Report - 111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/

Report Overview

Visited public
2025-03-04 17:08:30
Tags
government tax france phishing
URL
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Finishing URL
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
IP / ASN
206.188.192.34
#19871 NETWORK-SOLUTIONS-HOSTING
Title
Particuliers | authentification
Phishing - French Tax Agency

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-02-26	580 B	20 kB	142.250.74.35
111e371.netsolhost.com	unknown	2004-09-21	2024-10-07	2025-02-28	10 kB	196 kB	206.188.192.34
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-02-26	467 B	6.7 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)
2025-02-20	medium	111e371.netsolhost.com/	DGI (French Tax Authority)

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/	ScriptElement	710 B	2023-03-07	2025-03-04
Pretty URL 111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/ IP 206.188.192.34 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:24 Last Seen2025-03-04 17:24 Times Seen525 Hash 6da2330e50018148f42e1fb7e8e47dad 28ac7ea3559965a806655018c2cc8a1e6bf6d1c7 18cd7a93a7612b222b9832b318e83b9f0a35895d3167742c6fdd57ae2af77306 Loading...

	111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/	ScriptElement	6.8 kB	2023-03-07	2025-03-04
Pretty URL 111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/ IP 206.188.192.34 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:24 Last Seen2025-03-04 17:24 Times Seen525 Hash 9f371c89d17e7ad05e1ce67882eb0fda 9c16ec6fd92046ee68576d4fd3e00be78fd2ac31 b166a16c30827716afa9ed6c6f3fc7077cf6baf80bf8e6e6c539a956ef16f961 Loading...

	111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/	ScriptElement	381 B	2023-03-07	2025-03-04
Pretty URL 111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/ IP 206.188.192.34 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:24 Last Seen2025-03-04 17:24 Times Seen525 Hash f5b59d10829e9edbb8218fcc82b7d2a7 c46956ffbc3dcd365bdb84169ec0a413be480e41 548daef0d8939fae1cdcaf43b06abf565c2f43fa637b9ae905f841218fe4cfbf Loading...

	111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/	ScriptElement	4.4 kB	2023-04-19	2025-03-04
Pretty URL 111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/ IP 206.188.192.34 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-19 23:36 Last Seen2025-03-04 17:24 Times Seen525 Hash 067b9b1b29e53e986844ba5cd5963c18 bb29266fb6313dcab39fef5f7e1bcfadf5fb27d5 3bbea63d4981c67f90092e680a01716d4bcba035ab17940cdb03d53c3232687e Loading...

HTTP Transactions (22)

URL IP Response Size

111e371.netsolhost.com/templates/images/logo-fc.svg

206.188.192.34

200 OK

20 kB

URL GET
111e371.netsolhost.com/templates/images/logo-fc.svg
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
20 kB (19554 bytes)
Hash
414ffb810fa83b5bd7427465433c2fb2
4f2118c05aeb4707d3b2afbf219bb813ec371a04
33689955abdaec87c8d7c647771e44cd75deb3071667e2fddeabd95f123d6648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/images/logo-fc.svg HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:13 GMT
Content-Type: image/svg+xml
Content-Length: 19554
Connection: keep-alive
Last-Modified: Sat, 28 Sep 2024 13:29:07 GMT
ETag: "4c62-6232df4c6bbc2"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade
X-Webcom-Cache-Status: BYPASS
Accept-Ranges: bytes

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/polices/dgfip_dgfipicons.ttf

206.188.192.34

404 Not Found

575 B

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/polices/dgfip_dgfipicons.ttf
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (597), with no line terminators
Size
575 B (575 bytes)
Hash
4393551ee0ef58cd251b72ae03c66ed8
b3337a75d895e93fbbe19450083f1ff6158a54bd
dc56c395155ed796169b3dfb004052844b0581945415f72e04a45fb52f350a6f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/polices/dgfip_dgfipicons.ttf HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/commun.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:14 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/images/Cadenas.svg

206.188.192.34

404 Not Found

575 B

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/images/Cadenas.svg
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (597), with no line terminators
Size
575 B (575 bytes)
Hash
4393551ee0ef58cd251b72ae03c66ed8
b3337a75d895e93fbbe19450083f1ff6158a54bd
dc56c395155ed796169b3dfb004052844b0581945415f72e04a45fb52f350a6f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/images/Cadenas.svg HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/commun.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:13 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/templates/js/urls.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/urls.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/urls.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:13 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/commun.css

206.188.192.34

200 OK

8.4 kB

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/commun.css
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (8891), with no line terminators
Size
8.4 kB (8395 bytes)
Hash
b45362e5b5b3ebde7acd946e7ad0f386
27e7e5b7005e0450ae56d53c5bab58f127e85ba1
d437761a2ec062cd05c6f009029460ee9f266657a8dadd6a77979039ef0fef87

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/laaaarbi/commun.css HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:12 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 04 Mar 2025 11:18:35 GMT
ETag: W/"20cb-62f826f0fa600"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade
X-Webcom-Cache-Status: BYPASS
Content-Encoding: gzip

111e371.netsolhost.com/templates/js/franceConnect.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/franceConnect.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/franceConnect.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:12 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

fonts.googleapis.com/css?family=Open+Sans&subset=latin-ext

142.250.74.10

200 OK

6.0 kB

URL GET
fonts.googleapis.com/css?family=Open+Sans&subset=latin-ext
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
ASCII text, with very long lines (6063), with no line terminators
Size
6.0 kB (5973 bytes)
Hash
f0e9718f326ee78b033498c65e78cfc2
cef12f8cc1cfc80588cfa98443b14e98fa7d8d87
bd14ca355ddae2d128c0d3d983203abac3c63e9995f4897c96c779132a0dfeaa

HTTP Headers

GET /css?family=Open+Sans&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://111e371.netsolhost.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Mar 2025 17:08:12 GMT
date: Tue, 04 Mar 2025 17:08:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

111e371.netsolhost.com/templates/js/configuration.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/configuration.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/configuration.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:14 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/polices/dgfip_dgfipicons.woff

206.188.192.34

404 Not Found

575 B

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/polices/dgfip_dgfipicons.woff
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (597), with no line terminators
Size
575 B (575 bytes)
Hash
4393551ee0ef58cd251b72ae03c66ed8
b3337a75d895e93fbbe19450083f1ff6158a54bd
dc56c395155ed796169b3dfb004052844b0581945415f72e04a45fb52f350a6f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/polices/dgfip_dgfipicons.woff HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/commun.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:14 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/logoimpo.png

206.188.192.34

200 OK

6.1 kB

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/logoimpo.png
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
PNG image data, 293 x 172, 8-bit colormap, non-interlaced
Size
6.1 kB (6056 bytes)
Hash
90b33a18a02522bb5530e9eca8af649e
d56d87c513d01b37132be876acdadc3845b51af4
950d34941976150e0d4e8da55e590da622754812226a454cab5199b2c7f2a22c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/laaaarbi/logoimpo.png HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Cookie: essai=cookie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:14 GMT
Content-Type: image/png
Content-Length: 6056
Connection: keep-alive
Last-Modified: Tue, 04 Mar 2025 11:18:35 GMT
ETag: "17a8-62f826f0fc162"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade
X-Webcom-Cache-Status: BYPASS
Accept-Ranges: bytes

111e371.netsolhost.com/templates/js/urls.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/urls.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/urls.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:12 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/bootstrap.min.css

206.188.192.34

200 OK

108 kB

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/bootstrap.min.css
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (64976)
Size
108 kB (107586 bytes)
Hash
a04c20e9d8e971c005c10a25372cb7c3
e42875a7c13d6f766ece94b27b636549edff7fe7
1831874c5d0edf9deec31365a40c7aa7a5e271717109bdb345390daef315735c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/laaaarbi/bootstrap.min.css HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:11 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 04 Mar 2025 11:18:35 GMT
ETag: W/"1a442-62f826f0fb5b8"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade
X-Webcom-Cache-Status: BYPASS
Content-Encoding: gzip

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/dac.css

206.188.192.34

200 OK

446 B

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/dac.css
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (478), with no line terminators
Size
446 B (446 bytes)
Hash
0e97c81c7b08762576fdb22a0ff0a006
909078a0ad034085510e110631ee2667ac612829
22c3e25154e35ca074f17394b529670606bd38a7832575b4ccc3a5acf2df2ac9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/laaaarbi/dac.css HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:13 GMT
Content-Type: text/css
Content-Length: 446
Connection: keep-alive
Last-Modified: Tue, 04 Mar 2025 11:18:35 GMT
ETag: "1be-62f826f0fc931"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade
X-Webcom-Cache-Status: BYPASS
Accept-Ranges: bytes

111e371.netsolhost.com/templates/js/configuration.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/configuration.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/configuration.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:12 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

142.250.74.35

200 OK

19 kB

URL GET
fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18668, version 1.0
Size
19 kB (18668 bytes)
Hash
8655d20bbcc8cdbfab17b6be6cf55df3
90edbfa9a7dabb185487b4774076f82eb6412270
e7af9d60d875eb1c1b1037bbbfdec41fcb096d0ebcf98a48717ad8b07906ced6

HTTP Headers

GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://111e371.netsolhost.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Feb 2025 19:03:08 GMT
expires: Sat, 28 Feb 2026 19:03:08 GMT
cache-control: public, max-age=31536000
age: 338705
last-modified: Thu, 14 Dec 2023 02:00:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

111e371.netsolhost.com/templates/js/franceConnect.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/franceConnect.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/franceConnect.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:14 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/

206.188.192.34

200 OK

42 kB

URL User Request GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
42 kB (42470 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/ HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 04 Mar 2025 11:18:35 GMT
ETag: W/"a5e6-62f826f08b4d0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade
X-Webcom-Cache-Status: BYPASS
Content-Encoding: gzip

111e371.netsolhost.com/templates/js/bootstrap.min.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/bootstrap.min.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/bootstrap.min.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:13 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/templates/js/auth2018.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/auth2018.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/auth2018.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:12 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/images/logo.svg

206.188.192.34

404 Not Found

575 B

URL GET
111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/images/logo.svg
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (597), with no line terminators
Size
575 B (575 bytes)
Hash
4393551ee0ef58cd251b72ae03c66ed8
b3337a75d895e93fbbe19450083f1ff6158a54bd
dc56c395155ed796169b3dfb004052844b0581945415f72e04a45fb52f350a6f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /service/d9c3475ee448af180d9725d784903792/images/logo.svg HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/laaaarbi/commun.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:13 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/templates/js/auth2018.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/auth2018.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/auth2018.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:13 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

111e371.netsolhost.com/templates/js/jquery.min.js

206.188.192.34

404 Not Found

0 B

URL GET
111e371.netsolhost.com/templates/js/jquery.min.js
IP
206.188.192.34:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
Certificate
IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint86:A8:76:C0:39:80:04:0E:58:A1:27:6B:8C:F6:92:FB:30:77:A8:E8
ValidityTue, 23 Jul 2024 00:00:00 GMT - Wed, 23 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - French Tax Agency
OpenPhish	phishing	DGI (French Tax Authority)

HTTP Headers

GET /templates/js/jquery.min.js HTTP/1.1
Host: 111e371.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://111e371.netsolhost.com/service/d9c3475ee448af180d9725d784903792/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: openresty/1.25.3.1
Date: Tue, 04 Mar 2025 17:08:12 GMT
Content-Type: text/html
Content-Length: 575
Connection: keep-alive
Last-Modified: Mon, 06 May 2024 19:16:49 GMT
ETag: "23f-617cde9496008"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: "1; mode=block"
Referrer-Policy: no-referrer-when-downgrade

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (22)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections