqFjwVhMbukbpTDd%2FpkkQ0LONE02YwPEtEwGU0KUscOWJ%2BIzMaW%2BeY2USNSqus00ZRlqu5j8sDvnhHViGCLlmvQwaSgonseTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4cf0b56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/logo.jpg

188.114.97.1

200 OK

14 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/logo.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 520x161, components 3
Size
14 kB (14241 bytes)
Hash
e1b88454210488b80fcdeac1f8f9f1fe
ca994e474c50696e56f02a3479836038b3ade441
07f1cf256c8c9b6588810d58ccc3a022548b16ec814f5f9a4db0d8c02683e37c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/logo.jpg HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/jpeg
content-length: 14241
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-37a1"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RRwDf1cdhMj%2BoDtEm2mR4UcIQmbJU8g2gsHTuxUx%2Blkn9D%2Faph%2F49yleppRA9bAZoZ9JH84azLCNro9uz6nxMmHnN%2F0BvNdE5g23C2hKQ8yUtfibxwEUhHfWPQh%2Bd19f%2BRSD%2BbFi3V5oBPRjV2QByEzpBVd%2B2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e47e8256bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/img/bg1.4be0ad99.jpg

188.114.97.1

200 OK

12 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/img/bg1.4be0ad99.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=164, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=102], progressive, precision 8, 102x164, components 3
Size
12 kB (12335 bytes)
Hash
4be0ad99d2f73b5af757eaabd3dea024
7a86e7f24dc818b21c4b856a38b6d9e632f0f925
4a06c03d086327a8a6ecc64b69bc08dc709e636534f68ee976b06a27419efe61

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/img/bg1.4be0ad99.jpg HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/jpeg
content-length: 12335
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-302f"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GaQfJeoIyKuhTZJBDgRoPWL%2BoU4BUxlbc2LMzTIMdwg3IfyB6GB0Uhxldmi8b7fauYRQyZVX0uEiTLst2BbtKBSFHOKbv%2BFWNHMPJfpeaqWhN3JOpeXblSK%2B2113Sx3I%2FeEmxyD9FAirX3UUTfiuWXNCSJnisA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4ff3856bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/img/bg3.e9233a2b.jpg

188.114.97.1

200 OK

10 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/img/bg3.e9233a2b.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=75, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=129], progressive, precision 8, 129x75, components 3
Size
10 kB (10301 bytes)
Hash
e9233a2b38ccb8178a2de26ab0389103
34611c8492fbea78abdd6dc5833fd0dc92d3f8cf
6c00c7781536512036ec878008802182da8af423d9c356abd0800464ce189f16

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/img/bg3.e9233a2b.jpg HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:35 GMT
content-type: image/jpeg
content-length: 10301
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-283d"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p25vOJ3s83rPttMsL%2BaowKEuw7txCG8FmHT3wkRkKBmZ2gDNX7qMfnBEr5475zfumXU7TriOVGVuZY3xTlc1mPMo65JILthBPqcGvmNOiyayA36YSqk1hMq3SRs2NyTEV87XSzFkGIryyyTZxCu8DUhabru1Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4ef2f56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/img/bg2.81a40c6b.jpg

188.114.97.1

200 OK

12 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/img/bg2.81a40c6b.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=163, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=102], progressive, precision 8, 102x163, components 3
Size
12 kB (12205 bytes)
Hash
81a40c6b31718b341962c4ce0d8edf8f
79540cbecfc7f326d98652cbadf5e12c0bbaa446
589706db9a2a871c187107c9015f83844c69c0f1e7eda7fe3de0d178eb056f8d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/img/bg2.81a40c6b.jpg HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:35 GMT
content-type: image/jpeg
content-length: 12205
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-2fad"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eb77wq4i4BsZPxfZIHCAYEqRoXu54eSV9y68QPajlSR8ioRUoQKDlxZ6bQdlEOK277tUa7Qzr0T8aWeKq3YQS0KNDrgYuypKuOAR%2Bw2L9DnWmZNq5jyWu2IPWFFrSiHPWJdSvV4hybRnNgGoL3CCmOi32JSMFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4ef3256bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/22.png

188.114.97.1

200 OK

1.6 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/22.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1598 bytes)
Hash
e0cbeeed81cbba74219c1913732bbd97
fdd30fcc1c85e4ef9e45e727d3d0aabb0101eb36
7ddd710540b48a3a2628356a83f5c6ee53a52f7e1640cadd2c1b08c014dfb564

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/22.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:35 GMT
content-type: image/png
content-length: 1598
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-63e"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y3x3SeGDRv%2B%2BMttAKMaMEB5As47PxZJZDeUPPczOYVXFd02ysizXtUR9gonfQkhl2XeIT6DPHaEQ%2BAUFhZC8GWXdBszCfDYvpjKyrYhYKYTJed6l7MOvVSZ%2BKRuj0mrGNOG79y4GcQkotIcj0XqPc2XxK%2BYGKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4cef756bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/33.png

188.114.97.1

200 OK

10 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/33.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 344 x 344, 8-bit/color RGBA, non-interlaced
Size
10 kB (10069 bytes)
Hash
d5e4a9af8101a0a730e35cc77ea54454
e78bb665307bc2c78b33acd5f28905b15bc01738
d950eaef1d67c63259b9022018c5cce4233e634b9d056bc82bb35e531aaa1195

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/33.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:35 GMT
content-type: image/png
content-length: 10069
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-2755"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L4R217%2BW9%2FVvMT%2FXLHGbQPIslQDxMgS7hPmaGKxCeIO6SkV76JcAc0uLr4UcaG7A3O1O7RxnyPoz6jr8MA1JroKAgc3BWPbqG85T072rdPG7KMjSkpDxGkDoxQULCUy%2Fn2NAvre7Jl4DPBCtT%2BtCNn5H7hZl%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e4cefd56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdesapi.zxbourse07.com/api/client/customer_service/info.do?lang=pt

104.21.33.191

200 OK

366 B

URL OPTIONS HTTP/3
shopsdesapi.zxbourse07.com/api/client/customer_service/info.do?lang=pt
IP
104.21.33.191:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerLet's Encrypt
Subjectzxbourse07.com
FingerprintB8:71:3B:32:8D:F2:0E:99:80:8D:73:BB:A4:8F:11:8C:4A:DF:1F:BF
ValiditySun, 24 Mar 2024 10:47:02 GMT - Sat, 22 Jun 2024 10:47:01 GMT

File type
gzip compressed data, from Unix
Size
366 B (366 bytes)
Hash
76420fb0dd4284241a55ea9c4ad37956
5ffd3847c42e7345ee6b1613c8f2b55945a4505d
3a1904b00af329343a9659001d99528ae41812a1093416ec347fd80104564b2a

HTTP Headers

GET /api/client/customer_service/info.do?lang=pt HTTP/1.1
Host: shopsdesapi.zxbourse07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: https://shopsdpty2.crossworldfreighters.com
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:35 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PATCH, PUT, DELETE, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Sign, Token, X-timetamp, X-id, Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cs%2BeocK0xqOlISZNE7ATfAczqNuOlHTpFn78xWaxYTYrekjRIdo5TH0gItsKXjv5%2F5duI7%2FK1nnniva3pejFoP8aE7iK8J3iFeld1S1fLbQTlbx43O3yNQG9zeA3TTtOcn4hlOdfgqIzzmD5Gw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e7d82e56c9-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/js/pages-index-index.0f3ef3d3.js

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/js/pages-index-index.0f3ef3d3.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
gzip compressed data, from Unix
Size
19 kB (18824 bytes)
Hash
85abe18974be72538b667138c81cfdfc
5f1a67dab54bed2b6ff1b9b40e16672e5aeb915b
4bde5955009b9556ad86b40f599e63e61dd01651e79a7935ad39d0ca843a24bf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/js/pages-index-index.0f3ef3d3.js HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 04:15:01 GMT
vary: Accept-Encoding
etag: W/"66385945-aa98"
expires: Thu, 16 May 2024 09:44:14 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EehB784ywQ1HELht81g29h7IVsBIQMWUiC%2B3H14Lj7wyU9nOAUb0oHVuvcVcpZcyQirNzqSMtBig6OKXQs4%2FwdetamA3%2FJWqoumqlyyiTnScnCanYzWcCBnuetog7PbNXrzw4FDx9AG2DO%2FdN2ZIDxvDNJE6%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1dfcd7b56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/6.png

188.114.97.1

200 OK

4.0 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/6.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 137 x 148, 8-bit/color RGBA, non-interlaced
Size
4.0 kB (4043 bytes)
Hash
651a8d8a3ade2a65c801ea0607cc1bd5
5c834c5df501cc515c2ccd36e010f2e49f87c867
56d0212019e89c69c41d527dbdcc4ad0f3b2d6829493463c7f1973780e195cda

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/6.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 4043
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-fcb"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XM4xF4nBL9epdo6DpDSZMF09hCyfvGhYJXDR5JmJ0wYIYSQ0NnsfnEtwN2rMukwB27v5sd9i6ESOzbh9s0CI2U2e8JfnuJpa7nFKOSavitDvOmkK4Lhos6kbZdbWs56asZ8DdDswuB6x3SsgkEGCqv79%2FXEiHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e49eb656bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/js/chunk-vendors.a41c24e3.js

188.114.97.1

200 OK

608 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/js/chunk-vendors.a41c24e3.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type

Size
608 kB (607548 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/js/chunk-vendors.a41c24e3.js HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:32 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 04:15:24 GMT
vary: Accept-Encoding
etag: W/"6638595c-9453c"
expires: Thu, 16 May 2024 09:44:12 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mbK9H3YxNnQUk37bxALG71LQRuhLn58oU%2BBC1JUAr%2BJlt30sd5Ap4X6J2CMlD%2FQzw1nlgyXgSTF1YkmqVsFGe99k7%2BM5EoxKh6C58kSi3TXEYyAuMRlVOiFWlqyp0QEbGti6WCbpQiNcnzPgsuK4OsOZH67%2Fgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1d6ce2956bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab4_nor.png

188.114.97.1

404 Not Found

146 B

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab4_nor.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/tabbar/ic_tab4_nor.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 09:45:33 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T3fu54ib3rJGJy%2BNLRAAaI5Uyz1XqalarkMqxeGbCvy6TDpbAyl0La3m7zNmkYkXLBsgndclopBAWYdJJnj5LGecOcEeWXmBDvPuT2CRhXzD0M8fYo7Ut7rjZTy0EWGUzadQatiPlHQZoXl2Mz1TuXxeTRsBLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1dfdd9956bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/optiseller/2.png

188.114.97.1

200 OK

2.4 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/optiseller/2.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
PNG image data, 151 x 150, 8-bit/color RGBA, non-interlaced
Size
2.4 kB (2438 bytes)
Hash
1ddd2336eb64a66d6a9f33b7ad41d384
69d45c729efae8a61205dad9363f9138cc312fb3
4ef72592223563967b112aca7db5df0dbf2d767a731eb5fab851bd5106bb4d87

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/optiseller/2.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: image/png
content-length: 2438
last-modified: Mon, 06 May 2024 04:15:01 GMT
etag: "66385945-986"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XVpfvCr9ns%2FtJ6%2Fx2tEVnln0HuVlLoP0PDvXel74HJeu%2B3ExpBTE%2BrgyCbl8ywIypARydPBHNeDzC%2FMR9%2BSfdHYWvymXWRwHfp9zP7BkrZG9N5mfk0l3iaWcbMQKpNocRNTC3JvvW4Dj5dgiJcfLW0dKv%2BEWzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e48e8e56bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdesapi.zxbourse07.com/api/client/product/items.do?lang=pt

104.21.33.191

200 OK

0 B

URL OPTIONS HTTP/2
shopsdesapi.zxbourse07.com/api/client/product/items.do?lang=pt
IP
104.21.33.191:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerLet's Encrypt
Subjectzxbourse07.com
FingerprintB8:71:3B:32:8D:F2:0E:99:80:8D:73:BB:A4:8F:11:8C:4A:DF:1F:BF
ValiditySun, 24 Mar 2024 10:47:02 GMT - Sat, 22 Jun 2024 10:47:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/client/product/items.do?lang=pt HTTP/1.1
Host: shopsdesapi.zxbourse07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://shopsdpty2.crossworldfreighters.com/
Origin: https://shopsdpty2.crossworldfreighters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PATCH, PUT, DELETE, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Sign, Token, X-timetamp, X-id, Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2iiQ8O4AU2gPTEON32tqkFZnegNsEjPMb0pXqSWrbzoRx1qWf4jLbqtAgPCsPsxlPR7SYFk0Ws5PqafAkzbzbY44BIe8d%2BLqMh919jR3%2FfSOONOiuBkaSd0yv7fwrMdCnKiY16yh1yNRPj10w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e46876b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

shopsdesapi.zxbourse07.com/api/client/advertising/current_items.do?lang=pt&location=home

