Report - intlskill.com/IDX3/login.php

Report Overview

Visited public
2023-12-05 09:50:38
Tags
swosspass phishing transport
Submit Tags
URL
intlskill.com/IDX3/login.php
Finishing URL
intlskill.com/IDX3/login.php
IP / ASN
103.8.27.247
#132241 SKSA TECHNOLOGY SDN BHD
Title
Anmeldung | SwissPass
Phishing - SwissPass

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
resources.swisspass.ch	unknown	unknown	2017-02-16 18:20:22	2023-12-01 02:15:37	476 B	2.5 kB	193.203.121.145
cdn.app.sbb.ch	610967	unknown	2018-04-04 16:01:55	2023-12-03 20:35:48	1.0 kB	30 kB	35.157.120.117
sbb-privacy.my.onetrust.com	unknown	2004-01-12	2022-02-07 11:11:17	2023-12-04 15:40:32	488 B	425 B	172.64.155.119
geolocation.onetrust.com	802	2004-01-12	2018-02-07 12:23:41	2023-12-05 05:12:31	483 B	468 B	104.18.32.137
cdn.cookielaw.org	502	2011-06-20	2013-12-28 14:20:36	2023-12-04 05:09:57	5.4 kB	276 kB	104.18.130.236
assets.adobedtm.com	512	2013-11-22	2014-01-28 05:51:35	2023-12-04 05:12:23	456 B	40 kB	2.18.172.233
intlskill.com	unknown	unknown	No data	No data	7.4 kB	1.1 MB	103.8.27.247

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	intlskill.com/IDX3/resources/js/swisspass.min-20200819.js	ScriptElement	99 kB	2023-03-09	2025-06-28
Pretty URL intlskill.com/IDX3/resources/js/swisspass.min-20200819.js IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 08:10 Last Seen2025-06-28 20:35 Times Seen1155 Hash e37fe394cc3945b173b27bcd3b2b9779 1e2fd6607c9dfe3a1c5beebbe89dd1d7e8b657ce 225e078f0432e7459d74e8d9245f1982570a3897d664ca2d219ccd09b244ab95 Loading...

	intlskill.com/IDX3/resources/js/vendor/head/modernizr/modernizr-20200819.js	ScriptElement	7.8 kB	2023-03-09	2025-06-26
Pretty URL intlskill.com/IDX3/resources/js/vendor/head/modernizr/modernizr-20200819.js IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 08:10 Last Seen2025-06-26 11:21 Times Seen640 Hash 4d11af9e90e621d0f067d464959ebd7b e256d0de8ac8b68019ee29d65894cbe58f513a52 4a3d4cf982535aaf485c6e3af9ad1498df5c065adf94eed056f0aa13c31e92ed Loading...

	assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js	ScriptElement	127 kB	2023-11-23	2025-05-04
Pretty URL assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js IP 2.18.172.233 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 03:47 Last Seen2025-05-04 17:08 Times Seen638 Hash d5bf712a6ebd7590bb155ad6e1290f49 7161acdca9b24c3189fe2d8e9807faee2cccd345 f053f049a78c3afbce0d34f57d0bea4a24f7964d0e1e45197a35c06124b5e357 Loading...

	cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js	ScriptElement	413 kB	2023-05-26	2025-07-04
Pretty URL cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js IP 104.18.130.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 16:19 Last Seen2025-07-04 00:01 Times Seen1713 Hash 53e75bd25e32c985e8459eba598e5e64 9765a64b1e9c9dea4ed7c93d619e59ce7ea2d1e0 ed3a69e3267f056582ed012f7252319adb227fed203a4781eb820ea732aa4594 Loading...

	intlskill.com/IDX3/resources/js/vendor/vendor.min-20200819.js	ScriptElement	179 kB	2023-03-09	2025-06-28
Pretty URL intlskill.com/IDX3/resources/js/vendor/vendor.min-20200819.js IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 08:10 Last Seen2025-06-28 20:35 Times Seen1170 Hash ccfc9b3b004cfb4f51ae7853af5f78d9 2c52cec1f06c406c4d5d2cf34e870ef15a85dad7 be0223ae72bc8c610c7a5453d349964cbe78ff8646695a58bc13a4cf0a8d81d6 Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	ScriptElement	21 kB	2023-11-21	2024-08-20
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.18.130.236 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-21 03:18 Last Seen2024-08-20 18:33 Times Seen2340 Hash 653dc5af4212698688db76a143fdd61a 393fada41c29c4d6c85a7857def729bc4d2cecce 9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a Loading...

	intlskill.com/IDX3/login.php	ScriptElement	122 B	2023-04-01	2025-07-01
Pretty URL intlskill.com/IDX3/login.php IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:47 Last Seen2025-07-01 06:27 Times Seen1135 Hash 713aeea58cd01d7b9ac09bfcea2367e1 0edb9d4d94e7eaec5ece698656d35f26913eb570 cebaedab49b32eba60e39fd9412496c01d842a714005e33c90a1a6bdfc60a558 Loading...

	intlskill.com/IDX3/login.php	ScriptElement	1.2 kB	2023-04-01	2025-07-01
Pretty URL intlskill.com/IDX3/login.php IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:47 Last Seen2025-07-01 06:27 Times Seen1052 Hash af6e188f8e8a8e651edb9c2b3bc92a96 a1359d735cb1e4547ee57b0f364c3c389f000562 9136713a058843bd63557e0aeef78012991e62e02802cb972d6b37f79a3642e5 Loading...

	intlskill.com/IDX3/login.php	ScriptElement	1.3 kB	2023-04-01	2025-07-01
Pretty URL intlskill.com/IDX3/login.php IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:47 Last Seen2025-07-01 06:27 Times Seen1134 Hash 801a46fa9aeeaf954acd83bf806928d9 1f04f3395a9267b3b49f05e332faaf526083d8f8 bb0e4a47c01bfbef3dfe6bab3fa0c8b411b201a287702a2722d155bd1a1b6298 Loading...

	intlskill.com/IDX3/login.php	ScriptElement	78 B	2023-04-01	2025-07-01
Pretty URL intlskill.com/IDX3/login.php IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:47 Last Seen2025-07-01 06:27 Times Seen1133 Hash d4f26d1da47678006e67e5fd79a88ad9 fe725245d62d62b88207e35da5fceb09e43aac50 d7d7889cb348f7e9cf13d05d8eeea3a489b72e8ab58bb74d2cf729a3ab1d0377 Loading...

	intlskill.com/IDX3/login.php	ScriptElement	3.6 kB	2023-04-01	2025-07-01
Pretty URL intlskill.com/IDX3/login.php IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:47 Last Seen2025-07-01 06:27 Times Seen1129 Hash 399145ad4b661f389b189a7859447fca 8f84097c65c1ae82fa7c9f44af016277d44f5489 d79ff28f0b8b29873e29747e25953c44056b945cfd7d66bc16442950676deed1 Loading...

	intlskill.com/IDX3/login.php	ScriptElement	874 B	2023-04-01	2025-07-01
Pretty URL intlskill.com/IDX3/login.php IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-01 10:47 Last Seen2025-07-01 06:27 Times Seen1129 Hash 1f11ff1516de147edbc859172b88b90f ff41ecad197c7a41e95c051691f24f7c4809ecce ec11e1250a7ae1b1b398c4c87c7faff45940cebf586c6ace0a61bc0cfbffce47 Loading...

	intlskill.com/IDX3/resources/primefaces/jquery/jquery-20200819.js	ScriptElement	97 kB	2023-03-10	2025-06-28
Pretty URL intlskill.com/IDX3/resources/primefaces/jquery/jquery-20200819.js IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:55 Last Seen2025-06-28 20:35 Times Seen1172 Hash 43327285f22db304e1bc08eae9c9522e aff0883be1487a752a7431783bf2e5eb2c39353f 24f31a4afb4d98c85b6cff4c9a953654a77986d6c4c9e9cae52cf57e59095e01 Loading...

	intlskill.com/IDX3/login.php	ScriptElement	0 B	0001-01-01	2025-07-04
Pretty URL intlskill.com/IDX3/login.php IP 103.8.27.247 ASN #132241 SKSA TECHNOLOGY SDN BHD Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-04 06:08 Times Seen5271230 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (31)

URL IP Response Size

GET cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.18.130.236

200 OK

6.8 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (21099)
Size
6.8 kB (6841 bytes)
Hash
653dc5af4212698688db76a143fdd61a
393fada41c29c4d6c85a7857def729bc4d2cecce
9ea1823078c462969eaa59d6ef62623c19d77b72e25a103105b043aefaa0769a

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:20 GMT
content-type: application/javascript
content-length: 6841
content-encoding: gzip
content-md5: /EzX6ku1+i8ak28m1WuIrw==
last-modified: Mon, 04 Dec 2023 17:01:16 GMT
etag: 0x8DBF4EAA0FAF419
x-ms-request-id: 8a53d9a9-b01e-0058-2a28-27e1dc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 9467
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b625f2b75569c-OSL
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js

104.18.130.236

200 OK

99 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
99 kB (99428 bytes)
Hash
53e75bd25e32c985e8459eba598e5e64
9765a64b1e9c9dea4ed7c93d619e59ce7ea2d1e0
ed3a69e3267f056582ed012f7252319adb227fed203a4781eb820ea732aa4594

HTTP Headers

GET /scripttemplates/202305.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:20 GMT
content-type: application/javascript
content-length: 99428
content-encoding: gzip
content-md5: fuN6EZWNAh2xn3yE+0HSRQ==
last-modified: Tue, 11 Jul 2023 02:35:48 GMT
etag: 0x8DB81B7897E828A
x-ms-request-id: bb61c14c-801e-006c-0ac6-0bd214000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 12104
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b625f2b78569c-OSL
X-Firefox-Spdy: h2

GET assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js

2.18.172.233

200 OK

39 kB

URL GET HTTP/2
assets.adobedtm.com/15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js
IP
2.18.172.233:443
ASN
#16625 AKAMAI-AS

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32765)
Size
39 kB (39144 bytes)
Hash
d5bf712a6ebd7590bb155ad6e1290f49
7161acdca9b24c3189fe2d8e9807faee2cccd345
f053f049a78c3afbce0d34f57d0bea4a24f7964d0e1e45197a35c06124b5e357

HTTP Headers

GET /15ff638fdec4/7a0c4d63ddff/launch-6cc731e967aa.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d5bf712a6ebd7590bb155ad6e1290f49:1700654894.794356"
last-modified: Wed, 22 Nov 2023 12:08:14 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Tue, 05 Dec 2023 10:50:20 GMT
date: Tue, 05 Dec 2023 09:50:20 GMT
content-length: 39144
access-control-allow-origin: https://intlskill.com
timing-allow-origin: *
X-Firefox-Spdy: h2

GET intlskill.com/IDX3/login.php

103.8.27.247

200 OK

148 kB

URL User Request GET HTTP/1.1
intlskill.com/IDX3/login.php
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32972), with CRLF line terminators
Size
148 kB (147510 bytes)
Hash
a634c849881e3ed395de25be8978eb7a
3d3511def30826d59f609547dbfabee84fc1f19c
48a3c691b859e96ac92cce0160d3036b0dbd183a985675ce965bf19c4db1d499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/login.php HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:19 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

GET cdn.cookielaw.org/logos/d8f340ef-178f-4257-9ea8-01744cfc5459/182f96bb-6fd6-41f6-bfd2-2807f1757dae/039a2007-c2e0-4340-8d2c-4e6f23342858/OneTrust_SwissPass_logo_mobile.png

104.18.130.236

200 OK

2.0 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/d8f340ef-178f-4257-9ea8-01744cfc5459/182f96bb-6fd6-41f6-bfd2-2807f1757dae/039a2007-c2e0-4340-8d2c-4e6f23342858/OneTrust_SwissPass_logo_mobile.png
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
PNG image data, 100 x 50, 8-bit colormap, non-interlaced\012- data
Size
2.0 kB (1962 bytes)
Hash
cd5e1b7e01b85b2716c593d706f3e6f2
d9e647da2b1c1f440f2513fd699159f74b5bf6d5
e42fe383c86ab1185425bf334a44f9a311dd06d8ccf9e409d05b45dbe0bc48c6

HTTP Headers

GET /logos/d8f340ef-178f-4257-9ea8-01744cfc5459/182f96bb-6fd6-41f6-bfd2-2807f1757dae/039a2007-c2e0-4340-8d2c-4e6f23342858/OneTrust_SwissPass_logo_mobile.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:20 GMT
content-type: image/png
content-length: 1962
content-md5: zV4bfgG4WycWxZPXBvPm8g==
last-modified: Wed, 03 Mar 2021 11:26:34 GMT
etag: 0x8D8DE3733F257B1
x-ms-request-id: b846143e-a01e-006b-1f90-0cbe77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 69003
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b6260dd6a569c-OSL
X-Firefox-Spdy: h2

GET intlskill.com/IDX3/resources/primefaces/jquery/jquery-20200819.js

103.8.27.247

200 OK

97 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/primefaces/jquery/jquery-20200819.js
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32060)
Size
97 kB (97364 bytes)
Hash
43327285f22db304e1bc08eae9c9522e
aff0883be1487a752a7431783bf2e5eb2c39353f
24f31a4afb4d98c85b6cff4c9a953654a77986d6c4c9e9cae52cf57e59095e01

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/primefaces/jquery/jquery-20200819.js HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:20 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 02:00:18 GMT
Accept-Ranges: bytes
Content-Length: 97364
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

GET intlskill.com/IDX3/resources/js/vendor/head/modernizr/modernizr-20200819.js

103.8.27.247

200 OK

7.8 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/js/vendor/head/modernizr/modernizr-20200819.js
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (7466)
Size
7.8 kB (7769 bytes)
Hash
4d11af9e90e621d0f067d464959ebd7b
e256d0de8ac8b68019ee29d65894cbe58f513a52
4a3d4cf982535aaf485c6e3af9ad1498df5c065adf94eed056f0aa13c31e92ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/js/vendor/head/modernizr/modernizr-20200819.js HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:20 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 01:59:46 GMT
Accept-Ranges: bytes
Content-Length: 7769
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

GET intlskill.com/IDX3/resources/css/normal/app/sso.min-20200819.css

103.8.27.247

200 OK

184 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/css/normal/app/sso.min-20200819.css
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
184 kB (184032 bytes)
Hash
d842e9d9dcb61c04b743e144d73184f3
6e48afc9ec0812c5e1a68bd2cc61cc862816354a
c350b4b555a2d3118e64d364024b724f38bb595d56366f2d7cfe9b0dd4c77843

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/css/normal/app/sso.min-20200819.css HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:20 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 23:05:14 GMT
Accept-Ranges: bytes
Content-Length: 184032
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET resources.swisspass.ch/content/dam/swisspass/co-branding/sbbkn/logo.png

193.203.121.145

200 OK

1.8 kB

URL GET HTTP/1.1
resources.swisspass.ch/content/dam/swisspass/co-branding/sbbkn/logo.png
IP
193.203.121.145:443
ASN
#31004 Schweizerische Bundesbahnen SBB

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerSwissSign AG
Subjectresources.swisspass.ch
Fingerprint6F:98:02:CF:4C:3C:93:33:D6:5D:99:B4:45:98:B5:7D:3F:26:FB:24
ValidityTue, 02 May 2023 12:49:36 GMT - Thu, 02 May 2024 12:49:36 GMT

File type
PNG image data, 170 x 19, 8-bit colormap, non-interlaced\012- data
Size
1.8 kB (1818 bytes)
Hash
90212f3504e52c2077f65efc908f4b82
aa57cc70978927a10889f4bb8b278cd223fc178a
d45fd2cc05090e4b504f361216b1032409ed3cdf9904f50ce56e8a6b0f3c006e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /content/dam/swisspass/co-branding/sbbkn/logo.png HTTP/1.1
Host: resources.swisspass.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:21 GMT
Server: Apache
Content-Length: 1818
ETag: "71a-60bb9a90f0ff4"
Expires: Tue, 05 Dec 2023 15:49:17 GMT
Cache-Control: max-age=21600
Vary: User-Agent,X-Requested-With
Last-Modified: Tue, 05 Dec 2023 02:04:53 GMT
X-Plattform: cprod
x-url: /content/dam/swisspass/co-branding/sbbkn/logo.png
X-Varnish: 580556182 547378247
X-Cache: HIT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/png

GET cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json

104.18.130.236

200 OK

1.5 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3891), with no line terminators
Size
1.5 kB (1529 bytes)
Hash
f5799ae37e4b3e55228f06bd94e410b9
ea839d7c5653ba227b5e8422967787372306722d
27059a7f9f3259d2eed9ad9c5781b3bbced25e1288f0fceb11acf832620fef08

