Report - seip-srl.com/jss/amex

Report Overview

Submitted URL
seip-srl.com/jss/amex
IP
192.185.122.119
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2023-03-31 17:56:56
Access
public
Website Title
Final URL
Tags
american_express financial phishing
urlquery detections
Phishing - American Express

Detections

urlquery
121
Network Intrusion Detection
1
Threat Detection Systems
116

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	796 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-31T21:56:16Z	1.7 kB	3.8 kB	192.229.221.95
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	55 kB	34.120.237.76
www.americanexpress.com	13613	2013-04-24T17:59:26Z	2023-04-01T07:48:27Z	387 B	1.9 kB	104.110.26.196
seip-srl.com	unknown	2017-09-06T07:29:41Z	2023-03-20T01:48:08Z	19 kB	457 kB	192.185.122.119
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
www.aexp-static.com	12486	2012-05-24T16:06:16Z	2023-04-01T10:40:44Z	3.5 kB	351 kB	104.110.6.135
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	2.4 kB	6.2 kB	23.36.77.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-31 17:56:45	medium	Client IP	192.185.122.119	ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-31	medium	seip-srl.com/jss/amex	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/appvendors.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-voice-of-customer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/en-BBi1a1e63395.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-marketing-offer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-error-message.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/runtime.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/vendors.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/en-US.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-universal-session-manager.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-identity-root.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-data-layer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-one-seo.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-login-alert.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-page-wrapper.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-global-header.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-identity-login-page.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-footer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-login.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-root.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-search-box.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/app.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/gtkp_aa.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/cc.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/timeout.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/dls-logo-bluebox-solid.svg	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/dls-flag-us.svg	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/en-BBi1a1e63395.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/dls-logo-line.svg	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-marketing-offer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-voice-of-customer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-error-message.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/appvendors.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/fonts/Roboto-Regular.woff	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/runtime.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/fonts/Roboto-Regular.ttf	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/vendors.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/iconfont/dls-icons.woff	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/en-US.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/iconfont/dls-icons.ttf	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-identity-root.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-universal-session-manager.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-data-layer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-one-seo.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-global-header.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-login-alert.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-page-wrapper.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-identity-login-page.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-providers.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-footer.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-login.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-root.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/axp-search-box.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/app.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/cc.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/gtkp_aa.js	Phishing
2023-03-31	medium	seip-srl.com/jss/amex/css/timeout.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	seip-srl.com/jss/amex/	268 B	2023-03-07	2023-11-07
Pretty URL seip-srl.com/jss/amex/ IP 192.185.122.119 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:57 Last Seen2023-11-07 06:55:18 Times Seen56 Hash efe0e1fb220f44dbca0b6e787fefabf2 ee40bf81b846bc71f818b6ece86e71b300b16a79 f375636ba452a9e4b30b9eb7bc95edab9274acdc9e247f540bd481037091be9c Loading...

HTTP Transactions (92)

URL IP Response Size

seip-srl.com/jss/amex

192.185.122.119

301 Moved Permanently

237 B

URL HTTP/1.1
seip-srl.com/jss/amex
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
237 B (237 bytes)
Hash
30a676fec873a702b481cb70a1610652
3cb66d6298cf6119519373e64ddac7d539cca1b8
a02e4ad12160fb1a2af7c0bfb68c3a488ae76af234fc53fad4d50413c01bf32e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /jss/amex HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 31 Mar 2023 17:56:45 GMT
Server: Apache
Location: http://seip-srl.com/jss/amex/
Content-Length: 237
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5271
Expires: Fri, 31 Mar 2023 19:24:36 GMT
Date: Fri, 31 Mar 2023 17:56:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13399
Expires: Fri, 31 Mar 2023 21:40:04 GMT
Date: Fri, 31 Mar 2023 17:56:45 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 17:16:12 GMT
content-type: application/json
age: 2433
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12173
Expires: Fri, 31 Mar 2023 21:19:38 GMT
Date: Fri, 31 Mar 2023 17:56:45 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: DFoEvicr5XM9CcwhzoUyvcf4gmLweRjJ3BNeDNSUbQh+gHDAynmYUfZDcXWQQkAiNcJ3uHLx/io=
x-amz-request-id: 0V2YTSW99XRV2WQ0
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 17:12:16 GMT
age: 2669
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 17:56:45 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

