Report - www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html

Report Overview

Visited public
2023-12-08 15:31:53
Tags
URL
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Finishing URL
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
IP / ASN
54.83.152.79
#14618 AMAZON-AES
Title
Sign in to Outlook

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.jbaddoclothiers.com	unknown	2021-02-22	2021-03-01 19:38:05	2023-12-08 08:28:51	5.5 kB	79 kB	54.83.152.79

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (9)

URL IP Response Size

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html

54.83.152.79

200 OK

8.6 kB

URL User Request GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1026)
Size
8.6 kB (8578 bytes)
Hash
2a4aa3aa274880755894a8a210c51725
1fd6d8724feed1925c3b9c35f1af98bebb30d58d
b34e8a0ff38011d8c7fe8e5b68c9db092dcdced4ab0130732a14434b2a051e26

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Thu, 16 Nov 2023 08:52:28 GMT
ETag: "97a4-60a4123adab00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8578
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/Converged_v21033_sKiljltKC1Ne_Y3fl1HuHQ2.css

54.83.152.79

200 OK

20 kB

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/Converged_v21033_sKiljltKC1Ne_Y3fl1HuHQ2.css
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
ASCII text, with very long lines (61112)
Size
20 kB (20215 bytes)
Hash
b0a8a58e5b4a0b535efd8ddf9751ee1d
e8f8a920c15d0281f6ca9f121be54564c07806cf
b5d0f98c1f1dd6f3f1973f8d9e22fa9c616e0e3c74c0d6310bd62b488deec24c

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/Converged_v21033_sKiljltKC1Ne_Y3fl1HuHQ2.css HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "1b032-60a2f48b7a700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20215
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg

54.83.152.79

200 OK

1.6 kB

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1592), with no line terminators
Size
1.6 kB (1592 bytes)
Hash
4e48046ce74f4b89d45037c90576bfac
4a41b3b51ed787f7b33294202da72220c7cd2c32
8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "638-60a2f48b7a700"
Accept-Ranges: bytes
Content-Length: 1592
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg

54.83.152.79

200 OK

3.7 kB

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Size
3.7 kB (3651 bytes)
Hash
ee5c8d9fb6248c938fd0dc19370e90bd
d01a22720918b781338b5bbf9202b241a5f99ee4
04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "e43-60a2f48b7a700"
Accept-Ranges: bytes
Content-Length: 3651
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/53_7a3c80bf9694448bac31a9589d2e9e92.png

54.83.152.79

200 OK

5.1 kB

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/53_7a3c80bf9694448bac31a9589d2e9e92.png
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
PNG image data, 342 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5139 bytes)
Hash
8b36337037cff88c3df203bb73d58e41
1ada36fa207b8b96b2a5f55078bfe2a97acead0e
e4e1e65871749d18aea150643c07e0aab2057da057c6c57ec1c3c43580e1c898

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/53_7a3c80bf9694448bac31a9589d2e9e92.png HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "1413-60a2f48b7a700"
Accept-Ranges: bytes
Content-Length: 5139
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/documentation_dae218aac2d25462ae286ceba8d80ce2.svg

54.83.152.79

200 OK

1.6 kB

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/documentation_dae218aac2d25462ae286ceba8d80ce2.svg
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1555), with no line terminators
Size
1.6 kB (1555 bytes)
Hash
bcb4d1dc4eae64f0b2b2538209d8435a
4f10568bc1b70bc98d5297b85812c33b3e636766
a76c08e9cdc3bb87bfb57627ad8f6b46f0e5ef826cc7f046dfbaf25d7b7958ea

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/documentation_dae218aac2d25462ae286ceba8d80ce2.svg HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "613-60a2f48b7a700"
Accept-Ranges: bytes
Content-Length: 1555
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/49-small_2055002f2daae2ed8f69f03944c0e5d9.jpg

54.83.152.79

200 OK

987 B

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/49-small_2055002f2daae2ed8f69f03944c0e5d9.jpg
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=paint.net 4.2.9], baseline, precision 8, 50x28, components 3\012- data
Size
987 B (987 bytes)
Hash
e58aafc980614a9cd7796bea7b5ea8f0
d4cac92dcde0caf7c571e6d791101da94fdbd2ca
8b34a475187302935336bf43a2bf2a4e0adb9a1e87953ea51f6fcf0ef52a4a1d

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/49-small_2055002f2daae2ed8f69f03944c0e5d9.jpg HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "3db-60a2f48b7a700"
Accept-Ranges: bytes
Content-Length: 987
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/49_6ffe0a92d779c878835b40171ffc2e13.jpg

54.83.152.79

200 OK

18 kB

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/49_6ffe0a92d779c878835b40171ffc2e13.jpg
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
JPEG image data, baseline, precision 8, 1920x1080, components 3\012- data
Size
18 kB (17453 bytes)
Hash
7916a894ebde7d29c2cc29b267f1299f
78345ca08f9e2c3c2cc9b318950791b349211296
d8f5ab3e00202fd3b45be1acd95d677b137064001e171bc79b06826d98f1e1d3

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/49_6ffe0a92d779c878835b40171ffc2e13.jpg HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:36 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "442d-60a2f48b7a700"
Accept-Ranges: bytes
Content-Length: 17453
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/favicon.ico

54.83.152.79

200 OK

17 kB

URL GET HTTP/1.1
www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/favicon.ico
IP
54.83.152.79:443
ASN
#14618 AMAZON-AES

Requested by
https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Certificate
IssuerLet's Encrypt
Subjectwww.jbaddoclothiers.com
Fingerprint4C:BF:7A:80:58:34:3A:72:21:CC:C9:7B:95:0C:05:7B:2D:12:74:8C
ValiditySun, 19 Nov 2023 05:31:36 GMT - Sat, 17 Feb 2024 05:31:35 GMT

File type
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Size
17 kB (17174 bytes)
Hash
12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

HTTP Headers

GET /wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/favicon.ico HTTP/1.1
Host: www.jbaddoclothiers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.jbaddoclothiers.com/wp-content/uploads/gravity_forms/f/d/c/h/test/configXFE/FaceBook/outlook.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 15:31:37 GMT
Server: Apache
Last-Modified: Wed, 15 Nov 2023 11:34:20 GMT
ETag: "4316-60a2f48b7a700"
Accept-Ranges: bytes
Content-Length: 17174
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: image/x-icon

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (9)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN