Report - designcast.jp/-/POSTBANK/

Report Overview

Submitted URL
designcast.jp/-/POSTBANK/
IP
45.32.33.82
ASN
#20473 AS-CHOOPA
Submitted
2022-08-28 20:48:06
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-06T05:09:35Z	2.6 kB	51 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-06T05:09:03Z	2.0 kB	5.3 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-06T05:09:34Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-06T05:10:30Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-06T05:09:43Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-06T06:00:56Z	329 B	797 B	93.184.220.29
designcast.jp	unknown	2019-06-02T11:00:37Z	2022-12-08T06:54:09Z	10 kB	1.0 MB	45.32.33.82
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-06T05:09:12Z	594 B	127 B	35.162.217.251

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-08-27	medium	designcast.jp/-/POSTBANK/	Deutsche Postbank AG

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-08-28	medium	designcast.jp/-/POSTBANK/	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd?	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/core/form/core_form.js	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/bower_components/angular/angular.min.js	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/login/frutigerltw02-55roman.woff2	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/bower_components/ua-parser-js/dist/ua-parser.min.js	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/bower_components/jquery/dist/jquery.min.js	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/core/token/core_token.js	Phishing
2022-08-28	medium	designcast.jp/-/POSTBANK/login/token/token.js?v=630bd47f49bb2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	designcast.jp/-/POSTBANK/bower_components/ua-parser-js/dist/ua-parser.min.js	17 kB	2023-03-07	2024-04-19
Pretty URL designcast.jp/-/POSTBANK/bower_components/ua-parser-js/dist/ua-parser.min.js IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-19 23:46:08 Times Seen666 Hash e0ae48c8ebbe57edeacb5b02f16d0df9 0c5a29a88add39486162e0c16f23e2e06fc7842e 0fda30cf243e7650bf3e1666eddeb4fbba6b788ede36753eda5e2964cc14c896 Loading...

	designcast.jp/-/POSTBANK/bower_components/angular/angular.min.js	169 kB	2023-03-07	2024-04-17
Pretty URL designcast.jp/-/POSTBANK/bower_components/angular/angular.min.js IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-17 21:52:49 Times Seen427 Hash 4c619ef91e3fa3f1d4813db2b2eb738d c5f77156c6f5397be71914eb80d8f998ea1279e7 35f73a70cca067828be9e0a712b8b48908e1bc4490637c62bd70158f95cd6e27 Loading...

	designcast.jp/-/POSTBANK/login/form/form.js?v=630bd47f49ba9	3.9 kB	2023-03-07	2024-03-03
Pretty URL designcast.jp/-/POSTBANK/login/form/form.js?v=630bd47f49ba9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-03-03 07:38:52 Times Seen14 Hash f1ed7b31a835f14719399b5e758f4d4a cfe03b4f1c15ad1822e26ce0a6d89168efc2d500 9459cfdaef9d197d1f48a2190e65dff33a3906fc7f98f6c28bcad7478c30ef47 Loading...

	designcast.jp/-/POSTBANK/login/token/token.js?v=630bd47f49bb2	1.2 kB	2023-03-07	2023-12-03
Pretty URL designcast.jp/-/POSTBANK/login/token/token.js?v=630bd47f49bb2 IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-12-03 16:06:30 Times Seen14 Hash 7aefdd2429a99988bd435eb70526fcdb 1e2a64f9a946943d3751824efc4792fcb40e1694 a14c0795d3c8aa995526096002771398d1c43837b5935beeebcb460e4406296a Loading...

	designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?	57 B	2023-03-07	2023-03-07
Pretty URL designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/? IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-07 01:06:40 Times Seen1 Hash af60103bd359bbbb858dd0f8af0b2dcf e064804ee65d4be952bc44976b45493bc526e270 49f1aad7d5aa6002c2860c5c4eec6ff7a021a92c272dabd60e80ea168d1bff9e Loading...

	designcast.jp/-/POSTBANK/	109 B	2023-03-07	2023-03-07
Pretty URL designcast.jp/-/POSTBANK/ IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-07 01:06:40 Times Seen1 Hash ca1dd03ebf5153485db9766e6a7ec83f ad21e4437d0d63dfb3f5097477c9ee3689cbb408 f74191b16790b32861055af8a4eb70676ffee225c9d0537efe485d7cb4cb3d69 Loading...

	designcast.jp/-/POSTBANK/bower_components/jquery/dist/jquery.min.js	87 kB	2023-03-07	2024-04-25
Pretty URL designcast.jp/-/POSTBANK/bower_components/jquery/dist/jquery.min.js IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 02:13:23 Times Seen62223 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	designcast.jp/-/POSTBANK/core/form/core_form.js	15 kB	2023-03-07	2023-03-11
Pretty URL designcast.jp/-/POSTBANK/core/form/core_form.js IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-11 14:10:14 Times Seen1 Hash e87c87ce80479c2497a3c8e9e5bf333d 9a86d204b583a9404606cbe4eed06582da36c804 847b62572ed6998893449d7b8858d8bac034e6111ae8225922b1316f59c8fd80 Loading...

	designcast.jp/-/POSTBANK/core/token/core_token.js	11 kB	2023-03-07	2023-03-11
Pretty URL designcast.jp/-/POSTBANK/core/token/core_token.js IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-11 14:10:14 Times Seen1 Hash 9079c1cbc61e0f27ebd2cabd737f667a cc3abb2f5ebedd01b1e2f3c2ac1ecbbdad3e06c9 8f49bc9b4670e94d5ccfbe9b8279802d3b3dd3d8272bb01ba570119e795a4c93 Loading...

	designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?	19 kB	2023-03-07	2023-03-07
Pretty URL designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/? IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-07 01:06:40 Times Seen1 Hash 652003ad4d2c19bec8866327824bad51 40a78228b5fc469d4065f0954807358c5c254893 0afdfe24ed1f29ea81e1ad4ddd0693a18061d1e949032d159996323e5879724e Loading...

	designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?	473 B	2023-03-07	2023-03-07
Pretty URL designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/? IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-07 01:06:40 Times Seen1 Hash 743838c3b77923b06a70ea398427e061 bf099e272a7ce4d688ac914af4dd7c544d331a52 75a1c9bb7f6c4db3a9785d94c49c3b26bd4bbaa5b11e3d634202091501635124 Loading...

	designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?	57 B	2023-03-07	2023-03-07
Pretty URL designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/? IP 45.32.33.82 ASN #20473 AS-CHOOPA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-07 01:06:40 Times Seen1 Hash f13f3c168f66dde98829ee92c7f75f37 44e764e82ab36f102efdc9b256e009ec2cbe0d79 abab6a7151b69353cbf6c16ba1e45856ad07f1ee015c29bbf79da0e3c97c4339 Loading...

		Size	First Seen	Last Seen
	#1 Write - 0c542c2b9e8666717c073d4837d97a7d	14 kB	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 01:06:40 Last Seen2023-03-07 01:06:40 Times Seen1 Hash 0c542c2b9e8666717c073d4837d97a7d 8ffae6c66fed09e026fb362e349cbf0463356858 028b532aba6999c9750b791a36766b7678dfbf8a445fe74b4ef7d135490e9737 Loading...

HTTP Transactions (37)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
21b1296f31569e4fb94048c52df34904
3e3194f640d71b9da28e809660443e332bdba310
7ebe5d06efe28c8507b4cdfbf68c6e5bbd9919ba776990fb8a22d90cca0c1c1b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7EBE5D06EFE28C8507B4CDFBF68C6E5BBD9919BA776990FB8A22D90CCA0C1C1B"
Last-Modified: Sat, 27 Aug 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7271
Expires: Sun, 28 Aug 2022 22:49:07 GMT
Date: Sun, 28 Aug 2022 20:47:56 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 28 Aug 2022 20:14:00 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ScNitGCGNg4yE9QqqIGPbhvQwhkjqs8-VLYTt8A2JmID_GR0OuFrlA==
Age: 2036

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 27 Aug 2022 22:35:58 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pJ0vMhqNxW8NfSKX1-ogY7kALvh3Uw-7ZFAaly2Uzk753Faa_k3NAg==
age: 79918
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 28 Aug 2022 20:17:12 GMT
Cache-Control: max-age=3600
Expires: Sun, 28 Aug 2022 20:39:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EMsD_z5tNpr67jhWnoi3RjEKifpfCYKDPL-aKkVNIFibTKlLNdn6ig==
Age: 1844

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
396ffb5d17a8a353f8f748959fcf7966
8301f51528695b9c8a48de0e6e889b603f34308c
a5c0dd3453bdba148aea970cda083b70b3ba680286a6c65878cc369d20f1d216

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6170
Cache-Control: max-age=133296
Content-Type: application/ocsp-response
Date: Sun, 28 Aug 2022 20:47:56 GMT
Etag: "630b2212-1d7"
Expires: Tue, 30 Aug 2022 09:49:32 GMT
Last-Modified: Sun, 28 Aug 2022 08:06:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c84972ac2eb701edb25c445e8317fd1e
373ac6e6561c6f277b06f17596e6cf3fd2d30e05
6864338e85d17133f07b2776608d6a29324349ef0ff9406f5aa48dbf10387f21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6864338E85D17133F07B2776608D6A29324349EF0FF9406F5AA48DBF10387F21"
Last-Modified: Fri, 26 Aug 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 29 Aug 2022 02:47:56 GMT
Date: Sun, 28 Aug 2022 20:47:56 GMT
Connection: keep-alive

designcast.jp/-/POSTBANK/

45.32.33.82

200 OK

452 B

URL HTTP/2
designcast.jp/-/POSTBANK/
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
452 B (452 bytes)
Hash
b726f16a03e7ea902c46a0e581073d83
de51c3e4b4466e624ff6d245a62684fb6935ca5f
cfef5b01b3d678513de0b1c6a94b62ebca93703653f4c31116881358c89fd283

Detections

Analyzer	Verdict	Alert
openphish	Deutsche Postbank AG
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/ HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:56 GMT
content-type: text/html; charset=UTF-8
content-length: 452
set-cookie: real=OK
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-powered-by: PHP/8.0.22, PleskLin
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.162.217.251

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.217.251:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /HE0tlFX8ZcyjnaXK0jN+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jv9+icYlOsNR11s9V8Z3d5cA4YM=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3805
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 20:47:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3805
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 20:47:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3805
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 20:47:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
86b2884af34c96fbb194bd340a2d0193
e55b2a45be21cff15398ac7b7aff45206198fbdf
eff4ee2043ba81d81d564fae2b72994858725e9282d45972ca92291bbc193fee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EFF4EE2043BA81D81D564FAE2B72994858725E9282D45972CA92291BBC193FEE"
Last-Modified: Fri, 26 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3805
Expires: Sun, 28 Aug 2022 21:51:23 GMT
Date: Sun, 28 Aug 2022 20:47:58 GMT
Connection: keep-alive

designcast.jp/favicon.ico

45.32.33.82

404 Not Found

7.1 kB

URL HTTP/2
designcast.jp/favicon.ico
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
7.1 kB (7146 bytes)
Hash
f8f06a4b24e9b4b01b5992a6ad62b945
91a38b76020373fc74212fb9f6cb95e5920b6c23
992a7f08dbc7d67f94b12a3d170ee0320d2fec9df3ed908efe1accadfa36d5c2

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Sun, 28 Aug 2022 20:47:57 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0c25f-9ee9-4270-8c84-3f4087fa909d.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0c25f-9ee9-4270-8c84-3f4087fa909d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11901 bytes)
Hash
e619074d7134995ce35ea8e904053165
aa2f0fdb2fcfb0e6d33f520baf0d69af261129e4
a725cb2c6eddc63bdf463943f3ed045b564471e3a32f911caba37d82a7c1f0f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0c25f-9ee9-4270-8c84-3f4087fa909d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11901
x-amzn-requestid: 830f99b6-b678-4ad4-913f-94923fa289e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitVpFJWIAMFo1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f57-64bfc0256b49c9351c59a0a3;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9Ux9UWKimkRufIOI8pLv4DNQk27zo8fhKhKxCH4qfo7Ut2GiojW5og==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 21:55:43 GMT
etag: "aa2f0fdb2fcfb0e6d33f520baf0d69af261129e4"
content-type: image/jpeg
age: 82335
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0d146-88a6-4ec6-a71c-bb9dd4314497.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7505 bytes)
Hash
ef5729bf444dd3cc7b8e7945187e09ee
ec62fa681d45d696fc7308fede11cd16979594fd
34d5df4a669399f171489c9cd0f90a53eea21c35c1ccd310df39cc356c9922cd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2b0d146-88a6-4ec6-a71c-bb9dd4314497.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7505
x-amzn-requestid: 66ed5a9b-1b9c-40c4-b757-7c13e9dc6410
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitJxFFSIAMFhrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f0b-24404d4f7a2cae8f4c3bcb97;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:39:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UFJ0DtBufSFfM1vFxdagMV5tpP5ZEH2NbdduFvVM6sL7UVpdhSBhGQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 22:03:39 GMT
age: 81859
etag: "ec62fa681d45d696fc7308fede11cd16979594fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c76ac95-9347-4b2c-b714-273aa0c3ce73.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6921 bytes)
Hash
f492a725bd0ff1ffb9bda36a618c8163
54ebcbafcc02053b2e9477ef29e89c9924abb9e0
bbe69be8f14be3d6fdf09fee9cfdcee5847875bc9f6f6097e4afe1692553c125

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c76ac95-9347-4b2c-b714-273aa0c3ce73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6921
x-amzn-requestid: 727cc3c0-9535-43cf-8aa6-1f46d74a5e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xis-bGrXIAMF6ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8ec2-4794034041513a7022688600;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QiL5v8h4rNJMJ8tsIdWb0xv7H28K96hH3V8-Fg312NDEdkNZ32IedQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 21:45:27 GMT
age: 82951
etag: "54ebcbafcc02053b2e9477ef29e89c9924abb9e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78cd7e71-95b2-4fb2-99cc-1b8645fc4d73.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10824 bytes)
Hash
e0a52aaf6cfd3c91ef396ec21e668634
96e49f02f48d8e212335722d7a95eba9b21050de
edd20b6a1790cc65fd16f64e6e58c01140d814ffb27a6fe6f41c7dc285a76b2b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78cd7e71-95b2-4fb2-99cc-1b8645fc4d73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10824
x-amzn-requestid: abf116d5-7ffd-4100-bbbb-f8ebcc903e48
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaJqgGfToAMFfmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6307230f-058b88810d3d902475af52a3;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:21:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 1QjI_En26B7SLes62WrxkEODPzBCDiUUo8ttH3vOUYsTTTo-ucHIqA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Sun, 28 Aug 2022 08:42:16 GMT
age: 43542
etag: "96e49f02f48d8e212335722d7a95eba9b21050de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febffc56c-14ba-44c3-a52a-2f2dca64b931.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8884 bytes)
Hash
bd559f24c149a22515344de424d9836d
10ae4c1080524020dfeb06984c8c98aabe07db6a
176d82e8f33969b2060fc8d1c8ac93e3e0934f857d90bcdeb7d83454d7d0448d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febffc56c-14ba-44c3-a52a-2f2dca64b931.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8884
x-amzn-requestid: b83f1ecc-1efc-4178-84ce-9d05c053e078
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XitVoF9_oAMFegA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8f57-098fcb077607ffbd2a589692;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GcDiexM3A8JfyGrpvFB9OVebksdmIlIM48gwihb_4qcAs3Nzb2253A==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 27 Aug 2022 21:55:42 GMT
age: 82336
etag: "10ae4c1080524020dfeb06984c8c98aabe07db6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd?

45.32.33.82

301 Moved Permanently

282 B

URL HTTP/2
designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd?
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
282 B (282 bytes)
Hash
b0555c4c392057c040075a9fa44daa25
c71e920d4a5b4590becb347d84838bc9e8298407
80e8579b4169880c04d625d477f5461f3e3352a04c3b3b67f62d3c342b73e346

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd? HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/
Cookie: real=OK
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 28 Aug 2022 20:47:58 GMT
content-type: text/html; charset=iso-8859-1
content-length: 282
location: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/?
x-powered-by: PleskLin
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/?

45.32.33.82

302 Found

0 B

URL HTTP/2
designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/?
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/? HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://designcast.jp/-/POSTBANK/
Connection: keep-alive
Cookie: real=OK
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
server: nginx
date: Sun, 28 Aug 2022 20:47:58 GMT
content-type: text/html; charset=UTF-8
content-length: 0
set-cookie: bid=20a0c20d4086ab22f890ae35b12245cd
location: login/?
vary: User-Agent
x-powered-by: PHP/8.0.22, PleskLin
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?

45.32.33.82

200 OK

5.9 kB

URL HTTP/2
designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18851)
Size
5.9 kB (5851 bytes)
Hash
d53461268b44dbbf98e73b026c87910f
3fee50126f89d57f6546aecef92d9b8ee300e31e
fe9d7cfc314ed648708470d7a1ad046e9a6549a4291a4d004ae7ae9170577844

HTTP Headers

GET /-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/? HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://designcast.jp/-/POSTBANK/
Connection: keep-alive
Cookie: bid=20a0c20d4086ab22f890ae35b12245cd; real=OK
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: text/html; charset=UTF-8
content-length: 5851
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-powered-by: PHP/8.0.22, PleskLin
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/login/index.css

45.32.33.82

200 OK

24 kB

URL HTTP/2
designcast.jp/-/POSTBANK/login/index.css
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
Unicode text, UTF-8 text, with very long lines (703)
Size
24 kB (24312 bytes)
Hash
a53fce1a92218c4bdad93c9090f2894f
58d6e993cefc483927739fc58e5ddbd0845383cf
56751a3b0c1c9887866f368e05a1a84d3f4008b4b11ef03ad539a5bf8443d3ea

HTTP Headers

GET /-/POSTBANK/login/index.css HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: text/css
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-3596b"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/login/iob5_login_alte_anmeldung.jpg

45.32.33.82

200 OK

16 kB

URL HTTP/2
designcast.jp/-/POSTBANK/login/iob5_login_alte_anmeldung.jpg
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x666, components 3\012- data
Size
16 kB (15808 bytes)
Hash
bd3338c1e54fc648afc4ea578794e7f5
f4b0847e252b0e1c387764f5145bd063f5691fa8
550778f7050b2f39fc38c8e326c78e0a53921774f9f39dd3685f1c73efee2613

HTTP Headers

GET /-/POSTBANK/login/iob5_login_alte_anmeldung.jpg HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:48:00 GMT
content-type: image/jpeg
content-length: 15808
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
etag: "5fc34242-3dc0"
expires: Sun, 04 Sep 2022 20:48:00 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/core/form/core_form.js

45.32.33.82

200 OK

9.8 kB

URL HTTP/2
designcast.jp/-/POSTBANK/core/form/core_form.js
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
ASCII text
Size
9.8 kB (9827 bytes)
Hash
7b45f04f865929a2f261d9ee1dbaaffc
21ac281be9118fb5e39729e35c85d74ad9fef19f
64d2f2c3ddd9e7877948513f919a10755acd10b7f8e65dc4b42b94429f82ff98

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/core/form/core_form.js HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: application/javascript
last-modified: Tue, 04 May 2021 07:33:15 GMT
vary: Accept-Encoding
etag: W/"6090f8bb-3b3e"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/login/iob_5_login_psd2.jpg

45.32.33.82

200 OK

212 kB

URL HTTP/2
designcast.jp/-/POSTBANK/login/iob_5_login_psd2.jpg
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1374x610, components 3\012- data
Size
212 kB (211638 bytes)
Hash
70db256d6f055a031505b926e9ea0e3b
860754a83d3c9040394b6ec35982b57d8102eee6
96473ac90957af87da5dedfd4f58c79a165e67676c71f0bc4b93d94d30d831ba

HTTP Headers

GET /-/POSTBANK/login/iob_5_login_psd2.jpg HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:48:00 GMT
content-type: image/jpeg
content-length: 211638
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
etag: "5fc34242-33ab6"
expires: Sun, 04 Sep 2022 20:48:00 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/bower_components/angular/angular.min.js

45.32.33.82

200 OK

68 kB

URL HTTP/2
designcast.jp/-/POSTBANK/bower_components/angular/angular.min.js
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
ASCII text, with very long lines (552)
Size
68 kB (67823 bytes)
Hash
66c1c0673ef2c045f6459b3ca29370bc
b475cbdbfd765f589564dc2801dbb23661c9df36
ed4f7dd86388761ecb5e7398fb9724393918fa949fad4164bb4a035e2e466c01

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/bower_components/angular/angular.min.js HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: application/javascript
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-2937c"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/login/favicon-16x16.png

45.32.33.82

200 OK

763 B

URL HTTP/2
designcast.jp/-/POSTBANK/login/favicon-16x16.png
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
763 B (763 bytes)
Hash
7928dcbd4ef94be62d92d6218e8b917d
93768c3b84bc447a0f4b3449f93e386001106431
705e422f4c2ca8ff8521e6ca5bedf071785a13505c4cfe90693f539cead2b1f7

HTTP Headers

GET /-/POSTBANK/login/favicon-16x16.png HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:48:01 GMT
content-type: image/png
content-length: 763
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
etag: "5fc34242-2fb"
expires: Sun, 04 Sep 2022 20:48:01 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/core/form/core_form.css

45.32.33.82

200 OK

557 kB

URL HTTP/2
designcast.jp/-/POSTBANK/core/form/core_form.css
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
data
Size
557 kB (557122 bytes)
Hash
ef8d4e6b20b0cf0d68713fb2f6069042
d62bb4b1a169c88879de3bd2f5c4292b6259a952
32bfc673211421c1a5a33acc98291840183582f11d15490954b42a81d79d4630

HTTP Headers

GET /-/POSTBANK/core/form/core_form.css HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: text/css
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-639"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/login/frutigerltw02-55roman.woff2

45.32.33.82

200 OK

49 kB

URL HTTP/2
designcast.jp/-/POSTBANK/login/frutigerltw02-55roman.woff2
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
Web Open Font Format (Version 2), TrueType, length 49372, version 1.0\012- data
Size
49 kB (49372 bytes)
Hash
f75edc57b3c912b99387c7921e3dfddb
937d62e23c5e4090c6e3cf37536c0df3725c14bb
0392b37cafa1d3eaf5f00c2594df53bea1f7c7059180098d4185a2425d580d1c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/login/frutigerltw02-55roman.woff2 HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/login/index.css
Cookie: real=OK; lng=de
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:48:01 GMT
content-type: font/woff2
content-length: 49372
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
etag: "5fc34242-c0dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/bower_components/ua-parser-js/dist/ua-parser.min.js

45.32.33.82

200 OK

49 kB

URL HTTP/2
designcast.jp/-/POSTBANK/bower_components/ua-parser-js/dist/ua-parser.min.js
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
Unicode text, UTF-8 text, with very long lines (16817)
Size
49 kB (48895 bytes)
Hash
c46357c8b88601fa89be910d00b3b82d
0e6c678a92175669b0e78f3c85aa8c5862e851e2
aa2730a0eeb82f08afe0456fe769f3ced168c33688f63e52eab44c1cebe987d8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/bower_components/ua-parser-js/dist/ua-parser.min.js HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: application/javascript
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-4298"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/bower_components/jquery/dist/jquery.min.js

45.32.33.82

200 OK

30 kB

URL HTTP/2
designcast.jp/-/POSTBANK/bower_components/jquery/dist/jquery.min.js
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
ASCII text, with very long lines (32058)
Size
30 kB (29451 bytes)
Hash
e9f6554b9e54e780298cb4fb19b45f09
4318ca3e343df922487428cf6416885d50505d25
ef1114c533fc6cca1f7fff6bde406554d18c6227308812a1ea45b83385469a78

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/bower_components/jquery/dist/jquery.min.js HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: application/javascript
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-15283"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/home.php?pl=token&link=postbank.de&bid=20a0c20d4086ab22f890ae35b12245cd&callback=jQuery32103668376522016614_1661719679960&data=%7B%22mes%22%3A%22User%20on%20user%20page%22%7D&_=1661719679961

45.32.33.82

200 OK

74 B

URL HTTP/2
designcast.jp/-/POSTBANK/home.php?pl=token&link=postbank.de&bid=20a0c20d4086ab22f890ae35b12245cd&callback=jQuery32103668376522016614_1661719679960&data=%7B%22mes%22%3A%22User%20on%20user%20page%22%7D&_=1661719679961
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type
ASCII text, with no line terminators
Size
74 B (74 bytes)
Hash
b9f73c2ec440070392d8d2e88510ea00
929626ebad80dd2bd36e9edbdd563428ea210fba
23b43c9d6c1b5be4f54a1e5d9a1188f37404855da36c7a93e02aa06db8986a85

HTTP Headers

GET /-/POSTBANK/home.php?pl=token&link=postbank.de&bid=20a0c20d4086ab22f890ae35b12245cd&callback=jQuery32103668376522016614_1661719679960&data=%7B%22mes%22%3A%22User%20on%20user%20page%22%7D&_=1661719679961 HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK; lng=de
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:48:03 GMT
content-type: application/json
content-length: 74
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-powered-by: PHP/8.0.22, PleskLin
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/login/form/css.css

45.32.33.82

200 OK

0 B

URL HTTP/2
designcast.jp/-/POSTBANK/login/form/css.css
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /-/POSTBANK/login/form/css.css HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: text/css
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-472"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/bower_components/font-awesome/css/font-awesome.min.css

45.32.33.82

200 OK

0 B

URL HTTP/2
designcast.jp/-/POSTBANK/bower_components/font-awesome/css/font-awesome.min.css
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /-/POSTBANK/bower_components/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: text/css
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-7918"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/core/token/core_token.js

45.32.33.82

200 OK

0 B

URL HTTP/2
designcast.jp/-/POSTBANK/core/token/core_token.js
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/core/token/core_token.js HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:47:59 GMT
content-type: application/javascript
last-modified: Tue, 04 May 2021 07:35:34 GMT
vary: Accept-Encoding
etag: W/"6090f946-2ca8"
expires: Sun, 04 Sep 2022 20:47:59 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

designcast.jp/-/POSTBANK/login/token/token.js?v=630bd47f49bb2

45.32.33.82

200 OK

0 B

URL HTTP/2
designcast.jp/-/POSTBANK/login/token/token.js?v=630bd47f49bb2
IP
45.32.33.82:0
ASN
#20473 AS-CHOOPA

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-/POSTBANK/login/token/token.js?v=630bd47f49bb2 HTTP/1.1
Host: designcast.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://designcast.jp/-/POSTBANK/a1b2c3/20a0c20d4086ab22f890ae35b12245cd/login/?
Cookie: real=OK
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 28 Aug 2022 20:48:00 GMT
content-type: application/javascript
last-modified: Sun, 29 Nov 2020 06:40:02 GMT
vary: Accept-Encoding
etag: W/"5fc34242-4b8"
expires: Sun, 04 Sep 2022 20:48:00 GMT
cache-control: max-age=604800
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations