| bmousa.za.com/assets/images/fdic.png | 172.67.187.127 | 200 OK | 6.3 kB |
URL GET HTTP/3bmousa.za.com/assets/images/fdic.png IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced Hash1f216d4d130a1157674345d7c20e20b3 b4676bf182ac9cfe51aaf6d0709e5dfc591a3ae6 944f5f59fb5cff5bcfa135c92c8424dc678ef747a6114fbf926a59a2b07593c5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/fdic.png HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/png
content-length: 6323
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "662a5acc-18b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x6y9dc9qM30QQKk%2B8B2wVXu2b%2BCVFlhNyRwaATQqMdQ6j%2BuH0ANEYCzstqVRSYABdTGlEV5rnAbl9lJxGYgpZ0T5HbTMK9YeUGsrnHI%2Bo9KdFXc2Q8MChkuuPsMJqEh8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8e7f19b523-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/assets/images/ehl.png | 172.67.187.127 | | 6.5 kB |
URL bmousa.za.com/assets/images/ehl.png IP172.67.187.127:0
CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced Hashe19cb0a8ff7940341fe40ed00dada53c 6c298785abc2f256b1c1f44a211892ef73950ae0 324dfccf399348f7a1c9351a4ee814e21a37bc98895d55009b43dc1cfd1e39ba
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/ehl.png HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/png
content-length: 6512
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "662a5acc-1970"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ayHSAZm5NDmfAnMM4rmeOiy2xdyma4Z%2Fui8CLcxV510hrTlbkB8jBm93ZBKykPQnmn4Tgw2mgXKWda033z%2BB08WOIidVueaMlIZnxQTgfIe4KnRJUUkPHu0rraolCmZg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8e7f1bb523-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/assets/images/Logo_Master.svg | 172.67.187.127 | 200 OK | 30 kB |
URL GET HTTP/3bmousa.za.com/assets/images/Logo_Master.svg IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hashc276fcbd485a351f9b974291aa9766cc d738543926c1ad7ed84c5c8a7cd91c3d27c24ff5 173b383e44552749ccaec1b80f7a4c8915270f8eed8741d8d33c12807f5f83af
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/Logo_Master.svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-ef4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PfH8uyxy8gYgtxtt1pFnfOMR%2FD%2Fp0HD5mmWgt0OK9OlWB7uJIJqb3MjQftLcAKVQK9xZ0VvtHWK0fW1ytQy%2F5vFNIeODG01ww1q60Nq5%2B1AD%2FdNRrRm5IUZ5ztHhKDri"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e6f0cb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/assets/images/bmo-logo_2.svg | 172.67.187.127 | | 48 kB |
URL bmousa.za.com/assets/images/bmo-logo_2.svg IP172.67.187.127:0
CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hashaa8a6bbb24dac15ade66b5767ae248ec d61ed316743cfd1e01757f55bf678341fb8358f1 e2401764b4fc7043eda44c3e20d4ef8b6586fdc5d07f6f6165cb20b354543356
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/bmo-logo_2.svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-89b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n1KJ0sL8H09P6YvkO31P1YfGTxfE2eTsc5jMDK01b5lb8lw9XTMZpwYItGraLxXaQ8XQPzCuUZaYBosGbjHvVPXp554xXVFQeQb9tMsg5bmWbbc0QmCLVgkgtpa7tLZP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e7f18b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/Heebo-Medium.8df563692fcd9fd0.woff2 | 172.67.187.127 | 200 OK | 29 kB |
URL GET HTTP/3bmousa.za.com/Heebo-Medium.8df563692fcd9fd0.woff2 IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28596, version 1.0 Hashe1ec2e8632e031aaacebf19c22be7f94 5f477c6850c9623b37ca85115005bc8e17c99a32 6b0775312a70463baadc76ad84f408bf91b13da73fd1b2df4ea62233484d5a1e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Medium.8df563692fcd9fd0.woff2 HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-length: 28596
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6fb4-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5450
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1vsZfjrHQb83eThg4my9f9LTxVQ0j%2B%2FBRpa5L7zbuTHwlw%2BBsYBFvyUWejVxmRjpuHusj8nWwYuDW162nFlJYDS1XomykGQFlajmeU90X4Mld7WXKIFh9rm2sw4jpiSs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8f3837b523-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/Heebo-Thin.5740d8571ba2c17c.woff2 | 172.67.187.127 | | 28 kB |
URL bmousa.za.com/Heebo-Thin.5740d8571ba2c17c.woff2 IP172.67.187.127:0
CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27808, version 1.0 Hashcf1c3a336717c93381070d238c90f782 d663d5b077c06d4bc1b8bdfe28657147bd77256a 0201b5d83335daa6995cb96075f758bb09b8ada45a736462adbc3a28f833afef
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Thin.5740d8571ba2c17c.woff2 HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-length: 27808
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6ca0-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5450
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d49aAnZwsleoVI4GsRTUww6ItTUM1GlTum5ZIh6xWrCCmksII7696K0O2AFmAbqP0AJo9FomXdocvcJNY1Bbx4AkTFegvz9%2B7xSBUXCbB2Cbmz2LmSd8dT8G14v2k3yZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8f384eb523-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/Heebo-Light.b37fd88770249dfa.woff2 | 172.67.187.127 | 200 OK | 28 kB |
URL GET HTTP/3bmousa.za.com/Heebo-Light.b37fd88770249dfa.woff2 IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28476, version 1.0 Hash400e8b71de50f49b7b0d8677fd9d81de 9303146a35fff66540170a40ff33b0ea29a0ba79 207ee410a833bdc6e9258c826ce60b8cb26471e6fac689e18d8ea8c7c5a9b585
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Light.b37fd88770249dfa.woff2 HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-length: 28476
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6f3c-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5450
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oFtPTsLXOLjF7E0HeOnzXeodgs8LyDhTLnuBklmavWyXjOh%2BdiO8dGbO3m%2BoTDZ6AeN5GpHYHZVCARqThKj%2BlT9tBI9xwLiWJm2qsH%2FU5t7lZnmmnnljOHykI6%2FHXnew"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8f485db523-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/assets/images/minimize_icon.svg | 172.67.187.127 | 200 OK | 29 kB |
URL GET HTTP/3bmousa.za.com/assets/images/minimize_icon.svg IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hash60268176f4a56d3f8874307e543a7e14 c8cfb12398cb22bdaa6903bdf81ee542c7932514 50fc9d4ee7cda06611bb7dc71bec1b47412333bff019d7660e16fd5bbef1a9b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/minimize_icon.svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: W/"662a5acc-f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8n89OP2sqsGrlge%2Bp%2BvNh38sA40E3MBOjXXhk%2FW0KGYpYgpm%2ByunkYAGxG9GncswHB9tsX2oLMmx6z0s9madPImTt6yM0cD8g%2BdZpvwGuavS2fbZeTKkkN%2Fu4jNqAG%2BB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8e7f24b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/login_files/Logo_Master-Reverse(1).svg | 172.67.187.127 | 200 OK | 2.9 kB |
URL GET HTTP/3bmousa.za.com/login_files/Logo_Master-Reverse(1).svg IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hash40b143e8df1729e28fb51892bf616869 89b0f99da6dad9f0fcbe630c0464fc4202a2b2b2 ffd9ff2db1d4f657baef24792853db2531420f99fd72a5082bee30e45fd94faf
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/Logo_Master-Reverse(1).svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
vary: Accept-Encoding
etag: W/"662a5acd-ef5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dYK8d%2B0xfe9y3%2FJLNwBd8dfZ46p9qdLgUSHENydKvtf%2Fz07wUxjwRDXwC3Odf0CDvPhfHoB0DNl00%2Fkr8dJJGsq2EVIEMGmA2WGE29kYWxwCDZ8pRSzH3kNiDqdf4LUK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e7f12b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/assets/images/take-a-look-at-your-accounts.svg | 172.67.187.127 | 200 OK | 9.2 kB |
URL GET HTTP/3bmousa.za.com/assets/images/take-a-look-at-your-accounts.svg IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hashdfc59bf6fb03812a4960e061e78cd3d5 0431e77ed4b5bdbdf79fb220ca0e5a14bf506758 9b560887e13cadf1d2a3db5d1a6bbe3d867e8af0c8300bb410f091740df37cf7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /assets/images/take-a-look-at-your-accounts.svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-3da2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JWH4rl3D4gFKHPfKcHdnYXWLZ6YU0hBIIENucQjcYY1RfWu7vMJhOP0rf%2FCrKUTCXSyoeg699dFTe56A7DDZzWVoe69nJOm3x%2FWJoyRd12bY5YINl%2FClMwkX4kQnIv4g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e7f2bb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/login_files/Logo_Master.svg | 172.67.187.127 | 200 OK | 3.8 kB |
URL GET HTTP/3bmousa.za.com/login_files/Logo_Master.svg IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hashcc7e515d9803f675c078fab93fb82c44 6f736baef39f70ba3c3b7eaea5179cff09c9f410 dd2573228e20a1b91a05f24f1d980e573746c94d69258d61a9a0f7f9b13ab4eb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/Logo_Master.svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
vary: Accept-Encoding
etag: W/"662a5acd-ef4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uJuT30ntQgEwtX3DXHX6TEhPPPvIHf1HKK0a10x1aYUJHmrCBXfZ%2F1kXIloVr5Rhp8%2BWj%2BBuORwvY8knEfyA0xwlv9BvtM%2BEhOEBFU3T2AXELJkof91KTKh%2BsU%2Bl7LJE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e8f34b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/login_files/Logo_Master-Reverse.svg | 172.67.187.127 | 200 OK | 3.8 kB |
URL GET HTTP/3bmousa.za.com/login_files/Logo_Master-Reverse.svg IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hash9256617ff3587d2a6e669765544011aa 56374110d91ae43da040b2d6074082bad289c7f3 57f2a79c0c447b629348a97b9dabaea0596ebced897a64c3f3f77a7a5c138324
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/Logo_Master-Reverse.svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
vary: Accept-Encoding
etag: W/"662a5acd-ef5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cx%2BZfwCxBVRzPc2QgQg1QW0CQjJtpblwiSoML71AfGHqa9VDD7felyHDHEG3MzPGWapnYHI78sTMPWu%2FV2PZ7gIzHlJsS5D%2BDxjtB6ekb0fr90F8GgH48XsNntfq8srf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e6f03b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F | 172.67.187.127 | 200 OK | 90 kB |
URL GET HTTP/3bmousa.za.com/login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
etag: W/"15d84-616ebc8028d40-gzip"
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2BLfEZJMjh%2BuDepDpj7%2FdWNukFWcdArBv64bcnuW6jxFqU3%2B4NAqN84Jy8Kkr9d25IUHJPgG5ZKmRUJYkHGQVMzgqNut%2BI%2F%2Fp7Hs0T9tPuRjNCWIKmXwbJ9BQezK%2BO%2Fj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e8f36b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/build/b.8cc58ef1821ab39c.svg | 172.67.187.127 | 200 OK | 1.4 kB |
URL GET HTTP/3bmousa.za.com/build/b.8cc58ef1821ab39c.svg IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeSVG Scalable Vector Graphics image Hashfc28cf8f2ed67f184837b61b032d72a3 ff1ce98294932d69f96cf1d8022a695ae79d06ab 796dcd946af0c1fc5766612670318808a465172b912369ebe17c04a71ef0dc8b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /build/b.8cc58ef1821ab39c.svg HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/svg+xml
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
vary: Accept-Encoding
etag: W/"662a5acc-5a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25328
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=exGqaDIiRNXfTZVc3CW5IM%2B1I0hcmqKF4%2F%2Fvd2Ri6%2Bgke7cOZ2SLfOGg4JjSnFEdtoRwj0tMiinXEy%2B8UK94mdXKxbTfzb4tczF%2FvqIMBKpwcqCQf0VDiBZ1n8mm0XW3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8effdab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/Heebo-Regular.f807eddb777f8cc0.woff2 | 172.67.187.127 | 200 OK | 29 kB |
URL GET HTTP/3bmousa.za.com/Heebo-Regular.f807eddb777f8cc0.woff2 IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28632, version 1.0 Hash0ec52131c89aec5adb27d61223543ced ec24f7cf191c89d67076361a5449cff46b81570e c8eaf794d7920f0d958001cab7b9c403efb89217b4d5c3ad648de792bc590bff
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /Heebo-Regular.f807eddb777f8cc0.woff2 HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-length: 28632
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "6fd8-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5450
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bo5JIt0OiO8F8auTczpmSsLFyOh458Zy0rPI%2BUnAetDdkkYzthpYhceqETIa7pxhHKj3VanBSuWouO%2BCCUP8QG1ufpzFMbSWILZhFsMqI6peBF6F460BxIfurBAW0DVH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8f0fe9b523-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/favicon.ico | 172.67.187.127 | 200 OK | 1.2 kB |
URL GET HTTP/3bmousa.za.com/favicon.ico IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash98a8f6231b8840dcd15a34000539c1e0 afe1f0bf1ebc23ced559189ebc678a36ebf3729c 2e9fc0625183383670d077427884473d8b0e04ab1dc479372246fdd2334fe072
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /favicon.ico HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: image/x-icon
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: W/"662a5acc-47e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25328
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LPLM1lVx3XEIIg0gTkynPlKCCxrKFVFzx2aOI5m%2FPj7kVtX6NqplbOCx58GQiPCfSZPZAT%2B4NENDuMjLIV1uolvqbzGU5iYOVJm1W9dyUnCMBisuNghlThGoFQBpSX54"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea90199fb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/login_files/styles.330d80deccf75709.css | 172.67.187.127 | 200 OK | 100 kB |
URL GET HTTP/3bmousa.za.com/login_files/styles.330d80deccf75709.css IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size100 kB (100418 bytes) Hash0159e1a8e243f244267f294ce8e8454a 44c033e7e94693674eaa6e79604325cd94b332a2 f0629367675eb8c0b7ef8121abb171165308fdd1bb733ddd90feaec5be6c9440
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login_files/styles.330d80deccf75709.css HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: text/css
last-modified: Thu, 25 Apr 2024 13:29:49 GMT
vary: Accept-Encoding
etag: W/"662a5acd-18842"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 25329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0D%2FYE%2FdZSk9NmDFCUIkv%2FAQ2WACEVKDxES%2FxQiraRwck7BYawXg4VSzQw1ODnY4vWSBItnsCTAVI4%2FJd0FTdEr9ovAPAfrSq32gw9N7089JQshPtQVfv1D3UXBjMby9z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e8ea8e6ef7b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bmousa.za.com/capco-icon-fonts.e3dce399bcb18ec3.woff | 172.67.187.127 | 200 OK | 47 kB |
URL GET HTTP/3bmousa.za.com/capco-icon-fonts.e3dce399bcb18ec3.woff IP172.67.187.127:443
Requested byhttps://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/ CertificateIssuerGoogle Trust Services LLC Subjectbmousa.za.com Fingerprint0E:94:6E:A3:2F:C6:B9:8D:89:F1:94:27:4A:85:F0:FB:69:4E:D8:4E ValidityFri, 03 May 2024 19:19:16 GMT - Thu, 01 Aug 2024 19:19:15 GMT
File typeWeb Open Font Format, TrueType, length 47132, version 0.0 Hashbdd2d7e7a2b19da123e3dd0aa2b6ba13 336b4abd79c8aa3f658c359e33bc5581955b72ad a6752fc2e494367dabaf484e095493fb7865ff58800abfc71123dc282d95b4f3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /capco-icon-fonts.e3dce399bcb18ec3.woff HTTP/1.1
Host: bmousa.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bmousa.za.com/login.php?gad_source=1&gclid=EAIaIQobChMIpvH7zNHzhQMVOEhHAR11zQuJEAMYASAAEgIOZvD_BwE/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 13:42:49 GMT
content-type: application/font-woff
content-length: 47132
last-modified: Thu, 25 Apr 2024 13:29:48 GMT
etag: "b81c-616ebc7f34b00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5450
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3gygLxjgGo8MOIh0xNoaOLpwMPU2dOeuKYVM%2BwRDnjwY3sWHVgLk%2BNKlVjIY0dc10pyfbypEkPT7ySIHK7D27qZ5ih%2BJgwQLBeOJhW1BR5aqYo1U80WhiaSoNF7SRKvO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e8ea8f0febb523-OSL
alt-svc: h3=":443"; ma=86400
|
|