104.21.33.191

200 OK

616 B

URL GET HTTP/3
shopsdesapi.zxbourse07.com/api/client/advertising/current_items.do?lang=pt&location=home
IP
104.21.33.191:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerLet's Encrypt
Subjectzxbourse07.com
FingerprintB8:71:3B:32:8D:F2:0E:99:80:8D:73:BB:A4:8F:11:8C:4A:DF:1F:BF
ValiditySun, 24 Mar 2024 10:47:02 GMT - Sat, 22 Jun 2024 10:47:01 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (672), with no line terminators
Size
616 B (616 bytes)
Hash
2564d6f14f9d969ed80f5d2c9f577a9a
b008c9152ec0482e35823176be5e0539d0b81a1d
6f839812e57afd8c7bfc80e381255eb0d0b41d016de41dc1876d9fcb81c698cd

HTTP Headers

GET /api/client/advertising/current_items.do?lang=pt&location=home HTTP/1.1
Host: shopsdesapi.zxbourse07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: https://shopsdpty2.crossworldfreighters.com
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:35 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PATCH, PUT, DELETE, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Sign, Token, X-timetamp, X-id, Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gBbWbITg5SpgQQKE8VaMyY2z%2B7SmiBHbIVsHm2ATVAr5X5kTrqEaFtjHL%2Bk6eB46Un2B5hYD7nkRfE7usd0waR250KGJS2AsIP00vaj7UbsauMzm%2B9yeMo%2FRNNST1SWnE58hKSg%2Bh0xJkYPNrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e7c80056c9-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/favicon.ico

188.114.97.1

404 Not Found

146 B

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 09:45:35 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mFrgMEfOUeEFkVlLZACtPZfvDVrAgS5WvbjZBtdaYqk9uyurc7kxfvOose2QDPWZDh9VxOjEVp2kWScblkF5bNb7Gg59DkOcI291RCdOo3y%2F5kHar4EqzsZ27oOM9z5xORkRwyyoa8dMv%2FuMrTFYoKBOGyW3QA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1ececd956bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.dcloud.net.cn/img/shadow-grey.png

124.220.205.65

200 OK

136 B

URL GET HTTP/1.1
cdn.dcloud.net.cn/img/shadow-grey.png
IP
124.220.205.65:443
ASN
#45090 Shenzhen Tencent Computer Systems Company Limited

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerUnizeto Technologies S.A.
Subject*.dcloud.net.cn
FingerprintAE:46:5C:A4:9B:D3:F7:AC:7D:5E:C7:27:E1:5F:C3:7C:DA:CE:F2:AC
ValiditySat, 05 Aug 2023 03:00:05 GMT - Tue, 03 Sep 2024 03:00:04 GMT

File type
PNG image data, 1 x 6, 4-bit colormap, non-interlaced
Size
136 B (136 bytes)
Hash
5a962adf74d92ae702467b3f47976547
36f74049375584e3fa69b5ef87e9572336ff9e7a
ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f

HTTP Headers

GET /img/shadow-grey.png HTTP/1.1
Host: cdn.dcloud.net.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 May 2024 09:45:38 GMT
Content-Type: image/png
Content-Length: 136
Last-Modified: Thu, 06 Jun 2019 06:42:07 GMT
Connection: close
ETag: "5cf8b5bf-88"
Expires: Thu, 09 May 2024 11:45:38 GMT
Cache-Control: max-age=7200
Set-Cookie: __uni__uid=rBEQRWY8m0JWDgwooJYjAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none
Accept-Ranges: bytes

shopsdpty2.crossworldfreighters.com/static/js/pages-booking-orderInfo-orderInfo~pages-bookingRecord-bookingRecord~pages-index-index.07cd7272.js

188.114.97.1

200 OK

45 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/js/pages-booking-orderInfo-orderInfo~pages-bookingRecord-bookingRecord~pages-index-index.07cd7272.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type

Size
45 kB (45326 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/js/pages-booking-orderInfo-orderInfo~pages-bookingRecord-bookingRecord~pages-index-index.07cd7272.js HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 04:15:01 GMT
vary: Accept-Encoding
etag: W/"66385945-b10e"
expires: Thu, 16 May 2024 09:44:14 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vJNuu3ebNjSfxkKvggcCcJx0FxnJBCRZvMMpZfyKgGcZSviaTuNton55BB9o6i7QymlxJXuNoXo%2BHcfn%2F306KDQgbnbzrP0NcD1dTyHWJXiJHcHmdKzzUQ6XCTjyco%2FXt0TTdiQa3fwnts9PJ3mfVtXHchC9xA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1dfcd7756bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/js/pages-booking-booking~pages-booking-orderInfo-orderInfo~pages-customer-customer~pages-login-login~pa~66032216.22de2bcb.js