seip-srl.com/jss/amex/

192.185.122.119

200 OK

67 kB

URL HTTP/1.1
seip-srl.com/jss/amex/
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47507), with CRLF line terminators
Size
67 kB (67233 bytes)
Hash
80b1254dfac532749731ba3163b67fe3
257d87c69c9c941c147fb69d294a0965f5868b38
db17f82ff560738e380180da468adcfb86d8fca0f2310be5b4d0e581e61f47ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/ HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 17:56:45 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 17:14:39 GMT
age: 2527
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

seip-srl.com/jss/amex/css/appvendors.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/appvendors.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/appvendors.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-voice-of-customer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-voice-of-customer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-voice-of-customer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=75
Content-Type: text/html

seip-srl.com/jss/amex/css/en-BBi1a1e63395.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/en-BBi1a1e63395.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/en-BBi1a1e63395.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=75
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-marketing-offer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-marketing-offer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-marketing-offer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=75
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-error-message.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-error-message.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-error-message.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=75
Content-Type: text/html

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18272
Expires: Fri, 31 Mar 2023 23:01:18 GMT
Date: Fri, 31 Mar 2023 17:56:46 GMT
Connection: keep-alive

seip-srl.com/jss/amex/css/dls.css

192.185.122.119

200 OK

74 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/dls.css
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
74 kB (73596 bytes)
Hash
be7b59fd6a5696d80ee2a067fc89d2ea
b4c3df334786ea858a96d28fe62b12d957fa95be
4f525630d3a5cac27ab3af688668b6b139369b1808d32cf206abdb80218e2213

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express

HTTP Headers

GET /jss/amex/css/dls.css HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 17:56:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 18 Feb 2022 21:06:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css

seip-srl.com/jss/amex/css/runtime.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/runtime.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/runtime.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/vendors.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/vendors.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/vendors.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/en-US.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/en-US.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/en-US.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-universal-session-manager.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-universal-session-manager.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-universal-session-manager.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-identity-root.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-identity-root.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-identity-root.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-data-layer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-data-layer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-data-layer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html

push.services.mozilla.com/

34.117.65.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.117.65.55:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oxNTmjV6gjPBscI9C+L70A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mwrq7wWMUwYLvFlLrp9arazu/rk=
Date: Fri, 31 Mar 2023 17:56:46 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

seip-srl.com/jss/amex/css/axp-one-seo.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-one-seo.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-one-seo.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-login-alert.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-login-alert.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-login-alert.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-page-wrapper.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-page-wrapper.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-page-wrapper.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-global-header.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-global-header.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-global-header.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-identity-login-page.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-identity-login-page.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-identity-login-page.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-providers.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-providers.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express

HTTP Headers

GET /jss/amex/css/axp-providers.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-footer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-footer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-footer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-login.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-login.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-login.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-root.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-root.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-root.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-search-box.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-search-box.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-search-box.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/app.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/app.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/app.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/gtkp_aa.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/gtkp_aa.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/gtkp_aa.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/cc.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/cc.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/cc.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/timeout.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/timeout.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/timeout.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/dls-logo-bluebox-solid.svg

192.185.122.119

200 OK

2.4 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/dls-logo-bluebox-solid.svg
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2402), with no line terminators
Size
2.4 kB (2402 bytes)
Hash
d97d46fe48d19d2c4f236b9a2cfee5f3
a164f3588bb4b601c472461a24a6eec265bcf8c8
028f643755987211bf2f3add6c62ae1870a888cf2f4fe3040a4fac7dce2543ab

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/dls-logo-bluebox-solid.svg HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 21:06:58 GMT
Accept-Ranges: bytes
Content-Length: 2402
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/svg+xml

seip-srl.com/jss/amex/css/dls-flag-us.svg

192.185.122.119

200 OK

5.6 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/dls-flag-us.svg
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5624), with no line terminators
Size
5.6 kB (5624 bytes)
Hash
56addba553083eb384b100cbb7e8632f
f718526f1ef720e5d361536615595d5bfc3c9688
5e60a20da0f769a6260d4ed755d615da930b87c62436f807a6ff32d000017d18

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/dls-flag-us.svg HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 21:06:58 GMT
Accept-Ranges: bytes
Content-Length: 5624
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/svg+xml

seip-srl.com/jss/amex/css/en-BBi1a1e63395.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/en-BBi1a1e63395.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/en-BBi1a1e63395.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/20-AMX-0046_Covid19Support-AmexBanner_300x250_m01_46.jpg

192.185.122.119

200 OK

22 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/20-AMX-0046_Covid19Support-AmexBanner_300x250_m01_46.jpg
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 300x250, components 3\012- data
Size
22 kB (22099 bytes)
Hash
79f5dadeb9379ce87796a0306d11f3b9
e31a3cbbc1368b3b4043ae40d0a2b497cfc5f780
52aed84047dc005eceb2d1e04cd03449d41724b248a119594fa70c0dfb34992f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express

NIDS	Severity	Alert
suricata	medium	ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1

HTTP Headers

GET /jss/amex/css/20-AMX-0046_Covid19Support-AmexBanner_300x250_m01_46.jpg HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 21:06:58 GMT
Accept-Ranges: bytes
Content-Length: 22099
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg

seip-srl.com/jss/amex/css/dls-logo-line.svg

192.185.122.119

200 OK

1.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/dls-logo-line.svg
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1683), with no line terminators
Size
1.7 kB (1683 bytes)
Hash
ebbbafae5bdc09d7ded7cef405413ac5
7a635abed6420b798397c62270d2df8b084cd8a8
c39e8554624a4b74e596d2bfa96bdd4d30dbc395532ab32e67591c0e929080e9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/dls-logo-line.svg HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 21:06:58 GMT
Accept-Ranges: bytes
Content-Length: 1683
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml

seip-srl.com/jss/amex/css/axp-marketing-offer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-marketing-offer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-marketing-offer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-voice-of-customer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-voice-of-customer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-voice-of-customer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-error-message.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-error-message.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-error-message.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/appvendors.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/appvendors.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/appvendors.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/fonts/Roboto-Regular.woff

192.185.122.119

404 Not Found

12 kB

URL HTTP/1.1
seip-srl.com/jss/amex/fonts/Roboto-Regular.woff
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
12 kB (11816 bytes)
Hash
a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/fonts/Roboto-Regular.woff HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/css/dls.css

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Content-Length: 11816
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5073
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:56:46 GMT
Last-Modified: Fri, 31 Mar 2023 16:32:13 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2799
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:56:46 GMT
Last-Modified: Fri, 31 Mar 2023 17:10:07 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5073
Cache-Control: max-age=114436
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:56:46 GMT
Etag: "64262711-1d7"
Expires: Sun, 02 Apr 2023 01:44:02 GMT
Last-Modified: Fri, 31 Mar 2023 00:19:29 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5073
Cache-Control: max-age=114436
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:56:46 GMT
Etag: "64262711-1d7"
Expires: Sun, 02 Apr 2023 01:44:02 GMT
Last-Modified: Fri, 31 Mar 2023 00:19:29 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3400
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:56:46 GMT
Last-Modified: Fri, 31 Mar 2023 17:00:06 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471

seip-srl.com/jss/amex/css/runtime.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/runtime.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/runtime.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html

www.aexp-static.com/nav/ngn/fonts/3be50273-0b2e-4aef-ae68-882eacd611f9-3.woff

104.110.6.135

200 OK

37 kB

URL HTTP/2
www.aexp-static.com/nav/ngn/fonts/3be50273-0b2e-4aef-ae68-882eacd611f9-3.woff
IP
104.110.6.135:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 37153, version 1.0\012- data
Size
37 kB (37153 bytes)
Hash
c0e3b5653c803f69c05862736a765e4a
4ae2328614d48c62388c8409cbd1d9e7b5d4dfda
48050d8eeb740bb31aaad9eb82bcd4a493b474c9385eeda5fc2ca2ea279cffad

HTTP Headers

GET /nav/ngn/fonts/3be50273-0b2e-4aef-ae68-882eacd611f9-3.woff HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://seip-srl.com
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: font/woff
content-length: 37153
last-modified: Wed, 15 Aug 2018 20:46:09 GMT
etag: "5b749111-9121"
expires: Sat, 15 Aug 2020 17:40:37 GMT
cache-control: max-age=15552000
access-control-allow-origin: *
timing-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:56:46 GMT
X-Firefox-Spdy: h2

www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/iconfont/dls-icons.woff?v=5.10.1

104.110.6.135

200 OK

35 kB

URL HTTP/2
www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/iconfont/dls-icons.woff?v=5.10.1
IP
104.110.6.135:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 34756, version 1.0\012- data
Size
35 kB (34756 bytes)
Hash
00e1ece1ed6008465632d7b9800e3f4c
75e8f21ce1cf3fe13515c602bdcd8679581b6229
3ab0045c7cec2bd10b33c094d7ff82145efe1e75345bc49166dc5236db831b08

HTTP Headers

GET /cdaas/one/statics/axp-dls/5.10.1/package/dist/iconfont/dls-icons.woff?v=5.10.1 HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://seip-srl.com
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: font/woff
content-length: 34756
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "1dc09d84-87c4"
expires: Sat, 15 Aug 2020 16:42:58 GMT
cache-control: max-age=15552000
access-control-allow-origin: *
timing-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:56:46 GMT
vary: Origin, Accept-Encoding
X-Firefox-Spdy: h2

www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Regular.woff

104.110.6.135

200 OK

77 kB

URL HTTP/2
www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Regular.woff
IP
104.110.6.135:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 76792, version 0.0\012- data
Size
77 kB (76792 bytes)
Hash
6824f89aed1f9cea50aeae0f94e590e4
b110bcca0524f8b001826673291c6201fbebd161
7ef974010abfe71fb92dc3f53e3948e1e544cf6821bf9802ea0bf35fa8fe5af6

HTTP Headers

GET /cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Regular.woff HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://seip-srl.com
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: font/woff
content-length: 76792
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "1dc09d84-12bf8"
expires: Sat, 15 Aug 2020 17:53:33 GMT
cache-control: max-age=15552000
access-control-allow-origin: *
timing-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:56:46 GMT
vary: Origin, Accept-Encoding
X-Firefox-Spdy: h2

www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Medium.woff

104.110.6.135

200 OK

73 kB

URL HTTP/2
www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Medium.woff
IP
104.110.6.135:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 72956, version 0.0\012- data
Size
73 kB (72956 bytes)
Hash
ba8101d8a4e5a90bd9d07a05afd8466d
f616f6471fc3c3badb3cb8b693d4329deb2e2d3b
d5d7822393d3103ec421f72f09c7f7c78948c68da112031c0afd1c0b0da92c08

HTTP Headers

GET /cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Medium.woff HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://seip-srl.com
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: font/woff
content-length: 72956
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "1dc09d84-11cfc"
expires: Sat, 15 Aug 2020 17:31:29 GMT
cache-control: max-age=15552000
access-control-allow-origin: *
timing-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:56:46 GMT
vary: Origin, Accept-Encoding
X-Firefox-Spdy: h2

www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Light.woff

104.110.6.135

200 OK

74 kB

URL HTTP/2
www.aexp-static.com/cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Light.woff
IP
104.110.6.135:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 73604, version 0.0\012- data
Size
74 kB (73604 bytes)
Hash
7294a33a9bec0eae9f3adddbcfe009c9
6e2cf6a463aab5c238468b67831a30dbdf430bda
e9f9fab2d479b79aca1d3d3bf0a9fc36131752869363180bef040905a008cc1b

HTTP Headers

GET /cdaas/one/statics/axp-dls/5.10.1/package/dist/fonts/Roboto-Light.woff HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://seip-srl.com
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: font/woff
content-length: 73604
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "1dc09d84-11f84"
expires: Sat, 15 Aug 2020 17:53:33 GMT
cache-control: max-age=15552000
access-control-allow-origin: *
timing-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:56:46 GMT
vary: Origin, Accept-Encoding
X-Firefox-Spdy: h2

www.aexp-static.com/cdaas/one/statics/axp-static-assets/2.2.0/package/dist/iconfont/dls-icons.woff?v=2.1.0

104.110.6.135

200 OK

45 kB

URL HTTP/2
www.aexp-static.com/cdaas/one/statics/axp-static-assets/2.2.0/package/dist/iconfont/dls-icons.woff?v=2.1.0
IP
104.110.6.135:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 44552, version 1.0\012- data
Size
45 kB (44552 bytes)
Hash
b9e2a1b82e4c8e3fb8ff083b1a6f596b
350a8f9813c75ee0bc16edc87a7565cf226c6d1e
6c2307e5fa4f3725b00710176eeab8c23abbcd4acfd6f7c70389acc9d08d82f0

HTTP Headers

GET /cdaas/one/statics/axp-static-assets/2.2.0/package/dist/iconfont/dls-icons.woff?v=2.1.0 HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://seip-srl.com
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: font/woff
content-length: 44552
last-modified: Mon, 06 Jan 2020 21:18:42 GMT
etag: "5e13a432-ae08"
expires: Sun, 16 Aug 2020 03:57:28 GMT
cache-control: max-age=15552000
access-control-allow-origin: *
timing-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:56:46 GMT
vary: Origin, Accept-Encoding
X-Firefox-Spdy: h2

seip-srl.com/jss/amex/fonts/Roboto-Regular.ttf

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/fonts/Roboto-Regular.ttf
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/fonts/Roboto-Regular.ttf HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/css/dls.css

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:46 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/vendors.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/vendors.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/vendors.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/iconfont/dls-icons.woff

192.185.122.119

404 Not Found

12 kB

URL HTTP/1.1
seip-srl.com/jss/amex/iconfont/dls-icons.woff
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
12 kB (11816 bytes)
Hash
a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/iconfont/dls-icons.woff HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/css/dls.css

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Content-Length: 11816
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/en-US.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/en-US.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/en-US.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/iconfont/dls-icons.ttf

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/iconfont/dls-icons.ttf
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/iconfont/dls-icons.ttf HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/css/dls.css

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-identity-root.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-identity-root.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-identity-root.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-universal-session-manager.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-universal-session-manager.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-universal-session-manager.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-data-layer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-data-layer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-data-layer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3265
Expires: Fri, 31 Mar 2023 18:51:12 GMT
Date: Fri, 31 Mar 2023 17:56:47 GMT
Connection: keep-alive

seip-srl.com/jss/amex/css/axp-one-seo.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-one-seo.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-one-seo.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: text/html

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3265
Expires: Fri, 31 Mar 2023 18:51:12 GMT
Date: Fri, 31 Mar 2023 17:56:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3265
Expires: Fri, 31 Mar 2023 18:51:12 GMT
Date: Fri, 31 Mar 2023 17:56:47 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10271 bytes)
Hash
424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 1cXec9_e-KpzyTwiHaNAaf0y5i12tw7BkZTXnduS5ek7yAAZ0LXTWw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:48:08 GMT
age: 72519
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6380 bytes)
Hash
8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: L6tgzFrj9t69Rnfd9bziAPiROAX0tvcj9Kcg8sXkto8qRFeKqiwkpg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:17:06 GMT
age: 70781
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5806 bytes)
Hash
8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: WnrfQr57EWYnXt1xJt9tr5XCuM3gPYULlDdEVpv2Q2kz7MDIPxSPKA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
age: 72537
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10490 bytes)
Hash
0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jl5cQc_Zqq5xNDMcs5jRHb3HBIjuucl-JHF126hInXrOfv_CG-UqSg==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:18:02 GMT
age: 70725
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11061 bytes)
Hash
39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 72537
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4370 bytes)
Hash
41f0baa1423dbd529f6c47bd51fe708f
f09b44f30b63f5e29dd247f592147ffc6b308e72
313b769259453565919ab14410faea927a23ad75636abc57851dfe67d43ea156

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4370
x-amzn-requestid: 5791c184-d5eb-4666-bc94-f838cd0183af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHrcIAMFSWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-15fb3d2f67359d6837df5d0d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: SutOql3FzsHZoFN5TXMJZ1NZzBplZK1w0zNIzAN1rUQ2cKeSrCiA6w==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
age: 72537
etag: "f09b44f30b63f5e29dd247f592147ffc6b308e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

seip-srl.com/jss/amex/css/axp-global-header.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-global-header.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-global-header.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:47 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-login-alert.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-login-alert.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-login-alert.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-page-wrapper.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-page-wrapper.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-page-wrapper.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-identity-login-page.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-identity-login-page.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-identity-login-page.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-providers.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-providers.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-providers.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-footer.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-footer.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-footer.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=58
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-login.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-login.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-login.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=57
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-root.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-root.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-root.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=56
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/axp-search-box.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/axp-search-box.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/axp-search-box.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:48 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=55
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/app.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/app.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/app.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:49 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=54
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/cc.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/cc.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/cc.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:49 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/gtkp_aa.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/gtkp_aa.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/gtkp_aa.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:49 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=53
Connection: Keep-Alive
Content-Type: text/html

seip-srl.com/jss/amex/css/timeout.js

192.185.122.119

404 Not Found

4.7 kB

URL HTTP/1.1
seip-srl.com/jss/amex/css/timeout.js
IP
192.185.122.119:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
4.7 kB (4677 bytes)
Hash
e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - American Express
urlquery	phishing	Phishing - American Express
fortinet	Phishing

HTTP Headers

GET /jss/amex/css/timeout.js HTTP/1.1
Host: seip-srl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://seip-srl.com/jss/amex/

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 17:56:49 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 16:18:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html

www.aexp-static.com/cdaas/axp-app/modules/axp-identity-root/1.36.0/images/icon-192.png

104.110.6.135

200 OK

7.2 kB

URL HTTP/2
www.aexp-static.com/cdaas/axp-app/modules/axp-identity-root/1.36.0/images/icon-192.png
IP
104.110.6.135:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
7.2 kB (7242 bytes)
Hash
0696656f7545af976eb4641141d81696
80ff69a28d379c7fa0a13388d857e2bc67afd7b9
19ff8bb08694905f12c0e9235e51bf28491bea785de0bc182e2c3346db7456a9

HTTP Headers

GET /cdaas/axp-app/modules/axp-identity-root/1.36.0/images/icon-192.png HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 7242
last-modified: Tue, 04 Jan 2022 17:03:54 GMT
etag: "61d47dfa-1c4a"
timing-allow-origin: *
cache-control: max-age=31536000, must-revalidate
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:56:49 GMT
vary: Origin, Accept-Encoding
X-Firefox-Spdy: h2

www.americanexpress.com/favicon.ico

104.110.26.196

200 OK

1.4 kB

URL HTTP/2
www.americanexpress.com/favicon.ico
IP
104.110.26.196:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1381 bytes)
Hash
3b59e51534607dfefbcce3772b913031
77bb0792ab706ca3a687c5df968814f11fd96bfe
d3f8ea2f4b84bdc76bac4cd065481deb32efafb2b412906beeafc46b2f80217a

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://seip-srl.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=15552000;
last-modified: Fri, 07 Jun 2019 04:05:21 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1381
x-cnection: close
content-type: image/x-icon
date: Fri, 31 Mar 2023 17:56:49 GMT
set-cookie: agent-id=eb25b751-92db-4564-bbfb-ed26905f9a1e; expires=Sat, 30-Mar-2024 17:56:49 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (92)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN