Report - mycityadvertising.com/email/verification/owrvnu/dGVyYW5jZS50YWt5aUB1YnMuY29t?login=ML

Report Overview

Submitted URL

mycityadvertising.com/email/verification/owrvnu/dGVyYW5jZS50YWt5aUB1YnMuY29t?login=ML
IP

69.49.245.172

ASN

#46606 UNIFIEDLAYER-AS-1
Submitted

2023-11-21T07:15:12Z

Access

public
Website Title

kwiq93f8b9
Final URL

kiedlng.com/redirect.cgi?ref=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
Tags

phishing microsoft outlook
urlquery detections

Phishing - Microsoft Outlook

Detections

urlquery

2
Network Intrusion Detection

0
Threat Detection Systems

0

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
kiedlng.com (12)	unknown	2023-11-20 13:28:10	2023-11-21 06:22:02	23703	947504	193.109.120.226
outlook.office365.com (1)	51	2013-04-11 01:09:24	2021-03-15 09:11:50	524	3031	40.101.1.34
r4.res.office365.com (9)	180	2017-03-03 13:49:03	2023-11-21 05:24:32	4543	1345457	23.36.79.43
aadcdn.msauthimages.net (2)	4795	2019-08-14 20:34:06	2023-11-19 18:15:33	1050	185536	152.199.23.72
4bfd4ade.23555334c639c3cc5f42b21b.workers.dev (3)	unknown	No data	No data	1799	50513	188.114.97.1
mycityadvertising.com (1)	unknown	2016-11-21 11:56:23	2023-11-20 17:23:28	541	281	69.49.245.172
challenges.cloudflare.com (9)	unknown	2021-10-20 07:02:03	2023-11-21 05:09:18	5730	472303	104.17.2.184

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (141)

Pretty

URL

outlook.office365.com/owa/prefetch.aspx
IP

40.101.1.34:443
ASN

#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Introduced by

scriptElement
Inline HTML

true

Observations

First Seen2023-03-07 01:01:59

Last Seen2023-11-28 14:44:04

Times Seen31884076
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Pretty

URL

kiedlng.com/redirect.cgi?ref=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
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

true

Observations

First Seen2023-11-21 08:15:20

Last Seen2023-11-21 08:15:20

Times Seen1
Hash

dc7b586e01849bf1d3c76f9c08edbdc6

b494bea9729a293d1275a4c2517e6e6ca41a08c0

fbf6ec70413f8eac9e86bcb7882de994eb235c31b9c3a49f1c9e14f81872676d

Pretty

URL

kiedlng.com/redirect.cgi?ref=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
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

true

Observations

First Seen2023-06-23 19:19:51

Last Seen2023-11-27 19:15:16

Times Seen28074
Hash

c9d2e88805f41751f718319cbe6921b9

d6663e2e9baa6a0fe4061c11641f054814fef7cd

62250daeb8f66262a50ae4aa5b673340eba07c7a5253c849492eb91459ea9a53

Pretty

URL

kiedlng.com/redirect.cgi?ref=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
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

true

Observations

First Seen2023-03-26 06:26:29

Last Seen2023-11-28 10:19:07

Times Seen33180
Hash

87efd6715519349131af142156db73f5

c97a4e521b65745b007efc70d310bc3d881592e7

03bde50da68e75d14367644f9f52809af9b55dbba6c171ce2c7b93523cdc5578

Pretty

URL

kiedlng.com/aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_o-ZZReABRa0UshwWo2BEBw2.js
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

false

Observations

First Seen2023-09-04 14:18:21

Last Seen2023-11-27 19:15:16

Times Seen42025
Hash

3e89ae909c6a8d8c56396830471f3373

2632f95a5be7e4c589402bf76e800a8151cd036b

6665ca6a09f770c6679556eb86cf4234c8bdb0271049620e03199b34b4a16099

Pretty

URL

kiedlng.com/redirect.cgi?ref=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvYXV0aG9yaXplP2NsaWVudF9pZD0wMDAwMDAwMi0wMDAwLTBmZjEtY2UwMC0wMDAwMDAwMDAwMDAmcmVkaXJlY3RfdXJpPWh0dHBzJTNhJTJmJTJmb3V0bG9vay5vZmZpY2UuY29tJTJmb3dhJTJmJnJlc291cmNlPTAwMDAwMDAyLTAwMDAtMGZmMS1jZTAwLTAwMDAwMDAwMDAwMCZyZXNwb25zZV9tb2RlPWZvcm1fcG9zdCZyZXNwb25zZV90eXBlPWNvZGUraWRfdG9rZW4mc2NvcGU9b3BlbmlkJm1zYWZlZD0xJm1zYXJlZGlyPTEmbG9naW5faGludD10ZXJhbmNlLnRha3lpJTQwdWJzLmNvbSZjbGllbnQtcmVxdWVzdC1pZD01NGYyMjEwOC1hMTY4LWQyMmEtZjUxNS0zZjFmN2UzYjMzMGMmcHJvdGVjdGVkdG9rZW49dHJ1ZSZjbGFpbXM9JTdiJTIyaWRfdG9rZW4lMjIlM2ElN2IlMjJ4bXNfY2MlMjIlM2ElN2IlMjJ2YWx1ZXMlMjIlM2ElNWIlMjJDUDElMjIlNWQlN2QlN2QlN2Qmbm9uY2U9NjM4MzYxNDc2OTM5NjY4MzI5LmQ0ZWViOTI2LTVmODgtNDQ4Mi04YTk2LWMwZTcyZWY3ZTMxZiZzdGF0ZT1EY3RCRHNJZ0VFQlJzR2N4Y1FPbGdNUE13bmdVUTNGUW9rSmlNY2JieS1MOTNaZENpR25ZRGRLTWlBQU9IU3ctQURrQ1FHZEpYejN6U2hiVU1TTXE3OUVxakFRcUdRNldjMkMzWkRuZXc5eS1jVDRfMjYzVXk3M1VmdXI4ampXeDd2SHhLM3R2UHV1bVUzdjlBUQ==
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

true

Observations

First Seen2023-03-07 01:06:22

Last Seen2023-11-28 10:19:07

Times Seen33410
Hash

2badc56bc4d494e70d476b2e4efd31da

384c5f0842cd2f786b0acc4cb159b75ad3620d46

8684cc6fc8b42cd798a7e1416fda8af6cea601dca2ecd3a253acfd9649f58fcb

Pretty

URL

kiedlng.com/redirect.cgi?ref=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
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

true

Observations

First Seen2023-06-09 20:22:55

Last Seen2023-11-27 19:15:16

Times Seen27546
Hash

951181c0a64d95a3862c8f5849fd9489

14ab172c8a715502b6c0d8ae6989da9b4118200a

b9bc19381c0d0fcf89fa73acff0d3ee08748249d485b8e458d69f0b837e57fc9

Pretty

URL

kiedlng.com/aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_orpt-59zawtpatdv5lgnaa2.js
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

false

Observations

First Seen2023-10-30 18:54:47

Last Seen2023-11-28 10:19:07

Times Seen9608
Hash

efc2c31f6733ab40432ef9ec279c276a

48466e7b71030f5e3d26cfbb2b168a4c2347b585

8c2b7ed436af858234b94a114aec116feb0df7d1f91177a0106f41b4deaee6ef

Pretty

URL

kiedlng.com/aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pconfirmsend_964df482332b296c7a9c.js
IP

193.109.120.226:443
ASN

#212913 FOP Hornostay Mykhaylo Ivanovych

Introduced by

scriptElement
Inline HTML

false

Observations

First Seen2023-07-15 18:33:58

Last Seen2023-11-25 00:19:27

Times Seen1227
Hash

336196795574923a45c91deabce50142

1ebf63f61bb5a1f51314c28e524ddc5116a69199

7981c52d67ee97d6a310ec885e4cededa359b68017aab386e9cb0330956be45a

Pretty

URL

moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/injections/js/bug1731825-office365-email-handling-prompt-autohide.js
IP

0.0.0.0:0
ASN

#0

Introduced by
Inline HTML

false

Observations

First Seen2023-04-11 22:15:44

Last Seen2023-11-28 13:12:24

Times Seen30869
Hash

7c873167b5d35fd9f6690071701d4669

f897afe9818a00a80e98bdbc67e7f67343f89378

014e00e9c71f02f5892cda29da8fd08058817ebd57a12cfee75236874f4e889a

Pretty

URL

data:text/javascript;base64,ZnVuY3Rpb24gYygpe2lmKCFkb2N1bWVudC5xdWVyeVNlbGVjdG9yKCIuYiIpIHx8ICFkb2N1bWVudC5xdWVyeVNlbGVjdG9yKCIuZyIpKXtkb2N1bWVudC5oZWFkLmFwcGVuZENoaWxkKE9iamVjdC5hc3NpZ24oZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgiZGl2Iikse2NsYXNzTGlzdDpbImIiXX0pKTtkb2N1bWVudC5kb2N1bWVudEVsZW1lbnQuc3R5bGUuZmlsdGVyPSJodWUtcm90YXRlKDRkZWcpIjtkb2N1bWVudC5oZWFkLmFwcGVuZENoaWxkKE9iamVjdC5hc3NpZ24oZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgiZGl2Iikse2NsYXNzTGlzdDpbImciXX0pKTtzZXRUaW1lb3V0KGMsMWUzKX19YygpOwo=
IP

0.0.0.0:0
ASN

#0

Introduced by

scriptElement
Inline HTML

false

Observations

First Seen2023-10-02 01:17:43

Last Seen2023-11-27 19:15:16

Times Seen20253
Hash

d6f18bfe02b31db3664d5d27f03ea142

aae6f850e8ea4ff74dcd6213ad6a4565cbd6802e

90682803943448f3acffc81014c87fdd71f30d8cf97335fcea451fac1e568221

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (141)

#1 JS:Script (size: 123)

Introduced by

Inline HTML

Observations

Hash

#2 JS:Script (size: 148)

Introduced by

Inline HTML

Observations

Hash

#3 JS:Script (size: 213)

Introduced by

Inline HTML

Observations

Hash

#4 JS:Script (size: 365)

Introduced by

Inline HTML

Observations

Hash

#5 JS:Script (size: 222)

Introduced by

Inline HTML

Observations

Hash

#6 JS:Script (size: 130)

Introduced by

Inline HTML

Observations

Hash

#7 JS:Script (size: 156)

Introduced by

Inline HTML

Observations

Hash

#8 JS:Script (size: 220)

Introduced by

Inline HTML

Observations

Hash

#9 JS:Script (size: 198)

Introduced by

Inline HTML

Observations

Hash

#10 JS:Script (size: 0)

URL

IP

ASN

Introduced by

Inline HTML

Observations

Hash