Report - bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso

Report Overview

Submitted URL
bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso
IP
27.71.237.19
ASN
#38731 CHT Compamy Ltd
Submitted
2022-12-06 00:28:35
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.43.61.95
www.bsi.com.vn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	22 kB	2.7 MB	27.71.237.19
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	90 kB	104.16.124.175
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
cdn.ckeditor.com	21818	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	185 kB	205.234.175.175
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	963 B	104.18.32.68
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	630 B	561 B	216.239.32.36
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	3.9 kB	104.110.10.32
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	77 kB	172.217.21.168
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	49 kB	151.101.1.229
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	31 kB	69.16.175.10
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.4 kB	93.184.220.29
bsi.com.vn	514775	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	414 B	422 B	27.71.237.19

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-06	medium	bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso	Malware
2022-12-06	medium	www.bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso	Malware
2022-12-06	medium	www.bsi.com.vn/assets/font/GoogleSans.ttf	Malware
2022-12-06	medium	www.bsi.com.vn/polyfills.60790f7e2fa838dd60d3.js	Malware
2022-12-06	medium	www.bsi.com.vn/assets/fontawesome/fonts/fa-light-300.woff2	Malware
2022-12-06	medium	www.bsi.com.vn/assets/js/js.js	Malware
2022-12-06	medium	www.bsi.com.vn/9.a5f7aa42b454dcd75d23.js	Malware
2022-12-06	medium	www.bsi.com.vn/undefined	Malware
2022-12-06	medium	www.bsi.com.vn/assets/i18n/vn.json	Malware
2022-12-06	medium	www.bsi.com.vn/5.1ffd0309cf2d71a69962.js	Malware
2022-12-06	medium	www.bsi.com.vn/main.9d810fb82fa557da8ad3.js	Malware
2022-12-06	medium	www.bsi.com.vn/	Malware
2022-12-06	medium	www.bsi.com.vn/runtime.d54f3d0afe8897d84eae.js	Malware
2022-12-06	medium	www.bsi.com.vn/common.7c47d54ed5a7a4ca769a.js	Malware
2022-12-06	medium	www.bsi.com.vn/15.be0daa37e72471e08b5a.js	Malware
2022-12-06	medium	www.bsi.com.vn/1.b4daa55638c038c891ce.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-04-25
Pretty URL code.jquery.com/jquery-3.2.1.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 06:14:33 Times Seen62275 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.bsi.com.vn/12.eef3d33a2f92da1ba456.js	31 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/12.eef3d33a2f92da1ba456.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:40 Times Seen1 Hash c927e825e174c180ee326ad3f7701151 315dddd970666f48ac3f52daed4067c096746063 17fdb5ea2a1d6e5f6ca6681d597df48698e12120680c0c185204c313d58a5272 Loading...

	cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js	21 kB	2023-03-07	2024-04-24
Pretty URL cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-24 19:07:01 Times Seen5951 Hash 1022eaf388cc780bcfeb6456157adb7d 313789ca0e31b654784dbba8b0f83f364f8683b4 fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.min.js	64 kB	2023-03-07	2024-04-25
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:47 Last Seen2024-04-25 05:25:33 Times Seen8546 Hash f0c2bcf5ef0c4476508d79ec9cdcce07 3beed68ed7d753c6bf4f61c26386ddd7929ba030 edd03b96ae4ff7886406c59d7dfeeaa1b624a7da297bf2f92d0cb6b7f9633cba Loading...

	www.bsi.com.vn/runtime.d54f3d0afe8897d84eae.js	2.7 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/runtime.d54f3d0afe8897d84eae.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:40 Times Seen1 Hash 48bafbd2bc19abdba47f4f6c0faedf45 0adaa028cf42d11c5f72637afefd8077b59ccdfd 2710d5289e209e858c171fddbc5f93f3d19063eba664631904cb47706d72e8cb Loading...

	www.bsi.com.vn/5.1ffd0309cf2d71a69962.js	4.9 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/5.1ffd0309cf2d71a69962.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash eb9470aa1c5c23046147b1782796ac37 4e6dc61b52bfb4c11f64058d70d941a6626b23ba 557acd52cb5d2fc0a0e5aeb816242ee63be3277a10945900eb8d83deb7450395 Loading...

	www.bsi.com.vn/16.7d40d84ee7e2c2e28d68.js	26 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/16.7d40d84ee7e2c2e28d68.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash 3333f3c8c2ad64e0d85f747ec802adec e9411c790befda0829a8ad9afc8fdd281b14cdab 5246f1eeaaa34fd8953b4b3fc65cfe070b485519a939989b2e8cf932ca3ffeed Loading...

	www.bsi.com.vn/4.95f4810245dec693ab3a.js	45 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/4.95f4810245dec693ab3a.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash 02e285f2fe796eada1fef0cf3eb4e4a9 2065ef1347de46a5d3459c638fb54df272754b26 af4bf8a105bee209988f4be5ef1846ae34793bd5211d3feb090247d670998e74 Loading...

	www.bsi.com.vn/3.71909fa98beb21e46e5f.js	48 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/3.71909fa98beb21e46e5f.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash 058ac5579e21fdedf15f14a308793947 033d70daff18f74c54753d1cf514c4aa0c3f7c36 e1cdf421c2799c8a5d53c9ee4a24121c0bdabe748fcafa3d29422bf6ece3d920 Loading...

	www.bsi.com.vn/common.7c47d54ed5a7a4ca769a.js	6.3 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/common.7c47d54ed5a7a4ca769a.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash 2cbb35491a11dc2cb5ecdaa249136b5f 92f4c602c6294a023878621ec6a07994323d9976 53c344cc573a1d2f567058575c308aa18003f45a086850d8f563a3713d4b8b82 Loading...

	www.bsi.com.vn/18.f60a30c081d42f7f3f9e.js	44 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/18.f60a30c081d42f7f3f9e.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash 760ca356c5458e42414e2f1183d912e2 3e2e4c2d588771bff78f4e212b69f8f2f1a2f628 49727934aad7feeb229e1359f5e7de18f9622ca49dd1a9e8e50953d4b77fdb82 Loading...