188.114.97.1

200 OK

10 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/js/pages-booking-booking~pages-booking-orderInfo-orderInfo~pages-customer-customer~pages-login-login~pa~66032216.22de2bcb.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
JavaScript source, ASCII text, with very long lines (10434), with no line terminators
Size
10 kB (10434 bytes)
Hash
b8864429db7b3282cd03e61c1bdc0a4b
32ec40b62b3bf0b8e5384a1392fd0e909149d09b
b57e82a202e433dfe3dc14729ab186cc879fd2f82da83f4e1cda0a5d7959db4c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/js/pages-booking-booking~pages-booking-orderInfo-orderInfo~pages-customer-customer~pages-login-login~pa~66032216.22de2bcb.js HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 04:15:01 GMT
vary: Accept-Encoding
etag: W/"66385945-28c2"
expires: Thu, 16 May 2024 09:44:15 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4TtFGVcM8O0Yr2I61UAjLMAackZvMT0kVr3LNkFkFAUITwd5JI8LXMna%2Fyd7ED%2BkPIFRsaFZoSohV7Da6sGgOWL%2FokkhyzFYidERT%2Fugga1g%2F1IUnd7I1Z225%2BsSX5LzyPVEbT1EKo4062VnhoMZJv3Hlh5VOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e50f5156bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab1_nor.png

188.114.97.1

404 Not Found

146 B

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab1_nor.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/tabbar/ic_tab1_nor.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 09:45:34 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hV3dv01OTG6fVlFV7y6nZbxr0KBTg2B%2BLxk7VEG5yh84wLWErnd5Hrm9AsEPy6mkA2gAy9DYWKiQ1Kp1Q%2Bm4qRrqP9tnIvHpnUD76Exh3aMCctynLyDUKM6wJPz2r5dtzgqccwtTRbnJPzgsvoglynrAPp4Kpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1e50f5656bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

shopsdesapi.zxbourse07.com/api/client/product/items.do?lang=pt

104.21.33.191

200 OK

1.9 kB

URL GET HTTP/3
shopsdesapi.zxbourse07.com/api/client/product/items.do?lang=pt
IP
104.21.33.191:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerLet's Encrypt
Subjectzxbourse07.com
FingerprintB8:71:3B:32:8D:F2:0E:99:80:8D:73:BB:A4:8F:11:8C:4A:DF:1F:BF
ValiditySun, 24 Mar 2024 10:47:02 GMT - Sat, 22 Jun 2024 10:47:01 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (2122), with no line terminators
Size
1.9 kB (1852 bytes)
Hash
2a565ec71575732f5b0873378bd742d8
8b90ea7d747770c4fc85c39bd75df025bb7b7900
d840cf36ce6a37f4573893dc5a20f0ab42984735563bd773b4531b7776b66f0a

HTTP Headers

GET /api/client/product/items.do?lang=pt HTTP/1.1
Host: shopsdesapi.zxbourse07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: https://shopsdpty2.crossworldfreighters.com
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:35 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PATCH, PUT, DELETE, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Sign, Token, X-timetamp, X-id, Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PVMVS0tN0Ddd2vhHjr0QVeCWceiLmAvg%2BNPWl%2FI5oNedbDqSR9efXsxE8pjr%2FKUlZUOnJK%2B%2FFu5GSG4ATuGFvIaez25MfSdInDjBViEAQZC53cHwDI9k1ThI6m%2Bf5iI0QtTWXgFEyPSp1XfTng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e78fc156c9-OSL
alt-svc: h3=":443"; ma=86400

shopsdesapi.zxbourse07.com/api/client/advertising/current_items.do?lang=pt&location=home

104.21.33.191

200 OK

0 B

URL OPTIONS HTTP/2
shopsdesapi.zxbourse07.com/api/client/advertising/current_items.do?lang=pt&location=home
IP
104.21.33.191:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerLet's Encrypt
Subjectzxbourse07.com
FingerprintB8:71:3B:32:8D:F2:0E:99:80:8D:73:BB:A4:8F:11:8C:4A:DF:1F:BF
ValiditySun, 24 Mar 2024 10:47:02 GMT - Sat, 22 Jun 2024 10:47:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/client/advertising/current_items.do?lang=pt&location=home HTTP/1.1
Host: shopsdesapi.zxbourse07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://shopsdpty2.crossworldfreighters.com/
Origin: https://shopsdpty2.crossworldfreighters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST, GET, PATCH, PUT, DELETE, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: Sign, Token, X-timetamp, X-id, Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y3jRBGGV2M%2F6NGTBTpJW4%2Fz9peNItByaGBWOxwcSdqYcdCn2txcWuRh%2FUiFYiJ7EsBsIzRxZ5eMG03Ak2vhqmgrEY7LbAO%2FY5pmBqARSOqJr1qEQRFwTTdgL7Cs3dCJ9EmOlvxOiv%2FryqjChxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e4687bb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab3_nor.png

188.114.97.1

404 Not Found

146 B

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab3_nor.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/tabbar/ic_tab3_nor.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 09:45:34 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OVuNRUJ%2F6MG1KP8EsDXpK6cRZJYM8ewaS1bqo48%2B%2F0wY9gdTpubqhzUQm42%2B7MDc6FJOyqTorl5mdBtJTdIwEkG8Zh%2BepdVU6KE7O7osRE5BqsutQSuMw%2F8hntitp5DYNSuoUY0ghNcIUtmAYa0tCE9XerpiUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1dfdd9456bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/js/pages-login-login.856eddd6.js

188.114.97.1

200 OK

21 kB

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/js/pages-login-login.856eddd6.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type

Size
21 kB (21404 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/js/pages-login-login.856eddd6.js HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 09 May 2024 09:45:34 GMT
content-type: application/javascript
last-modified: Mon, 06 May 2024 04:15:01 GMT
vary: Accept-Encoding
etag: W/"66385945-539c"
expires: Thu, 16 May 2024 09:44:15 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q8zsdBNI1p4iLi0ef49iUX3db6nV%2BGD7yQiKl1Fky%2BBLJe42yazPjKXJHG%2B3RNw3t2MWjMnv%2Bp83bzsHkQ3SgVhgMcy5%2F2f1zuWj9QnhtnY1LLucw0p8n9J%2FX%2BtwhCYgc3p2TTHzH1LSDSDkStIyF3R%2FlIcj2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8810c1e50f5356bb-OSL
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab1_sel.png

188.114.97.1

404 Not Found

146 B

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab1_sel.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/tabbar/ic_tab1_sel.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 09:45:33 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vWBk6gXm1v11WWscvg%2BaZPJ3kSoJhI7oRTMSoBhrMxqXhXhLro521gGWRH%2FwXDPGygLkf%2FEDsrXDVt1Ulbx4dlhNYgXWv3u2n6Ca8%2BYuMVO2t6BmTSSqxif72UVsjJCVavp2v1UcwSKrjNiW%2B4Y6%2FkvE%2F1SxLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1dfdd8c56bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab2_nor.png

188.114.97.1

404 Not Found

146 B

URL GET HTTP/3
shopsdpty2.crossworldfreighters.com/static/image/tabbar/ic_tab2_nor.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://shopsdpty2.crossworldfreighters.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcrossworldfreighters.com
Fingerprint21:B5:4B:F5:F5:11:8B:EC:8C:4F:D5:E1:18:4A:C0:1C:E5:8F:0A:01
ValidityMon, 29 Apr 2024 10:26:41 GMT - Sun, 28 Jul 2024 10:26:40 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Amazon

HTTP Headers

GET /static/image/tabbar/ic_tab2_nor.png HTTP/1.1
Host: shopsdpty2.crossworldfreighters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopsdpty2.crossworldfreighters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 09 May 2024 09:45:33 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uRFWwi%2FlxCuS012vThxDXa22ZnLCqxie8iwp3rXllZrXPV8F158OCW3%2FJLJg0%2FFPqnhQsbSlc%2F44YJFShRHUgc9h86M9Vfi%2BDNeUOdhmnJbzi607EBzHWKyMh968QtppwjMN0LCqqLZz1V0Fv7aGi3UwVutzAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8810c1dfdd9656bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (39)

URL GET HTTP/3

IP

ASN

Requested by