HTTP Headers

GET /consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/x-javascript
content-length: 1529
cf-ray: 830b6266cd88569c-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DB6BF787509085
last-modified: Tue, 13 Jun 2023 10:18:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: S7X9KDEnrSBGLviuIbRqFQ==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d99e91bd-f01e-0082-0d60-27783d000000
x-ms-version: 2009-09-19
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

GET intlskill.com/IDX3/resources/img/logo-20200819.svg

103.8.27.247

200 OK

7.4 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/img/logo-20200819.svg
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (7374), with no line terminators
Size
7.4 kB (7374 bytes)
Hash
795242580bfa3135028bd0750fdc1654
2c344b6662e62ddbdba49f635e1c33a827fe75d4
deeee170c3759a6ed35c0c05c5b935d0e7638f1c0c5677166918ecff6edb1909

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/img/logo-20200819.svg HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:21 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 01:42:04 GMT
Accept-Ranges: bytes
Content-Length: 7374
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

GET intlskill.com/IDX3/resources/img/loader-20200819.png

103.8.27.247

200 OK

272 B

URL GET HTTP/1.1
intlskill.com/IDX3/resources/img/loader-20200819.png
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
PNG image data, 24 x 24, 4-bit colormap, non-interlaced\012- data
Size
272 B (272 bytes)
Hash
1a7ca896940219da5393e26600e0ee7b
558e1d3bad16b2faa7527f1f3133e21bf89cd507
f766c7457c6ec463eaa85778aa47261344f1772e0b7cf1987ad212f889f472f5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/img/loader-20200819.png HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:21 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 01:41:44 GMT
Accept-Ranges: bytes
Content-Length: 272
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

GET intlskill.com/IDX3/resources/img/logo_text_de-20200819.svg

103.8.27.247

200 OK

140 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/img/logo_text_de-20200819.svg
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1350)
Size
140 kB (139971 bytes)
Hash
512410d9227bb0c2481e175dce0eda72
1deb5d9f09592101e632a8351865d54b1d6a27f7
c337d42ed7979c6be0282900bd957dd9d112a430dc7761463d655eb8f0d9bc07

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:21 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 02:03:56 GMT
Accept-Ranges: bytes
Content-Length: 139971
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

GET cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Light.woff2

35.157.120.117

200 OK

14 kB

URL GET HTTP/2
cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Light.woff2
IP
35.157.120.117:443
ASN
#16509 AMAZON-02

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerAmazon
Subject*.app.sbb.ch
Fingerprint91:97:68:15:9B:1D:9F:0F:5B:C1:DB:F4:EE:DC:A6:EC:4A:2A:09:71
ValidityWed, 16 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14212, version 1.0\012- data
Size
14 kB (14212 bytes)
Hash
8b70a44a98a0ac5d721df7d8f5136f7b
10e10c01e732f3d35a78e1051bfcc9fe2589ddda
5c7f0e173844556da7ca5eb8936fa3dab1c00206960920a49a1eea9cde2bfaaf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /fonts/v1_6_subset/SBBWeb-Light.woff2 HTTP/1.1
Host: cdn.app.sbb.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/font-woff2
content-length: 14212
server: nginx/1.25.3
last-modified: Fri, 17 Dec 2021 15:16:26 GMT
vary: Accept-Encoding
etag: "61bca9ca-3784"
expires: Wed, 04 Dec 2024 09:50:21 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
cache-control: max-age=31536000, public, private
accept-ranges: bytes
set-cookie: 9527f1a32486d650b0687919ffd41c2b=52f0541f9f8f4206aabb929d1ac849fe; path=/; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2

GET intlskill.com/IDX3/resources/js/swisspass.min-20200819.js

103.8.27.247

200 OK

99 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/js/swisspass.min-20200819.js
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
99 kB (99324 bytes)
Hash
e37fe394cc3945b173b27bcd3b2b9779
1e2fd6607c9dfe3a1c5beebbe89dd1d7e8b657ce
225e078f0432e7459d74e8d9245f1982570a3897d664ca2d219ccd09b244ab95

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/js/swisspass.min-20200819.js HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:20 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 01:58:58 GMT
Accept-Ranges: bytes
Content-Length: 99324
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

GET intlskill.com/IDX3/resources/js/vendor/vendor.min-20200819.js

103.8.27.247

200 OK

179 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/js/vendor/vendor.min-20200819.js
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (663)
Size
179 kB (179210 bytes)
Hash
ccfc9b3b004cfb4f51ae7853af5f78d9
2c52cec1f06c406c4d5d2cf34e870ef15a85dad7
be0223ae72bc8c610c7a5453d349964cbe78ff8646695a58bc13a4cf0a8d81d6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/js/vendor/vendor.min-20200819.js HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:20 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 01:59:18 GMT
Accept-Ranges: bytes
Content-Length: 179210
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

GET intlskill.com/IDX3/resources/fonts/icomoon/icomoon.woff2?7m5yri

103.8.27.247

200 OK

6.9 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/fonts/icomoon/icomoon.woff2?7m5yri
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 6944, version 1.0\012- data
Size
6.9 kB (6944 bytes)
Hash
175797213b8b8dffcc1bd588a9ecec2f
6214e06b11da9fadc19ed601467ca86617839e7e
45b8f30ef99295a0d738416e4e5af9fa2dd41619499622c2c57416580fc7197b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/fonts/icomoon/icomoon.woff2?7m5yri HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/resources/css/normal/app/sso.min-20200819.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:21 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 01:58:14 GMT
Accept-Ranges: bytes
Content-Length: 6944
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

GET cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js

104.18.130.236

200 OK

99 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202305.1.0/otBannerSdk.js
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
99 kB (99428 bytes)
Hash
53e75bd25e32c985e8459eba598e5e64
9765a64b1e9c9dea4ed7c93d619e59ce7ea2d1e0
ed3a69e3267f056582ed012f7252319adb227fed203a4781eb820ea732aa4594

HTTP Headers

GET /scripttemplates/202305.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/javascript
content-length: 99428
content-encoding: gzip
content-md5: fuN6EZWNAh2xn3yE+0HSRQ==
last-modified: Tue, 11 Jul 2023 02:35:48 GMT
etag: 0x8DB81B7897E828A
x-ms-request-id: bb61c14c-801e-006c-0ac6-0bd214000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 12105
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b626908c1569c-OSL
X-Firefox-Spdy: h2

GET intlskill.com/idp/co-branding?resource=co-branding&lang=de&provider=

103.8.27.247

404 Not Found

315 B

URL GET HTTP/1.1
intlskill.com/idp/co-branding?resource=co-branding&lang=de&provider=
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /idp/co-branding?resource=co-branding&lang=de&provider= HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 05 Dec 2023 09:50:21 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json

104.18.130.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (47858), with no line terminators
Size
13 kB (13180 bytes)
Hash
39abfe8a42109cb51aff0a8229f3e567
8af43377efe635e7e2657f4dbe8cfc215b1fe275
baa501b6aec5713c50f5202ee673d2397fdb2423d86577952277fb31bf5b0ea6

HTTP Headers

GET /consent/e91f4b90-f9aa-4ace-891b-96dd07595d9f-test/ba92dbb5-02d7-443f-8481-b67e4427328b/de-ch.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intlskill.com/
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/x-javascript
content-length: 13180
cf-ray: 830b62697965569c-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: *
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DB6BF78A955A3C
last-modified: Tue, 13 Jun 2023 10:18:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: gsgcCcbskVX4SGLciXs8ZA==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d8dfcea6-d01e-0013-2e60-271d8f000000
x-ms-version: 2009-09-19
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/202305.1.0/assets/otFlat.json

104.18.130.236

200 OK

3.0 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202305.1.0/assets/otFlat.json
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (11171)
Size
3.0 kB (3019 bytes)
Hash
c2bbc3724e963e27244e489b265363b5
d1fbd7d575c4fe9ada30ffe47633a288caeb23e7
aa355c393e03f831dbdbcc678ba16396aab95930b1bc5b0549695d40cc955ca1

HTTP Headers

GET /scripttemplates/202305.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intlskill.com/
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/json
content-length: 3019
content-encoding: gzip
content-md5: iCAxFkQWfzfDHevR0IbBjg==
last-modified: Tue, 11 Jul 2023 02:35:41 GMT
etag: 0x8DB81B78556557A
x-ms-request-id: 80330643-601e-0029-58a3-2607f7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b626a1a42569c-OSL
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/202305.1.0/assets/v2/otPcTab.json

104.18.130.236

200 OK

13 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202305.1.0/assets/v2/otPcTab.json
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (50881)
Size
13 kB (13388 bytes)
Hash
145311c82ac3491656be44cc67fcd48c
a0f10c3a9f1b464edae1617f306b908d7b111c57
32a8c8c75e0574d43215424909195c56e950e04c0839abec5e7cf5b0c0ac4282

HTTP Headers

GET /scripttemplates/202305.1.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intlskill.com/
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/json
content-length: 13388
content-encoding: gzip
content-md5: icB0rlbk2rDhRv/9fRK6uA==
last-modified: Tue, 11 Jul 2023 02:35:44 GMT
etag: 0x8DB81B786D01660
x-ms-request-id: 0d7313d0-b01e-002a-2a5e-27e693000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b626a1a45569c-OSL
X-Firefox-Spdy: h2

GET cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Roman.woff2

35.157.120.117

200 OK

14 kB

URL GET HTTP/2
cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Roman.woff2
IP
35.157.120.117:443
ASN
#16509 AMAZON-02

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerAmazon
Subject*.app.sbb.ch
Fingerprint91:97:68:15:9B:1D:9F:0F:5B:C1:DB:F4:EE:DC:A6:EC:4A:2A:09:71
ValidityWed, 16 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14152, version 1.0\012- data
Size
14 kB (14152 bytes)
Hash
82e55d1865d40988204fa60522628f4b
e9d74fb23204a62c520d19b8fae3f0193539cdfb
966a89b8080879ba41c6b9f15c5efb58182c33a0d2d1e08748beb554b28b4997

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /fonts/v1_6_subset/SBBWeb-Roman.woff2 HTTP/1.1
Host: cdn.app.sbb.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/font-woff2
content-length: 14152
server: nginx/1.25.3
last-modified: Fri, 17 Dec 2021 15:16:26 GMT
vary: Accept-Encoding
etag: "61bca9ca-3748"
expires: Wed, 04 Dec 2024 09:50:21 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
cache-control: max-age=31536000, public, private
accept-ranges: bytes
set-cookie: 9527f1a32486d650b0687919ffd41c2b=35e4ba9d280d88629b2cfd7e2969a2ce; path=/; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2

GET intlskill.com/IDX3/resources/img/login_bg.jpg

103.8.27.247

200 OK

226 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/img/login_bg.jpg
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3508x2339, components 3\012- data
Size
226 kB (226097 bytes)
Hash
2cc7e4969f296cbabbd97cc9044d562b
a687ac80bd3d9997b7df2c4e7105b7abbce116f8
c299a55acdc9c551ab7e67912892c6db8ed164dbcebaca370aa75f0f1297c8d4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/img/login_bg.jpg HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:21 GMT
Server: Apache
Last-Modified: Sun, 02 Jul 2023 10:28:40 GMT
Accept-Ranges: bytes
Content-Length: 226097
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

GET cdn.cookielaw.org/logos/static/ot_guard_logo.svg

104.18.130.236

200 OK

656 B

URL GET HTTP/2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
656 B (656 bytes)
Hash
1bdbcf897e760a7ab9ee7bb18132b53c
24aaf1c43c32c5889e60ace6ba7616747e3ebb9e
7b0bee3bf0f92a09e7fc4aa9ca612d422c75a787183c9947aa148a37c08078e3

HTTP Headers

GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intlskill.com/
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:22 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Tue, 05 Dec 2023 04:23:21 GMT
x-ms-request-id: d053ad87-201e-0065-595e-2797c7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b626b9c4c569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

GET intlskill.com/IDX3/resources/img/favicon.ico?v=20140709-1126

103.8.27.247

200 OK

1.2 kB

URL GET HTTP/1.1
intlskill.com/IDX3/resources/img/favicon.ico?v=20140709-1126
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
6d866d9c4568bf7fc03e597e74ce7e28
e1b3d9f0e9cdcb785a94b6c1e1fe651a4ff98dcb
7c1925da382279a72f94990d0a1456f78918619f35780ea0905e4ae0db684677

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/img/favicon.ico?v=20140709-1126 HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Dec+05+2023+09%3A50%3A27+GMT%2B0000+(Coordinated+Universal+Time)&version=202305.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=13385535-4c06-4cc8-aa87-2fdd852f4245&interactionCount=0&landingPath=https%3A%2F%2Fintlskill.com%2FIDX3%2Flogin.php&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 09:50:22 GMT
Server: Apache
Last-Modified: Fri, 24 Mar 2023 02:10:50 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon

sbb-privacy.my.onetrust.com/request/v1/consentreceipts

172.64.155.119

0 B

URL
sbb-privacy.my.onetrust.com/request/v1/consentreceipts
IP
172.64.155.119:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /request/v1/consentreceipts HTTP/1.1
Host: sbb-privacy.my.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7872
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 201 Created
date: Tue, 05 Dec 2023 09:50:35 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830b62c10fd67128-OSL
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/scripttemplates/202305.1.0/assets/otCommonStyles.css

104.18.130.236

200 OK

22 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202305.1.0/assets/otCommonStyles.css
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (21608), with no line terminators
Size
22 kB (21608 bytes)
Hash
a169014cb8030d7beb52c77ddf2fd9c6
fbe4667b4f8f01cd6c4dd2f9c9cacfb389cb54e1
d0c233d327541d2961f1cde9e53a6166279655f4d4041c1bc458ac1701827719

HTTP Headers

GET /scripttemplates/202305.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://intlskill.com/
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: text/css
content-md5: oWkBTLgDDXvrUsd93y/Zxg==
last-modified: Tue, 11 Jul 2023 02:35:52 GMT
x-ms-request-id: 2047d619-401e-0011-305e-27a337000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b626a1a4a569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

GET intlskill.com/IDX3/resources/ico/apple-touch-icon-precomposed-20200819.png

103.8.27.247

404 Not Found

315 B

URL GET HTTP/1.1
intlskill.com/IDX3/resources/ico/apple-touch-icon-precomposed-20200819.png
IP
103.8.27.247:443
ASN
#132241 SKSA TECHNOLOGY SDN BHD

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuercPanel, Inc.
Subjectintlskill.com
Fingerprint4F:3F:84:BD:05:03:FA:FD:B6:77:31:C2:15:6E:D8:AB:59:15:29:7C
ValidityThu, 02 Nov 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (326), with no line terminators
Size
315 B (315 bytes)
Hash
97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - SwissPass

HTTP Headers

GET /IDX3/resources/ico/apple-touch-icon-precomposed-20200819.png HTTP/1.1
Host: intlskill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/IDX3/login.php
Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Dec+05+2023+09%3A50%3A27+GMT%2B0000+(Coordinated+Universal+Time)&version=202305.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=13385535-4c06-4cc8-aa87-2fdd852f4245&interactionCount=0&landingPath=https%3A%2F%2Fintlskill.com%2FIDX3%2Flogin.php&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 05 Dec 2023 09:50:22 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET geolocation.onetrust.com/cookieconsentpub/v1/geo/location

104.18.32.137

200 OK

72 B

URL GET HTTP/2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
104.18.32.137:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectonetrust.com
Fingerprint9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47
ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 12 Nov 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
72 B (72 bytes)
Hash
adf75b99dbbf416c627dfc5de30f9ad1
699f3845f7dfb3fa9968c2117b44c3f3eb728fff
a0e4a8f457272bd17d07ae2e1e09731df6cc6fdc3ea9e32e713ef4a8a012fc27

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://intlskill.com
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:21 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830b6267f8965694-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

GET cdn.cookielaw.org/logos/static/powered_by_logo.svg

104.18.130.236

200 OK

5.2 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
104.18.130.236:443
ASN
#13335 CLOUDFLARENET

Requested by
https://intlskill.com/IDX3/login.php
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5220), with no line terminators
Size
5.2 kB (5194 bytes)
Hash
38b5388f36f8f885deb26afdac0e3116
112eccab1891a3a7cab1c5602ba72c9e127136e0
a8562f11c5a80a5c1c4ab388cfa2a69598203a57a5c67d1f80512bddd80d09ef

HTTP Headers

GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intlskill.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:50:20 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Sat, 02 Dec 2023 03:07:05 GMT
x-ms-request-id: 7686745b-801e-0088-2dd3-24dc8a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 26672
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b6260dd6c569c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by