	www.bsi.com.vn/17.ef9fae5ecd1edd3c7764.js	51 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/17.ef9fae5ecd1edd3c7764.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash c24ea618d9762c9e7d68996c9dade562 a4d3b5a1ea1fd2020eabee321e62614de5dcb43b efa85bb4369e0c33025fe047c6e62c1c1ca4a251360111d25221477c79de09c6 Loading...

	unpkg.com/@fancyapps/ui/dist/fancybox.umd.js	106 kB	2023-03-07	2024-04-15
Pretty URL unpkg.com/@fancyapps/ui/dist/fancybox.umd.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:32 Last Seen2024-04-15 00:40:37 Times Seen572 Hash 0ce18f9ca64e6fdcac07ec7e97dac4c7 603af3e02f381a658f135eb80f4eef78cc7e750d d1a7f655b0b8be63ec6bc38b04028198ba32b8aab86c194a2b628e80c59aca2a Loading...

	www.bsi.com.vn/polyfills.60790f7e2fa838dd60d3.js	50 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/polyfills.60790f7e2fa838dd60d3.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash ded3363d4a9cd277a016a88140497125 7cf2c28303d80066c719e57929348c3ac81cf626 136dc2a07b59951326ca3093683e71c44660dc61a5c7dbcc172e8d2ccc296b65 Loading...

	www.bsi.com.vn/9.a5f7aa42b454dcd75d23.js	490 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/9.a5f7aa42b454dcd75d23.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:26 Last Seen2024-02-11 08:21:41 Times Seen1 Hash f1c21caf177bd6d21dd4226eb37966c6 25d1970adb6a32d2b220c50ca57090046d8d7698 81f71e2ca3cace6bd6e73d5014ba32609e40d95a93617089f784ed346865c462 Loading...

	www.bsi.com.vn/10.5e06b18295258dab0fb5.js	38 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/10.5e06b18295258dab0fb5.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:41 Times Seen1 Hash ee8c81fbb0597713cb63ef8fc8774ad3 5d8875494547abd7d41ef73b3971c31b358fd9e1 b75d5c9842a88d8d9cb5c37eee98cbf029f8f48f2f7bc2ed9d8798bb99d4642b Loading...

	www.bsi.com.vn/13.a76f11897debbbc3a2ad.js	52 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/13.a76f11897debbbc3a2ad.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:41 Times Seen1 Hash d5c58f6194421e8cdcfc7c50e115eb1e 0ebbbbd28ea1828e6bacc401f5cda58dc05d98cd 28c14a13ad0e0cce2bc14170ef1866460499ebcc96fce0c0bcc2bdd45cededb8 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 07:48:15 Times Seen37056493 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.bsi.com.vn/	177 B	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/ IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:41 Times Seen1 Hash df262de15c1a2083a258ca9e7fb340ae fc15c66a6993f8029f7d6984658dd871da4fd1d1 ffa3acf1dd70941d379e75cf6c5660f6088c73c6aa8e88f53402528d07a6c0ca Loading...

	www.bsi.com.vn/main.9d810fb82fa557da8ad3.js	540 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/main.9d810fb82fa557da8ad3.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:42 Times Seen1 Hash a9f63cbbeaae47652023afefafac4910 f738d5eac93bb5053527f8ce9166a558700ffa62 fe98188faa74091cbc698eb02b5c4f1f57ffc94809742c72b4ae5841fa47943b Loading...

	www.bsi.com.vn/15.be0daa37e72471e08b5a.js	48 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/15.be0daa37e72471e08b5a.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:42 Times Seen1 Hash d3472c7877fe6578f94638ed8096cc29 790a2cfef2e02813e819786b8ed8a85e73ea9b9c 0292b81ed7152e935179f74a021a7ae9070890b22e0da9565fdcc17953fe300c Loading...

	www.bsi.com.vn/	62 B	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/ IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:42 Times Seen1 Hash 5dde8e3b6670819e574d9f5ac3932cd8 f4fa4a81d74053638a282c9d176df5ddbee1ebba 8621401d74a0dd473d505a3d6a5b6910a5d313eb13c3156847259faf5d9be8cf Loading...

	cdn.ckeditor.com/4.7.1/full/ckeditor.js	619 kB	2023-03-08	2024-01-19
Pretty URL cdn.ckeditor.com/4.7.1/full/ckeditor.js IP 205.234.175.175 ASN #30081 CACHENETWORKS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-01-19 19:34:15 Times Seen17 Hash cd2caf377c481e8c6d118839af5d26d9 0bd0629928905205cd8902cdc24af682d336cfbf 131b98438d7737390e5d24a5f8cce13914451841396e985c09880171708a05c6 Loading...

	www.bsi.com.vn/1.b4daa55638c038c891ce.js	132 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/1.b4daa55638c038c891ce.js IP 27.71.237.19 ASN #38731 CHT Compamy Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:42 Times Seen1 Hash 8819e5db680e4ac631080f613e9e3bf2 da125d36ebaafb2726639c00fdd26cb861a1a2ea cba40299a2930ebdfb647237113b421e792bbb858a0c97152b387c29ce7dba7a Loading...

	www.bsi.com.vn/11.6e197f201413ae236e3c.js	56 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/11.6e197f201413ae236e3c.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:42 Times Seen1 Hash 1d245ab472e55478c4f7af307c493b4f 2def04f933d169cf5dbd10ad4899a04e3148f782 d0ef4ce2a275eaf03ea5513b9ddbdd9654dd33d7d35a9d641c3ec56e16e4fea2 Loading...

	www.bsi.com.vn/14.26dc4c15b398c8206e77.js	56 kB	2023-03-08	2024-02-11
Pretty URL www.bsi.com.vn/14.26dc4c15b398c8206e77.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:56:27 Last Seen2024-02-11 08:21:42 Times Seen1 Hash 8826a58fc7db518df81d6c4f4b7f9836 428dcf00e5e586dc8bf217717e62d939138c1de3 ae850a4bd7d15948f954d07b74f80284f4855210dbc9672e24aa338b145e1be9 Loading...

HTTP Transactions (81)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9203
Expires: Tue, 06 Dec 2022 03:01:46 GMT
Date: Tue, 06 Dec 2022 00:28:23 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2777
Cache-Control: max-age=125353
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:28:23 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:17:36 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 00:20:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 483
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11694
Expires: Tue, 06 Dec 2022 03:43:17 GMT
Date: Tue, 06 Dec 2022 00:28:23 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 6S7fvcgkvyAdLgT8MMHPO4wq7HIKdZQVvEjgZ3dhNEWBCPkHrU/RuTQWLd+jlwq4ck9L0N1IOcM=
x-amz-request-id: CN9VCQWVD8WT8BJT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 23:48:42 GMT
age: 2381
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso

27.71.237.19

301 Moved Permanently

162 B

URL HTTP/1.1
bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso HTTP/1.1
Host: bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Dec 2022 00:28:23 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: http://www.bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 00:08:58 GMT
cache-control: public,max-age=3600
age: 1166
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2774
Cache-Control: max-age=120282
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:28:24 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:53:06 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.43.61.95

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.61.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OiL+TMNP43Rq6UZTutPsEw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cJpmnsJ39XaAOkO8OLKgSZpNZRU=

www.bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso

27.71.237.19

307 Temporary Redirect

0 B

URL HTTP/1.1
www.bsi.com.vn/public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/upload/images/icon/js/f.q.d_new%20order%20request%20no.834201.iso HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Tue, 06 Dec 2022 00:28:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
Set-Cookie: ci_session=dvo27ss92mojb6uvsqfshuvp9qkqi0c6; expires=Tue, 06-Dec-2022 02:28:24 GMT; Max-Age=7200; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: https://www.bsi.com.vn/

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
b71c8413307259f6761f8f04a6462b64
15a6eaa390907bb2f94efcb6c6cdb9ac2cf83c5d
e5ad619ee9cef1692ca0d4aaf796e04f0614e41ded8bb44ee1f57a9ec16bff6d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "E5AD619EE9CEF1692CA0D4AAF796E04F0614E41DED8BB44EE1F57A9EC16BFF6D"
Last-Modified: Mon, 05 Dec 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3359
Expires: Tue, 06 Dec 2022 01:24:24 GMT
Date: Tue, 06 Dec 2022 00:28:25 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
4fcc42d1f28be2cd5bfa35dbd04a7835
f358781ef19295f145ccaa3bba9f4696a73b4259
db6d49761472ad64524456fde6b0593e6de109c33917ec6ecd72f303fc544736

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "DB6D49761472AD64524456FDE6B0593E6DE109C33917EC6ECD72F303FC544736"
Last-Modified: Mon, 05 Dec 2022 19:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Tue, 06 Dec 2022 01:28:25 GMT
Date: Tue, 06 Dec 2022 00:28:25 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9152147b102ca8b5a14e7b00fa50c014
8845e2d7572d88ad1c0cc4a5152137d53280cf2f
14f7f2098c068783196706dc66fa33e71ff48cf210066a1dfc9315ca98bf8acf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1974
Cache-Control: max-age=140371
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:28:25 GMT
Etag: "638e0646-118"
Expires: Wed, 07 Dec 2022 15:27:56 GMT
Last-Modified: Mon, 05 Dec 2022 14:55:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9152147b102ca8b5a14e7b00fa50c014
8845e2d7572d88ad1c0cc4a5152137d53280cf2f
14f7f2098c068783196706dc66fa33e71ff48cf210066a1dfc9315ca98bf8acf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1974
Cache-Control: max-age=140371
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:28:25 GMT
Etag: "638e0646-118"
Expires: Wed, 07 Dec 2022 15:27:56 GMT
Last-Modified: Mon, 05 Dec 2022 14:55:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css

151.101.1.229

200 OK

24 kB

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65326)
Size
24 kB (24100 bytes)
Hash
849f3e827da80e4e4c6a8c49689f057d
035d81aaaf6da3ffa5ce241179a9e14d533e7a3b
9546dbb82c3facf833e4adb713ce7e57a34dd53f6b55697ef1e1877bdbd8bb73

HTTP Headers

GET /npm/bootstrap@4.6.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"27681-LKxK/BIJg5IUESlr1Oj9ipS6I34"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Dec 2022 00:28:25 GMT
age: 6743280
x-served-by: cache-fra19147-FRA, cache-bma1643-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24100
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:28:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

code.jquery.com/jquery-3.2.1.min.js

69.16.175.10

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:28:25 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670286505.dop208.sk1.t,1670286505.cds253.sk1.hn,1670286505.cds222.sk1.c
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js

151.101.1.229

200 OK

7.5 kB

URL HTTP/2
cdn.jsdelivr.net/npm/popper.js@1.16.1/dist/umd/popper.min.js
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (21060)
Size
7.5 kB (7503 bytes)
Hash
1f61c1b15b25ba046056238766ff3a43
2b8db740e4e913e9dc87a6060dea2a6b17ad0ec8
fe78a2c604b4757dd5d114e0efb7e74c8f4acfe840bf6b6c01517205744a7648

HTTP Headers

GET /npm/popper.js@1.16.1/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.16.1
x-jsd-version-type: version
etag: W/"52f1-MTeJyg4xtlR4TbuosPg/Nk+Gg7Q"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Dec 2022 00:28:25 GMT
age: 16576711
x-served-by: cache-fra19126-FRA, cache-bma1643-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7503
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.min.js

151.101.1.229

200 OK

15 kB

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.min.js
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (63188)
Size
15 kB (14954 bytes)
Hash
bcd78d6c0ec033bf482fd42a464a0456
db079a86c03c9930571f8d0d6585cd7c4817fb95
3ade5e6e9f8a5da4b810b01861e48e7e4fa50b8c4fc5899a715062a139c5d258

HTTP Headers

GET /npm/bootstrap@4.6.0/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"f7eb-O+7WjtfXU8a/T2HCY4bd15KboDA"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Dec 2022 00:28:25 GMT
age: 19353259
x-served-by: cache-fra19124-FRA, cache-bma1643-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14954
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9152147b102ca8b5a14e7b00fa50c014
8845e2d7572d88ad1c0cc4a5152137d53280cf2f
14f7f2098c068783196706dc66fa33e71ff48cf210066a1dfc9315ca98bf8acf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1974
Cache-Control: max-age=140371
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:28:25 GMT
Etag: "638e0646-118"
Expires: Wed, 07 Dec 2022 15:27:56 GMT
Last-Modified: Mon, 05 Dec 2022 14:55:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9094
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:28:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9094
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:28:25 GMT
Connection: keep-alive

www.googletagmanager.com/gtag/js?id=G-1R8QZ0X3TC

172.217.21.168

200 OK

76 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-1R8QZ0X3TC
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (20080)
Size
76 kB (76329 bytes)
Hash
6e47ab143aa8789961a42e1453429881
2a76b701d3d9ae83728a552bf72d9387857c28b9
6a726d8b3401e02c2f42476f2e923a79bc03bdfd483ea00eeb17b491839473d5

HTTP Headers

GET /gtag/js?id=G-1R8QZ0X3TC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Dec 2022 00:28:25 GMT
expires: Tue, 06 Dec 2022 00:28:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76329
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6920 bytes)
Hash
f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GgMHlvU3WIDYMF9fmZAajw_Y3zmPm2zojn7FTqgqtBj7e4qeu8Uokg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:53 GMT
age: 8552
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11224 bytes)
Hash
b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:23:09 GMT
age: 7516
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9094
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:28:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9094
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:28:25 GMT
Connection: keep-alive

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8469 bytes)
Hash
2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i6QasBBRK9APW19sH0DdOipvUJA3gWj0CAMTzt7ejRCOk_V2psz-Xw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:45:47 GMT
age: 9758
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5273 bytes)
Hash
49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xcEI729NEfORs3fT_fHi-BkyqA1sHl0dA6fAGd9hYkJNePUlM4vKQg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:52 GMT
age: 8553
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5995 bytes)
Hash
3801236dc22938e1cc18947e90ea5326
5979d7dc3ba0eb61947282a4adeac8208b4148ae
3bd4eab29590ec3c316597abd2be65281cd9a6137add037ad57c093f1fca12e2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5995
x-amzn-requestid: 25b34277-c486-4642-aea7-21e0598babc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzOGGjoAMF4kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e1-6f43ab8e0c1a5260327bce11;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cO5j7BIPh3GSOUqKDYYY2qmG6__Hn2XB9lFhhYT_WpOXya-9TTGtgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:24 GMT
age: 7561
etag: "5979d7dc3ba0eb61947282a4adeac8208b4148ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6352 bytes)
Hash
ebd3528452aecd80e39bbf82d3f71f2c
eaa956309d27052d466f7c4bd75b3bdf8443f251
680066dadbddc2cd7179ad5bdfbf9b2014ea601561e585d18dfcda73512ae84a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6352
x-amzn-requestid: cd970b83-2a99-4e38-afed-580d733040a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuWF1bIAMFcpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-1ba552306e857bb37424d679;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P9Yc2Lh9Kw4AEDZyc9R9WExLdUnCitDeuy0NjttQM-EL1cdVndZxFA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:30:36 GMT
age: 7069
etag: "eaa956309d27052d466f7c4bd75b3bdf8443f251"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
01d5f0bc745607029db69018cebc8424
482ebd293354315c14a08694eabc42d80f87ecf2
639f03d8620461367fd91af6746c26780c6f9b65390347eda96a6e15636b7231

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 00:28:25 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "345CC975D2B66C9F12835CE19F73F6D5939BD9D5"
Expires: Tue, 06 Dec 2022 11:00:00 GMT
Last-Modified: Mon, 05 Dec 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1776
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7750e6c60bd5b4eb-OSL

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:28:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
18a4224fef0fda114b79c8af5806e2be
e66a6caea1617f0cb695ba3e2daf54655b41470b
92e6cc60b2a8f4c487b36e4316787785f59e608206f3bf27db3fc361151566a3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 00:28:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 04:24:07 GMT
Expires: Sat, 10 Dec 2022 04:24:06 GMT
Etag: "e66a6caea1617f0cb695ba3e2daf54655b41470b"
Cache-Control: max-age=359139,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7750e6c5f97d1c02-OSL

cdn.ckeditor.com/4.7.1/full/ckeditor.js

205.234.175.175

200 OK

184 kB

URL HTTP/2
cdn.ckeditor.com/4.7.1/full/ckeditor.js
IP
205.234.175.175:0
ASN
#30081 CACHENETWORKS

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Size
184 kB (183861 bytes)
Hash
16905df0941b15aa9ccf75c91419ff65
5b74331ecf7b034465143d3d90da9dc70a04a4ed
34575bddbf477cb0bea2c88bb0729afc2d714d52261ab44500f7b44152141e6d

HTTP Headers

GET /4.7.1/full/ckeditor.js HTTP/1.1
Host: cdn.ckeditor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:28:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 183861
x-cff: B
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 28 Jun 2017 14:57:03 GMT
cache-control: max-age=604800, public
expires: Sun, 04 Dec 2022 16:35:39 GMT
access-control-allow-origin: *
vary: Accept-Encoding
x-cf-rand: 5.555
x-cf3: H
cf4age: 144545
x-cf-tsc: 1669734108
cf4ttl: 604800.000
content-encoding: gzip
x-cf2: H
server: CFS 0215
x-cf1: 28810:fA.arn1:co:1663772073:cacheN.arn1-01:H
x-cf-reqid: 8a2b199aa1376440fe6e0bbb8ecc9e96
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/font/GoogleSans.ttf

27.71.237.19

200 OK

123 kB

URL HTTP/2
www.bsi.com.vn/assets/font/GoogleSans.ttf
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size
123 kB (122672 bytes)
Hash
9b60b12d0be822174c4e5dde976a21b3
ac89c52c0493d7b6b4b31856044f29d47cc3b0d8
3cb37bd58eae5541a499149aa60926efe7542c8d13b24ebaa49269ac1c0ea8ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/font/GoogleSans.ttf HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/styles.ae750a60694532dc4d5f.css
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:26 GMT
content-type: application/octet-stream
content-length: 122672
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
etag: "637c4fc9-1df30"
accept-ranges: bytes
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-1R8QZ0X3TC&gtm=2oebu0&_p=1403738449&cid=1434615954.1670286504&ul=en-us&sr=1280x1024&_s=1&sid=1670286503&sct=1&seg=0&dl=https%3A%2F%2Fwww.bsi.com.vn%2F&dt=HOME&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-1R8QZ0X3TC&gtm=2oebu0&_p=1403738449&cid=1434615954.1670286504&ul=en-us&sr=1280x1024&_s=1&sid=1670286503&sct=1&seg=0&dl=https%3A%2F%2Fwww.bsi.com.vn%2F&dt=HOME&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-1R8QZ0X3TC&gtm=2oebu0&_p=1403738449&cid=1434615954.1670286504&ul=en-us&sr=1280x1024&_s=1&sid=1670286503&sct=1&seg=0&dl=https%3A%2F%2Fwww.bsi.com.vn%2F&dt=HOME&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.bsi.com.vn
date: Tue, 06 Dec 2022 00:28:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.bsi.com.vn/api/mutiLanguage?mask=mutiLang&language=0

27.71.237.19

200 OK

294 kB

URL HTTP/2
www.bsi.com.vn/api/mutiLanguage?mask=mutiLang&language=0
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
294 kB (293867 bytes)
Hash
462947e3557db75d74a6749daf14fcfe
63e405549ca400f6e8877f45ce7a13a39646f9f7
556b1b5864aacfe753650b1ea93df564eb712092ba1cb076de5a2c34aa82b67d

HTTP Headers

POST /api/mutiLanguage?mask=mutiLang&language=0 HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/public/website/favico-1639562307_1652264000.png

27.71.237.19

200 OK

294 kB

URL HTTP/2
www.bsi.com.vn/public/website/favico-1639562307_1652264000.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
MS Windows icon resource - 7 icons, 32x32, 32 bits/pixel, 48x48, 32 bits/pixel\012- data
Size
294 kB (293660 bytes)
Hash
d33ee7edbb9a78d0ab87c35b844d2d92
d52ed3b57a56cc7e561c4bdafb55024be6d1f769
bff1dbfbe9ccac5b3d64b4431b49b0d6c57daa34f5224a8b81265d98da7e6e50

HTTP Headers

GET /public/website/favico-1639562307_1652264000.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: image/png
content-length: 293660
last-modified: Fri, 04 Nov 2022 06:21:44 GMT
etag: "6364af78-47b1c"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/polyfills.60790f7e2fa838dd60d3.js

27.71.237.19

200 OK

187 kB

URL HTTP/2
www.bsi.com.vn/polyfills.60790f7e2fa838dd60d3.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
187 kB (187228 bytes)
Hash
5092990a9afe5521fd4e0edec276e2bf
7a64893c01131a22d54eb1fe9b8f7bf6ad2464a8
e23af7f1bf73460709b4ac0a4c451cff7c70f5b1fc8f2bdf138bd332af42d2be

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /polyfills.60790f7e2fa838dd60d3.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:21 GMT
vary: Accept-Encoding
etag: W/"637cba11-c22e"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/fontawesome/all.min.css

27.71.237.19

200 OK

177 kB

URL HTTP/2
www.bsi.com.vn/assets/fontawesome/all.min.css
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
177 kB (177068 bytes)
Hash
5cd75e764900635005c0e9de7006230c
dc44d3cd22fe5f2fc12f16dde5926a5d554172d2
82ea446cbde6786612376f1d462153013fd38f78badb84fbed0e1b267590c5d6

HTTP Headers

GET /assets/fontawesome/all.min.css HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
vary: Accept-Encoding
etag: W/"637c4fc9-348a3"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/fontawesome/fonts/fa-light-300.woff2

27.71.237.19

200 OK

184 kB

URL HTTP/2
www.bsi.com.vn/assets/fontawesome/fonts/fa-light-300.woff2
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
Web Open Font Format (Version 2), TrueType, length 184144, version 331.-31261\012- data
Size
184 kB (184144 bytes)
Hash
de11da0fb48a14c9cbc05b0a24ed6efa
878cd08a06b335d95826e813e0a8777e28a76d04
e9f0d24d1230e0a5760800e4a1657801cff8edf2ba87a05c5d96f74ce44ec06d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fontawesome/fonts/fa-light-300.woff2 HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.bsi.com.vn/assets/fontawesome/all.min.css
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: font/woff2
content-length: 184144
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
etag: "637c4fc9-2cf50"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/public/pages/googleplay_1639570356.png

27.71.237.19

200 OK

4.0 kB

URL HTTP/2
www.bsi.com.vn/public/pages/googleplay_1639570356.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 268 x 80, 8-bit colormap, non-interlaced\012- data
Size
4.0 kB (3976 bytes)
Hash
30eed5122897e0fe6563cf4b5ce0954b
07313d61ca70e2d94af86d23a15f56ea27a5e5f6
40c9128a15f131eda08b3b59e1f0fbcbf720760373e14bff3a5f6e8ecf94d369

HTTP Headers

GET /public/pages/googleplay_1639570356.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: image/png
content-length: 3976
last-modified: Fri, 04 Nov 2022 06:21:37 GMT
etag: "6364af71-f88"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/api/getmenu?mask=menuFooterResources&language=1&position=resource

27.71.237.19

200 OK

6.1 kB

URL HTTP/2
www.bsi.com.vn/api/getmenu?mask=menuFooterResources&language=1&position=resource
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
6.1 kB (6084 bytes)
Hash
d47b7bc2fe869dd306d1f41326662109
37ff240377f3d24ca2845517085900c1066cb433
e00b90f839da5d6434a6c53556069b9e03003276fb24fcc741a20547919d2e23

HTTP Headers

POST /api/getmenu?mask=menuFooterResources&language=1&position=resource HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/api/getPagesPin?mask=getPagesPin&language=1

27.71.237.19

200 OK

1.6 kB

URL HTTP/2
www.bsi.com.vn/api/getPagesPin?mask=getPagesPin&language=1
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
1.6 kB (1587 bytes)
Hash
abac6b098004a37fe16c8026c4920285
73b7ce15f8b59d9d6c8ddd5ac079eb349295495a
df847f8728eed6f0d1571b353432837543c396fc4021eccd8feb5e26c42722e5

HTTP Headers

POST /api/getPagesPin?mask=getPagesPin&language=1 HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/public/pages/pie-chart_1640846784.png

27.71.237.19

200 OK

66 kB

URL HTTP/2
www.bsi.com.vn/public/pages/pie-chart_1640846784.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 512 x 512, 16-bit/color RGBA, non-interlaced\012- data
Size
66 kB (65745 bytes)
Hash
4b6693eb8d3a87c3cd5793a2fa6c908d
a5dd50c5920cfac5d682266a5f4562bd4666a89e
4b6ed617304ef5a33ac3cafd96f1a02d60f5a918bf2259e2b518aa55b5e9fc08

HTTP Headers

GET /public/pages/pie-chart_1640846784.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: image/png
content-length: 65745
last-modified: Fri, 04 Nov 2022 06:21:37 GMT
etag: "6364af71-100d1"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/public/pages/research_1640846426.png

27.71.237.19

200 OK

58 kB

URL HTTP/2
www.bsi.com.vn/public/pages/research_1640846426.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 512 x 512, 16-bit/color RGBA, non-interlaced\012- data
Size
58 kB (58211 bytes)
Hash
930096c295ae846c337a99506874664a
32f26fe8f0c1b561878309ed4be8f2847f7656fe
92f0c7c89e6031d93d6a680102c00e8dd6f9ad72a5eb3f7d72423e0103d6f755

HTTP Headers

GET /public/pages/research_1640846426.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: image/png
content-length: 58211
last-modified: Fri, 04 Nov 2022 06:21:36 GMT
etag: "6364af70-e363"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/js/js.js

27.71.237.19

200 OK

43 kB

URL HTTP/2
www.bsi.com.vn/assets/js/js.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
43 kB (42958 bytes)
Hash
8ac3381678e22396a642a17fa7b2ebb9
9dbc56d45d8c7a387df3cc7d0babf14d06b96ae3
81fde73497edfb64ae6df3b28d942d56b60623dfbcf5c0a5f123201222bef47d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/js.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
vary: Accept-Encoding
etag: W/"637c4fc9-ca4"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/styles.ae750a60694532dc4d5f.css

27.71.237.19

200 OK

41 kB

URL HTTP/2
www.bsi.com.vn/styles.ae750a60694532dc4d5f.css
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
41 kB (41130 bytes)
Hash
228a0401553e3ff324e75bc2b1ad3015
dbe76a5658cb2d051f862c9ebbf1c516e37ca51d
22bb128cbcca685dee06b309b33c5d4f8709d6fa7876372caf5d15f950ec5fe8

HTTP Headers

GET /styles.ae750a60694532dc4d5f.css HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 12:01:20 GMT
vary: Accept-Encoding
etag: W/"637cba10-6896"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/public/pages/presentatio_1640846518.png

27.71.237.19

200 OK

53 kB

URL HTTP/2
www.bsi.com.vn/public/pages/presentatio_1640846518.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
53 kB (53348 bytes)
Hash
850f3f6c90698103d8f2455026be7b69
4fcb1fe6936f4d9f459598c49358ec40baaeb356
ef8770025afaf8ecfed85e7a3fdf451773253de3552df20301ef483e80740a97

HTTP Headers

GET /public/pages/presentatio_1640846518.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: image/png
content-length: 53277
last-modified: Fri, 04 Nov 2022 06:21:36 GMT
etag: "6364af70-d01d"
accept-ranges: bytes
X-Firefox-Spdy: h2

unpkg.com/@fancyapps/ui/dist/fancybox.umd.js

104.16.124.175

302 Found

28 kB

URL HTTP/2
unpkg.com/@fancyapps/ui/dist/fancybox.umd.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
28 kB (28378 bytes)
Hash
c8b3dc148e8e86dc6fd32727e0192761
fa4a91f637b7bd6eb62eaec322ea6f2b7aa9645d
061ca4b97ad704f684f384f9342567fb22ad121506d3b5212cbbd99835e9a9b1

HTTP Headers

GET /@fancyapps/ui/dist/fancybox.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@fancyapps/ui@4.0.31/dist/fancybox.umd.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKJDAXVEJVGSD89656P7HSVH-fra
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7750e6c56b030b02-OSL
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/img/defaut-slide.png

27.71.237.19

200 OK

11 kB

URL HTTP/2
www.bsi.com.vn/assets/img/defaut-slide.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 1440 x 400, 8-bit/color RGB, non-interlaced\012- data
Size
11 kB (11332 bytes)
Hash
1e27f0d78a1f433cf995a738b5e132ac
d5da1ecdfb0f8bca85b9f9aa0661f60527c7e563
5e52c63fcc9151af17699dedf390d7f26483c81ec194d048792fe971f9271803

HTTP Headers

GET /assets/img/defaut-slide.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/png
content-length: 11332
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
etag: "637c4fc9-2c44"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/9.a5f7aa42b454dcd75d23.js

27.71.237.19

200 OK

131 kB

URL HTTP/2
www.bsi.com.vn/9.a5f7aa42b454dcd75d23.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
131 kB (130718 bytes)
Hash
e738b2d02c1f0f1e196ec6de7b988a17
50833daeaed95b46b7f0de63049337a64d9b7842
cc87931b93fcb1a70becd9ff2b405502925e1a62ba47cd5d2c6dba47303cdf7a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /9.a5f7aa42b454dcd75d23.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:20 GMT
vary: Accept-Encoding
etag: W/"637cba10-77b10"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/img/right-arrow.png

27.71.237.19

200 OK

1.9 kB

URL HTTP/2
www.bsi.com.vn/assets/img/right-arrow.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1945 bytes)
Hash
2601ee64086d0cd14f9c968d9cdb09ed
af10ac4572e76392005545365f2df0fa3b0c1272
ccb7cff415093e21d32d644d76d94811fc69ea4b074be4995557d98d6a9c4f5b

HTTP Headers

GET /assets/img/right-arrow.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/png
content-length: 1945
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
etag: "637c4fc9-799"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/img/icon/facebook.png

27.71.237.19

200 OK

29 kB

URL HTTP/2
www.bsi.com.vn/assets/img/icon/facebook.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 246 x 246, 8-bit/color RGB, non-interlaced\012- data
Size
29 kB (29000 bytes)
Hash
c76e7f95dd75b7e1e8a740f9b31b01c3
b825e1644aa6bb999ba643d5a2bc03469e26f444
15bf338d40122aff599ee9b90b5c19dd6c0955b90e75f74d987ede46119a6348

HTTP Headers

GET /assets/img/icon/facebook.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/png
content-length: 29000
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
etag: "637c4fc9-7148"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/api/home/getAnalysis?mask=getAnalysisHome&language=1

27.71.237.19

200 OK

20 kB

URL HTTP/2
www.bsi.com.vn/api/home/getAnalysis?mask=getAnalysisHome&language=1
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
20 kB (20087 bytes)
Hash
a92585d6b72beade110c282c81b32078
b7bcb02f9c7653a2fcf7bcd9a3e62d8f41489951
e3f8cbf6792454ad5282848ecd9d2ba42c7069b5df0d0266991e144df28de7d8

HTTP Headers

POST /api/home/getAnalysis?mask=getAnalysisHome&language=1 HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/img/icon/twitter.png

27.71.237.19

200 OK

12 kB

URL HTTP/2
www.bsi.com.vn/assets/img/icon/twitter.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 350 x 350, 8-bit/color RGB, non-interlaced\012- data
Size
12 kB (12320 bytes)
Hash
1a1f8f58ff6135b6bbc2721e7c1957f7
dcd9b3a5dcc1299b679363d9ebf5869972eefbcb
f0c1e1c40a51a2de3d7bf91f5b73bd4cec492a011b5d69158deeba4d98490bab

HTTP Headers

GET /assets/img/icon/twitter.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/png
content-length: 12320
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
etag: "637c4fc9-3020"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/undefined

27.71.237.19

200 OK

25 kB

URL HTTP/2
www.bsi.com.vn/undefined
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
25 kB (24857 bytes)
Hash
a4b60f0d7853518f535c8502d501c0d4
0fb0116a3fe9bac65b857c18857bb5614c1181bd
3927d8e5ee019dadb23d77f0a560c4d6519df792e9e3964556a90d51dde08d09

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /undefined HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/img/icon/youtube.png

27.71.237.19

200 OK

8.0 kB

URL HTTP/2
www.bsi.com.vn/assets/img/icon/youtube.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 350 x 350, 8-bit/color RGB, non-interlaced\012- data
Size
8.0 kB (8004 bytes)
Hash
1d31fbd80cc5ccdd9a29f34d55c20a75
a78657c9cc510fc8a8bdb73d737666c0f660af2a
ca644befab2dc788d6c2ab51a22711ab22341db684dffc39dee53d2c5a3ef5ea

HTTP Headers

GET /assets/img/icon/youtube.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/png
content-length: 8004
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
etag: "637c4fc9-1f44"
accept-ranges: bytes
X-Firefox-Spdy: h2

unpkg.com/@fancyapps/ui@4.0.31/dist/fancybox.umd.js

104.16.124.175

200 OK

59 kB

URL HTTP/2
unpkg.com/@fancyapps/ui@4.0.31/dist/fancybox.umd.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65502)
Size
59 kB (58734 bytes)
Hash
a4f1eb71c596eca5890fb2f856cd125c
342f25d4ccb0985faa19209632b034ab37ea5bf0
e116ededf2c2ff03d2f02470f103fe2183f588756eb41c489e63d70927bcbce0

HTTP Headers

GET /@fancyapps/ui@4.0.31/dist/fancybox.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bsi.com.vn/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"19ca7-YDrz4C84GmWPE164D07veMx+dQ0"
via: 1.1 fly.io
fly-request-id: 01GGNGT00GHGZ6JPTWJY9CRJPY-fra
cf-cache-status: HIT
age: 3116921
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7750e6c65b4f0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/i18n/vn.json

27.71.237.19

200 OK

25 kB

URL HTTP/2
www.bsi.com.vn/assets/i18n/vn.json
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
25 kB (24672 bytes)
Hash
e3b343cfda1af35465ee6d31c0812584
7f5f9628e3dbaf6d8b6f4c5bd987507d147730d0
1406621e29c7f87fa8b8c3623ea990e5c17a8c751f307652b13535451bc2cce2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/i18n/vn.json HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: application/json
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
vary: Accept-Encoding
etag: W/"637c4fc9-db2"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/api/company?mask=@Company/GetCompanyInfo&language=0

27.71.237.19

200 OK

17 kB

URL HTTP/2
www.bsi.com.vn/api/company?mask=@Company/GetCompanyInfo&language=0
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
17 kB (17346 bytes)
Hash
fd248a8171402574e947a62728eaa66c
9f89f0c785e2bd7dc03bdeaa2290a6bc5ee554cf
adfeee4c1aed8ca3834dff6f75803d52ce89810ef764d893d8510dc076d27408

HTTP Headers

POST /api/company?mask=@Company/GetCompanyInfo&language=0 HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/public/pages/icon-07_1640742889.png

27.71.237.19

200 OK

1.6 kB

URL HTTP/2
www.bsi.com.vn/public/pages/icon-07_1640742889.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 105 x 105, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1615 bytes)
Hash
982c725dbbbbf16efb63014a98b25926
8c070c5e45d4cc8d75727b84295a8ef79f64b691
4861770a2b3851cfa92e170602a49408b8adf7e4cdc0a6f74d31a1a3adb3b22b

HTTP Headers

GET /public/pages/icon-07_1640742889.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/png
content-length: 1615
last-modified: Fri, 04 Nov 2022 06:21:38 GMT
etag: "6364af72-64f"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/public/pages/icon-04_1639569993.png

27.71.237.19

200 OK

2.1 kB

URL HTTP/2
www.bsi.com.vn/public/pages/icon-04_1639569993.png
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
PNG image data, 105 x 105, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2085 bytes)
Hash
d5667c9891a595a56e7971bed1933370
73bedf835eed37b73f248e31c4414a05bb7e7e35
31983bd7a6c93fd6138d5655df484309968ebf61a8d32e5489667a84c074369b

HTTP Headers

GET /public/pages/icon-04_1639569993.png HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/png
content-length: 2085
last-modified: Fri, 04 Nov 2022 06:21:37 GMT
etag: "6364af71-825"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/public/slides/ekyc-banner-2-01_1640746361.jpg

27.71.237.19

200 OK

802 kB

URL HTTP/2
www.bsi.com.vn/public/slides/ekyc-banner-2-01_1640746361.jpg
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 3000x938, components 3\012- data
Size
802 kB (801929 bytes)
Hash
928e91e2b6ed897ddac0a3bd72111085
63b8b80734b05b8b46a31d834f6c73653765245e
ab28b09454a107fc9e3c387f7d55e0d9d86ebfb0a35a74b0aefbcdeac2284a66

HTTP Headers

GET /public/slides/ekyc-banner-2-01_1640746361.jpg HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:28 GMT
content-type: image/jpeg
content-length: 801929
last-modified: Fri, 04 Nov 2022 06:21:43 GMT
etag: "6364af77-c3c89"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bsi.com.vn/5.1ffd0309cf2d71a69962.js

27.71.237.19

200 OK

34 kB

URL HTTP/2
www.bsi.com.vn/5.1ffd0309cf2d71a69962.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type
data
Size
34 kB (34505 bytes)
Hash
def45a31487ff844acc8f2609b7c112e
28ed5cc6df7e704fb2cb4ade14c5a42ab56d2890
4d5861006aae8af54b4ffe12e2a0b123e1e3558fe73fba836f41078f72ff3f80

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /5.1ffd0309cf2d71a69962.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:20 GMT
vary: Accept-Encoding
etag: W/"637cba10-12f2"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/api/getmenu?mask=@Menu/GetHeader&language=1&position=menuMain

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/api/getmenu?mask=@Menu/GetHeader&language=1&position=menuMain
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/getmenu?mask=@Menu/GetHeader&language=1&position=menuMain HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/api/getmenu?mask=getMenu&language=1&position=menuMain

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/api/getmenu?mask=getMenu&language=1&position=menuMain
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/getmenu?mask=getMenu&language=1&position=menuMain HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/api/home/services?mask=@Home/GetServices&language=1

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/api/home/services?mask=@Home/GetServices&language=1
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/home/services?mask=@Home/GetServices&language=1 HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/main.9d810fb82fa557da8ad3.js

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/main.9d810fb82fa557da8ad3.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /main.9d810fb82fa557da8ad3.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:20 GMT
vary: Accept-Encoding
etag: W/"637cba10-83e86"
content-encoding: gzip
X-Firefox-Spdy: h2

unpkg.com/ngx-bootstrap@9.0.0/datepicker/bs-datepicker.css

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/ngx-bootstrap@9.0.0/datepicker/bs-datepicker.css
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ngx-bootstrap@9.0.0/datepicker/bs-datepicker.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bsi.com.vn/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"5314-LsgVHjSi31TKMrMHPwXjk75b0a8"
via: 1.1 fly.io
fly-request-id: 01G8TDTTXHZ5WP8266P5AD5V0C-fra
cf-cache-status: HIT
age: 11542186
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7750e6c60b320b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.bsi.com.vn/

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
set-cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; expires=Tue, 06-Dec-2022 02:28:25 GMT; Max-Age=7200; path=/; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/runtime.d54f3d0afe8897d84eae.js

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/runtime.d54f3d0afe8897d84eae.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /runtime.d54f3d0afe8897d84eae.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:21 GMT
vary: Accept-Encoding
etag: W/"637cba11-a5b"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/common.7c47d54ed5a7a4ca769a.js

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/common.7c47d54ed5a7a4ca769a.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /common.7c47d54ed5a7a4ca769a.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:20 GMT
vary: Accept-Encoding
etag: W/"637cba10-18c4"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/15.be0daa37e72471e08b5a.js

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/15.be0daa37e72471e08b5a.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /15.be0daa37e72471e08b5a.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:20 GMT
vary: Accept-Encoding
etag: W/"637cba10-b95c"
content-encoding: gzip
X-Firefox-Spdy: h2

www.bsi.com.vn/api/home/slide?mask=getslide&language=1&type=1

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/api/home/slide?mask=getslide&language=1&type=1
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/home/slide?mask=getslide&language=1&type=1 HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bsi.com.vn
Connection: keep-alive
Referer: https://www.bsi.com.vn/vn
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, Content-Type, X-Auth-Token , X-Alt-Referer
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

unpkg.com/@fancyapps/ui@4.0.31/dist/fancybox.css

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/@fancyapps/ui@4.0.31/dist/fancybox.css
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@fancyapps/ui@4.0.31/dist/fancybox.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bsi.com.vn/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"3cee-0nBcDQHfsMIPKlPzBhAaX/pebOA"
via: 1.1 fly.io
fly-request-id: 01GGNGSZZMAX32Q2MM4BD091HN-ams
cf-cache-status: HIT
age: 3116920
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7750e6c64b4a0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.bsi.com.vn/assets/css/meanmenu.css

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/assets/css/meanmenu.css
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/meanmenu.css HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 04:27:53 GMT
vary: Accept-Encoding
etag: W/"637c4fc9-1ba5"
content-encoding: gzip
X-Firefox-Spdy: h2

unpkg.com/@fancyapps/ui/dist/fancybox.css

104.16.124.175

302 Found

0 B

URL HTTP/2
unpkg.com/@fancyapps/ui/dist/fancybox.css
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@fancyapps/ui/dist/fancybox.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Tue, 06 Dec 2022 00:28:25 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@fancyapps/ui@4.0.31/dist/fancybox.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKJDAXVSCJQANPRFKWFMG6ZQ-fra
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7750e6c54af20b02-OSL
X-Firefox-Spdy: h2

www.bsi.com.vn/1.b4daa55638c038c891ce.js

27.71.237.19

200 OK

0 B

URL HTTP/2
www.bsi.com.vn/1.b4daa55638c038c891ce.js
IP
27.71.237.19:0
ASN
#38731 CHT Compamy Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /1.b4daa55638c038c891ce.js HTTP/1.1
Host: www.bsi.com.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bsi.com.vn/
Cookie: ci_session=1gja5e7gouk1o15tk5j2iqbtlocabia1; _ga_1R8QZ0X3TC=GS1.1.1670286503.1.0.1670286503.0.0.0; _ga=GA1.1.1434615954.1670286504
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:28:27 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 12:01:20 GMT
vary: Accept-Encoding
etag: W/"637cba10-20274"
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations