Report - xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/

Report Overview

Submitted URL
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
IP
43.159.201.225
ASN
#0
Submitted
2023-06-02 01:03:45
Access
public
Website Title
Final URL
Tags
bank_of_china financial phishing
urlquery detections
Phishing - Bank of China

Detections

urlquery
15
Network Intrusion Detection
2
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu	unknown	2023-05-31	2023-05-31	2023-06-01	10 kB	943 kB	43.159.201.225

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-02 01:03:26	medium	Client IP	Internal IP	ET INFO DNS Query for Suspicious .icu Domain
2023-06-02 01:03:27	medium	Client IP	43.159.201.225	ET INFO Suspicious Domain (*.icu) in TLS SNI

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
2023-06-01	medium	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/	394 B	2023-04-02	2023-10-18
Pretty URL xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/ IP 43.159.201.225 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-02 21:17:21 Last Seen2023-10-18 01:56:38 Times Seen96 Hash a2956815433bb0901a54ca1afbaba2b4 68238759793a2de854cd14a7c0357dc1affbcce5 86045b1664336d8e795e76bcf87034d8564496e4d547bc9eb94aa8d1724a51b2 Loading...

HTTP Transactions (18)

URL IP Response Size

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/logo.jpg

43.159.201.225

200 OK

34 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/logo.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=88, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=252], baseline, precision 8, 252x88, components 3\012- data
Size
34 kB (33902 bytes)
Hash
85a1a7abc073b452499d3321cda13061
7d10274c52f2ddeb0dab088eaca6de88c20a1084
ee741d5f7e242c281fef88623c430bc3d7469d5a488e04603a4b60e5acc4ff2b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/picture/logo.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: image/jpeg
content-length: 33902
last-modified: Mon, 12 Dec 2022 15:24:46 GMT
etag: "639747be-846e"
expires: Sun, 02 Jul 2023 01:03:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/diah.jpg

43.159.201.225

200 OK

1.6 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/diah.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 28x28, components 3\012- data
Size
1.6 kB (1614 bytes)
Hash
b9ab9731cab7021b192ae0087f34353f
f18aaf3322fab7ead48dd385c1ee18a7e4eed39d
7630a592e18c6bf34507f75d81a467df561ac28c151912c66634baccf112f9fd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/picture/diah.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: image/jpeg
content-length: 1614
last-modified: Mon, 12 Dec 2022 15:24:46 GMT
etag: "639747be-64e"
expires: Sun, 02 Jul 2023 01:03:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/61a4a1bebddd48558c817d778af23f7f.jpg

43.159.201.225

200 OK

10 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/61a4a1bebddd48558c817d778af23f7f.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 250x120, components 3\012- data
Size
10 kB (10202 bytes)
Hash
cf5deab62f822f9f4e70edb987ef5410
db6060224a4eab20f545bc1d7a3127d750537e93
d8d2483b6d7fbf4aafbedf593a38c7de081fa84dee9e6be5ef974f18c6018d25

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/picture/61a4a1bebddd48558c817d778af23f7f.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: image/jpeg
content-length: 10202
last-modified: Mon, 12 Dec 2022 15:24:46 GMT
etag: "639747be-27da"
expires: Sun, 02 Jul 2023 01:03:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/hxyw.jpg

43.159.201.225

200 OK

36 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/hxyw.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 357x227, components 3\012- data
Size
36 kB (36194 bytes)
Hash
26729760cc2b3ad27f0916c7900b25d1
d53e6b1d7a5897716a011f2d17ade171fb0926c5
707f512ed6d0ddd01bc3f17f5bf51f2981eb425b423dfe8de67a460e0d07df6d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/picture/hxyw.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: image/jpeg
content-length: 36194
last-modified: Mon, 12 Dec 2022 15:24:46 GMT
etag: "639747be-8d62"
expires: Sun, 02 Jul 2023 01:03:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/banner1.jpg

43.159.201.225

200 OK

76 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/picture/banner1.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1473x345, components 3\012- data
Size
76 kB (75820 bytes)
Hash
37d82cac4408404dce351ce5901d75ad
5521712e203fc10b408eb574d13c00f112d66630
361c249ee51c13b6aa2462f2ec67e60def3a503b228fc8f2fc3b4bc9990a9b91

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/picture/banner1.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: image/jpeg
content-length: 75820
last-modified: Mon, 12 Dec 2022 15:24:46 GMT
etag: "639747be-1282c"
expires: Sun, 02 Jul 2023 01:03:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css

43.159.201.225

200 OK

4.3 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
gzip compressed data, from Unix\012- data
Size
4.3 kB (4289 bytes)
Hash
48512dbeb7a061183469a90f9d5090db
6ce5375a536b62becc81fe0a9c8b1a861a5cb993
d62ae993ad5e13524ab8b876cdb49c9a8c8b424062657c51a17f2412b12d0777

Detections

Analyzer	Verdict	Alert
openphish	Bank of China

HTTP Headers

GET /static/css/index_style.css HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: text/css
last-modified: Mon, 19 Dec 2022 01:56:42 GMT
vary: Accept-Encoding
etag: W/"639fc4da-2cc3"
expires: Fri, 02 Jun 2023 13:03:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/top_right.jpg

43.159.201.225

200 OK

1.2 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/top_right.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 133x31, components 3\012- data
Size
1.2 kB (1231 bytes)
Hash
818a028d5669298faec8952134da9ea9
9249ebf2930a335ec2131c8c8d96c723e720fb52
5df913e4f0e19649e7ee42cde536684964251bf4c68b4ef678e4191ecd875205

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/top_right.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/jpeg
content-length: 1231
last-modified: Mon, 12 Dec 2022 15:24:48 GMT
etag: "639747c0-4cf"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/list_bg.jpg

43.159.201.225

200 OK

574 B

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/list_bg.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 19x39, components 3\012- data
Size
574 B (574 bytes)
Hash
17fe2f4e2b869a0a3df37c34fc4304fa
5bd8aeea78ef7147bd8f1ae4d5968d0e40ee6a92
d5a37870c21421ef35e4d01287f8f173b30f04f856d33aac76ae97f78c428844

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/list_bg.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/jpeg
content-length: 574
last-modified: Sat, 24 Sep 2022 15:10:40 GMT
etag: "632f1df0-23e"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/list.jpg

43.159.201.225

200 OK

1.8 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/list.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 252x28, components 3\012- data
Size
1.8 kB (1821 bytes)
Hash
919e7264b277df9eae4a4f01b2c216de
5b6b6af89db5af646c0a7767e17f4cfbdbf3c3d6
236c20452f23ad6a050c6126124a7e7d46635af86e78583f88582a3d3aa9ab30

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/list.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/jpeg
content-length: 1821
last-modified: Mon, 12 Dec 2022 15:24:50 GMT
etag: "639747c2-71d"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/zcfg_top_02.png

43.159.201.225

200 OK

957 B

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/zcfg_top_02.png
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
PNG image data, 32 x 9, 8-bit/color RGB, non-interlaced\012- data
Size
957 B (957 bytes)
Hash
c5c54a6e007ba937237c7f5ebb9a3846
aad320c7f2233f92a6077b7efa5ac97e90eee092
1915d26674f50717f9f45bd1aa2baa1a35633e5123aa4a52d78319634072c433

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/zcfg_top_02.png HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/png
content-length: 957
last-modified: Sat, 24 Sep 2022 15:10:42 GMT
etag: "632f1df2-3bd"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/zcfg_top_01.png

43.159.201.225

200 OK

1.3 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/zcfg_top_01.png
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
PNG image data, 24 x 9, 8-bit/color RGB, non-interlaced\012- data
Size
1.3 kB (1259 bytes)
Hash
7eeaffaebe4577842e48bb616df0ebd4
0426ee97c075941e77f2094d2273c9ec738546ed
3200e998cb13a5f1b38fb84a4ad295023060860d6a66162d377b45592ab928a5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/zcfg_top_01.png HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/png
content-length: 1259
last-modified: Sat, 24 Sep 2022 15:10:40 GMT
etag: "632f1df0-4eb"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/public.css

43.159.201.225

200 OK

92 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/public.css
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
gzip compressed data, from Unix\012- data
Size
92 kB (92071 bytes)
Hash
ed0145b04eaca658b556fceaab653587
85dda112aceb1bd996881ce39866f8ef088e4303
f1fe74e4088976a3cb9f88b9cfe4672939f551cabaf92bd4d9fc2fa3781c7ef3

Detections

Analyzer	Verdict	Alert
openphish	Bank of China

HTTP Headers

GET /static/css/public.css HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: text/css
last-modified: Mon, 12 Dec 2022 15:24:56 GMT
vary: Accept-Encoding
etag: W/"639747c8-78e"
expires: Fri, 02 Jun 2023 13:03:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/files/piaofu.js.%E4%B8%8B%E8%BD%BD

43.159.201.225

404 Not Found

285 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/files/piaofu.js.%E4%B8%8B%E8%BD%BD
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
gzip compressed data, from Unix\012- data
Size
285 kB (284581 bytes)
Hash
d0d691f32ee25a77cd55fcc9074c8f8e
443a430c1eabc59ea2a89319ec094c56d199c269
8beece049939e3bd553c3ea5561e1b3c7522d60e75dd7130586ddcc934f24a46

Detections

Analyzer	Verdict	Alert
openphish	Bank of China

HTTP Headers

GET /static/files/piaofu.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-frame-options: sameorigin
set-cookie: lang=zh-cn; path=/; secure; HttpOnly; SameSite=none
ssid=9722d2ca7c8b0ddcfc7b409dff6831cc; path=/; secure; HttpOnly; SameSite=none
content-encoding: gzip
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/top_left.jpg

43.159.201.225

200 OK

997 B

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/top_left.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 114x31, components 3\012- data
Size
997 B (997 bytes)
Hash
942713c60e9401f3df65d451f6c31231
49825f836a4c96f511760f321738186311a08770
8f5e5fefec0a420fcd643a08990ab603d5a314f011c0f44f12eb6db8e6036ebf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/top_left.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/jpeg
content-length: 997
last-modified: Mon, 12 Dec 2022 15:24:48 GMT
etag: "639747c0-3e5"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/favicon.ico

43.159.201.225

404 Not Found

753 B

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/favicon.ico
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (677), with no line terminators
Size
753 B (753 bytes)
Hash
cd2c995aae1bfa6d7bcbc70b0b210353
54beb97322e75b72ce5328e7a0dd06f1bce78439
1b8e09c518fc01f40af9abd0604dadf90b3f64e29dbccf3ee6d6c2523744d527

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx
date: Fri, 02 Jun 2023 01:03:30 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-frame-options: sameorigin
set-cookie: lang=zh-cn; path=/; secure; HttpOnly; SameSite=none
ssid=9722d2ca7c8b0ddcfc7b409dff6831cc; path=/; secure; HttpOnly; SameSite=none
content-encoding: gzip
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/top_bg.jpg

43.159.201.225

200 OK

91 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/top_bg.jpg
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
PNG image data, 951 x 151, 8-bit/color RGBA, non-interlaced\012- data
Size
91 kB (91210 bytes)
Hash
e1ddd550fc5fff9a85eea2f5543aae33
dd84d22b723e1295a1ffaba13140529cea0c77ae
3adb990cb0ae8f9cc0e489aae0dd1dbcb910a1d7482909a72b667ffa9620de40

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/top_bg.jpg HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/css/index_style.css
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/jpeg
content-length: 91210
last-modified: Mon, 12 Dec 2022 15:24:50 GMT
etag: "639747c2-1644a"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/20da.png

43.159.201.225

200 OK

284 kB

URL GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/static/image/20da.png
IP
43.159.201.225:443
ASN
#0

Requested by
https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type
PNG image data, 1920 x 761, 8-bit colormap, non-interlaced\012- data
Size
284 kB (284053 bytes)
Hash
40a30eadf3fc425615b1985176f38021
05483b6becc04a52c9acf659631f720a00fbcc42
09de34fcb08df6137f4d4f2ca14b72d744b375d9e526e1e679e6fcb786ae80e7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bank of China
openphish	Bank of China

HTTP Headers

GET /static/image/20da.png HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
Cookie: lang=zh-cn; ssid=9722d2ca7c8b0ddcfc7b409dff6831cc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:29 GMT
content-type: image/png
content-length: 284053
last-modified: Mon, 12 Dec 2022 15:24:48 GMT
etag: "639747c0-45595"
expires: Sun, 02 Jul 2023 01:03:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/

43.159.201.225

200 OK

15 kB

URL User Request GET HTTP/2
xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu/
IP
43.159.201.225:443
ASN
#0

Certificate
IssuerLet's Encrypt
Subjectxn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
Fingerprint40:D4:36:4F:7F:F6:89:E4:54:F3:53:F7:97:2C:14:D3:C9:69:31:0C
ValidityWed, 31 May 2023 16:07:16 GMT - Tue, 29 Aug 2023 16:07:15 GMT

File type

Size
15 kB (15354 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	Bank of China

HTTP Headers

GET / HTTP/1.1
Host: xn--ciqpn44k8stolcu2cf4buw8cfi9bdga.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 01:03:28 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-frame-options: sameorigin
set-cookie: lang=zh-cn; path=/; secure; HttpOnly; SameSite=none
ssid=9722d2ca7c8b0ddcfc7b409dff6831cc; path=/; secure; HttpOnly; SameSite=none
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (18)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type