Report - uspoun.kabete.net/moblie/client/login.html

Report Overview

Submitted URL
uspoun.kabete.net/moblie/client/login.html
IP
155.94.135.193
ASN
#8100 ASN-QUADRANET-GLOBAL
Submitted
2022-12-02 05:53:59
Access
Website Title
Final URL
Tags
None
urlquery detections
Phishing - US Postal Service

Detections

urlquery
51
Network Intrusion Detection
0
Threat Detection Systems
92

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.1 kB	93.184.220.29
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	184.51.252.197
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
uspoun.kabete.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	31 kB	400 kB	155.94.135.193
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.35.190.173
fast.fonts.net	2905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	2.0 kB	104.17.225.78
www.usps.com	11794	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.7 kB	44 kB	192.229.221.165
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	39 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	uspoun.kabete.net/moblie/client/login.html	United States Postal Service
2022-12-01	medium	uspoun.kabete.net/moblie/client/login.html	United States Postal Service

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	uspoun.kabete.net/moblie/client/login.html	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/client/login.html	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/megamenu-v3.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/modernizr.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/location.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/search.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/ge-login.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/tracking.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/holdmail.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/schedule_pickup.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/header-init-search.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/megamenu-additions.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/logo_mobile.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/change_address.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/featured_clicknship.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/js/login.js	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/find_zip.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/free_boxes.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/mailman.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/stamps.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/calculate_price.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/po_box.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/hamburger.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/require.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/idxs-icon.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/Official_files/icon.f31093ed.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/logo-sb.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/jquery-3.5.1.js(1).download	Phishing
2022-12-02	medium	uspoun.kabete.net/usps_files/mailman.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/global-elements/header/images/utility-header/mailman.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/global-elements/header/images/package-intercept.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/global-elements/header/images/schedule-redelivery.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/global-elements/header/images/icon-personalize-stamped-envelopes.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/global-elements/header/images/loyalty.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/images/nav-red-chevron.svg	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/js/vue.js	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf	Phishing
2022-12-02	medium	uspoun.kabete.net/moblie/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	uspoun.kabete.net/moblie/client/login.html	49 B	2023-03-07	2023-03-12
Pretty URL uspoun.kabete.net/moblie/client/login.html IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:26:22 Last Seen2023-03-12 20:21:21 Times Seen1 Hash 09f5659149c8ee1b95bd9701d5ca764a 690de8ac825cfb91d570af0832366748298c712e 6751755b3157a08ce9fe43a9ff1f3299e879053b41ab4d6ceefad054602da0eb Loading...

	uspoun.kabete.net/moblie/usps_files/require.js.download	17 kB	2023-03-07	2024-05-10
Pretty URL uspoun.kabete.net/moblie/usps_files/require.js.download IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-10 19:23:38 Times Seen6881 Hash 16e572a4f80526df4bc3cc7ff056a9a8 f23b5c2fd52e855245e3d2586cd911051561e64c 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377 Loading...

	uspoun.kabete.net/moblie/client/login.html	637 B	2023-03-07	2023-03-12
Pretty URL uspoun.kabete.net/moblie/client/login.html IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:26:22 Last Seen2023-03-12 20:21:22 Times Seen1 Hash 4ef92395e29863374848dbd63aece402 517e9560db8e59e0c6e2ac52e23455fdeb087acd 700947042ac2e0a9605c38975a00634b76294a29412f31830545c4d21a71de49 Loading...

	fast.fonts.net/t/trackingCode.js	650 B	2023-03-07	2024-05-10
Pretty URL fast.fonts.net/t/trackingCode.js IP 104.17.225.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2024-05-10 06:25:53 Times Seen2040 Hash 32dd789522cc6923c80141fcf5d3a614 366b7e3fd63176e559d8b8c5f59be6fd3388cf5a 5c3c9df8b8f0a80f863c53dec5cbca7dedbdcc7697c6c6359520950774653960 Loading...

	uspoun.kabete.net/moblie/usps_files/ge-login.js.download	9.3 kB	2023-03-07	2024-05-06
Pretty URL uspoun.kabete.net/moblie/usps_files/ge-login.js.download IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-06 06:35:16 Times Seen954 Hash 98d32283850b9b1ca26a3236d2a79d9e fe249015f43e6daacb26574d59f66f21d7045bf5 19446f634dd4c6221d9a8997301486192578841ad90f58e131709853edef22a3 Loading...

	uspoun.kabete.net/moblie/client/login.html	46 B	2023-03-07	2023-03-12
Pretty URL uspoun.kabete.net/moblie/client/login.html IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:26:22 Last Seen2023-03-12 20:21:22 Times Seen1 Hash e0c58eefae000b6021f73cc918b15ad3 ceec8b65b2d49a13ca67a0dfb6c18ec4fb98edff 72d33496176829defc5cd28c56efb14908b7f0d43f4049ae9166dc37cabd9a61 Loading...

	uspoun.kabete.net/moblie/usps_files/jquery-3.5.1.js(1).download	90 kB	2023-03-07	2024-05-10
Pretty URL uspoun.kabete.net/moblie/usps_files/jquery-3.5.1.js(1).download IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-10 19:23:38 Times Seen13054 Hash 9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38 Loading...

	uspoun.kabete.net/moblie/js/vue.js	342 kB	2023-03-07	2024-05-08
Pretty URL uspoun.kabete.net/moblie/js/vue.js IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:15:30 Last Seen2024-05-08 19:41:41 Times Seen499 Hash 1e99e929ad552078273d58192153ab2d 9e3cf9bcdf5806299e356f3d64e04936963e5d97 352baa818da109925437a8433057ddc6f91ec48efe88bc5741b2f9e34450fdce Loading...

	uspoun.kabete.net/moblie/usps_files/header-init-search.js.download	0 B	2023-03-07	2024-05-11
Pretty URL uspoun.kabete.net/moblie/usps_files/header-init-search.js.download IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 04:06:29 Times Seen37534499 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	uspoun.kabete.net/moblie/client/login.html	87 B	2023-03-07	2024-04-10
Pretty URL uspoun.kabete.net/moblie/client/login.html IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:26:22 Last Seen2024-04-10 06:42:20 Times Seen29 Hash 6ef660b0c977cbb038ee4c2df5778a53 398ea1425a065f97f38e6810801123c85aeae3d0 f4e2607361627ef65463e6f8f12079eeb37cfba15247f9846a3cc93dbc7cd5cf Loading...

	uspoun.kabete.net/moblie/js/login.js	1.4 kB	2023-03-07	2023-03-12
Pretty URL uspoun.kabete.net/moblie/js/login.js IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:26:22 Last Seen2023-03-12 20:21:21 Times Seen1 Hash 24686b4e1655d49f1e22ada6dddad2de fe52c7c2b6941e1a57e0435117df07b2e81527d6 f3ed5c4ce7005940d5aa9fdafacc1c7b2ac5e236b6711385d945db307b2d06d6 Loading...

	uspoun.kabete.net/moblie/usps_files/megamenu-v3.js.download	13 kB	2023-03-07	2024-05-10
Pretty URL uspoun.kabete.net/moblie/usps_files/megamenu-v3.js.download IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:41:02 Last Seen2024-05-10 06:25:55 Times Seen3025 Hash b62e27b15837b70e7dab99846ac90ab3 9a49415c5e47149a5324705eaf78b4b68ce10edf 50764694ee2da70f2d3ce0e8340eca39b9e2760d293b47e4355c690a4769e781 Loading...

	uspoun.kabete.net/moblie/usps_files/modernizr.js.download	11 kB	2023-03-07	2024-05-10
Pretty URL uspoun.kabete.net/moblie/usps_files/modernizr.js.download IP 155.94.135.193 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-10 19:23:38 Times Seen5535 Hash 66e83c4165a234cdda478a9c55cb90db 22e9211030a1f612ef4acd010185181bde967307 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 591472b2388f139ba72263a46ff3d619	381 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:18:52 Last Seen2024-05-10 06:25:54 Times Seen1887 Hash 591472b2388f139ba72263a46ff3d619 51af3d9df4a627071d03481542efe344da6c969f 534cebb2ad439f5a67eef8084ce23509bb3bb872ea8cab7a41ebe1cbb7a95a2d Loading...

		Size	First Seen	Last Seen
	#1 Write - 3a824154b16ed7dab899bf000b80eeee	4 B	2023-03-07	2024-02-13
Pretty Observations First Seen2023-03-07 01:02:03 Last Seen2024-02-13 04:29:14 Times Seen34 Hash 3a824154b16ed7dab899bf000b80eeee e575dccc71140754dd85beda5965b6a358150309 b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0 Loading...

HTTP Transactions (114)

URL IP Response Size

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 143
Cache-Control: max-age=103187
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:53:48 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:33:35 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9247
Expires: Fri, 02 Dec 2022 08:27:55 GMT
Date: Fri, 02 Dec 2022 05:53:48 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 05:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2137
alt-svc: clear
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/client/login.html

155.94.135.193

301 Moved Permanently

325 B

URL HTTP/1.1
uspoun.kabete.net/moblie/client/login.html
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
325 B (325 bytes)
Hash
780a2ed48edde74caa7ee9222bc7f471
dbb05ebc342384e8cbae11840a0f360e461a9193
937e922a9bba9c5fb8bd55e3de3bf2bb379ccf7bec5bffae0a503ce57280a228

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/client/login.html HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 05:53:48 GMT
Server: Apache
Location: https://uspoun.kabete.net/moblie/client/login.html
Content-Length: 325
Connection: close
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6278
Expires: Fri, 02 Dec 2022 07:38:26 GMT
Date: Fri, 02 Dec 2022 05:53:48 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: JxExJYMQWrf62XGa2eMuyUUwCpn630EP4RlyQMgPsd7cpAY6iCr3lMvDnwj0Jjl/5L3cDOT8khg=
x-amz-request-id: 0WKY4PNK1V0TVQ5H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 05:45:59 GMT
age: 469
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:53:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 05:11:15 GMT
cache-control: public,max-age=3600
age: 2554
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8e7873b3b37cae7ac0c38b20a88bc165
741e846520ae1747cb3f4e61a9ef5016b6489972
84a046fa9ca1cd48960b59ae8e78d7b4cc1c585671ed6e69e73f872d48423aa4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84A046FA9CA1CD48960B59AE8E78D7B4CC1C585671ED6E69E73F872D48423AA4"
Last-Modified: Thu, 01 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Fri, 02 Dec 2022 11:52:52 GMT
Date: Fri, 02 Dec 2022 05:53:49 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 131
Cache-Control: max-age=98111
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:53:49 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:09:00 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

uspoun.kabete.net/moblie/client/login.html

155.94.135.193

200 OK

24 kB

URL HTTP/2
uspoun.kabete.net/moblie/client/login.html
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
24 kB (24258 bytes)
Hash
5427151507d7545c9a315a3c2c38830d
ac089a5313ca1715bc89e1b2cd6ca0c37820b6ba
8ddf19accf13ba3c1e20ebd94ecba2db9af92fa79eb5cd1f19beb22b42a31d4f

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/client/login.html HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:00:14 GMT
etag: "270c3-5eac2b1f91780-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 24258
content-type: text/html
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.35.190.173

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.35.190.173:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kdYAM7nrIVsnfjnttSMX2A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sjRlP+Y5zGMN7xop5qPJPq4wCN4=

uspoun.kabete.net/moblie/usps_files/1.css

155.94.135.193

200 OK

0 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/1.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/1.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:58 GMT
etag: "0-5e3533b2aba80"
accept-ranges: bytes
content-length: 0
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/Official_files/mobile.1f88971c.css

155.94.135.193

200 OK

2.8 kB

URL HTTP/2
uspoun.kabete.net/moblie/Official_files/mobile.1f88971c.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (9033), with no line terminators
Size
2.8 kB (2785 bytes)
Hash
4bf427588a8aab2c4aac55cbbe52b8b9
adee43f735a17b6e2745480afec7b2168e2d4a12
e65e2353ce6e69d518c772f511a19384d6c0ead3fc309328329314bb207edc7f

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/Official_files/mobile.1f88971c.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:02:38 GMT
etag: "2349-5e35332d27f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2785
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/Official_files/app.7886dfa6.css

155.94.135.193

200 OK

11 kB

URL HTTP/2
uspoun.kabete.net/moblie/Official_files/app.7886dfa6.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (758)
Size
11 kB (10668 bytes)
Hash
445ea458ce8b72350b22765cce055565
4e1bfa05f4e90f832a1df1c805ba32758d499429
ede3db9f23bf5174e1d19307dff32c2934cdfeb494295bfee50fc93b8450e451

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/Official_files/app.7886dfa6.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 22:33:20 GMT
etag: "1030d-5e8827b904c00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10668
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/calendar.css

155.94.135.193

200 OK

2.6 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/calendar.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (14589), with no line terminators
Size
2.6 kB (2579 bytes)
Hash
08db95a016165b8d14a144668b7e064a
92d6357bc5733087226e84420a95a6d40f9662e1
25afbe8a97386e1a035d5f7110657ba82542d0674d774639a9a43876512680a8

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/calendar.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:02 GMT
etag: "38fd-5e3533b67c380-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2579
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/datepicker3.css

155.94.135.193

200 OK

2.4 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/datepicker3.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (20872)
Size
2.4 kB (2424 bytes)
Hash
69bd638091a5922cfa5aa06da089175c
57577cbe76db20ad3f29fa5baa749dfca948aef3
a48751d686c78929ac1303b169da95d32ef0e829680208be0c46382776830fb2

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/datepicker3.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:08 GMT
etag: "527d-5e3533bc35100-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2424
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/footer-sb.css

155.94.135.193

200 OK

948 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/footer-sb.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (3179), with CRLF line terminators
Size
948 B (948 bytes)
Hash
f3acd9a18becfb87676e409420d5a927
93725131bbdc90c3f69c03b885e4cad0ff0f6700
cef7622380ea31cdcbfbb1dd95a85919ccdfef03945534aa620d9c0a8f5b1b8b

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/footer-sb.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:26 GMT
etag: "c6d-5e3533cd5f980-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 948
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/footer.css

155.94.135.193

200 OK

974 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/footer.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (2933), with no line terminators
Size
974 B (974 bytes)
Hash
b611fdf100b35a33f41b3ce5481140ea
6a1dbe40f2e5794b049429f90704e654202e9c6a
7d9057f5e50850fcf2328dc405d8ee26149524f4afcbaf419f83e0b3e7aa52a9

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/footer.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:28 GMT
etag: "b75-5e3533cf47e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 974
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/jquery-ui.min.css

155.94.135.193

200 OK

7.9 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/jquery-ui.min.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (29153)
Size
7.9 kB (7864 bytes)
Hash
d0b1b8be584578e4bde9bc331c7d7a64
fed7ab452c4bf18b2d11bcbd5ed0a8ebdba17713
ed5b594904979a2edeb8c4d060837d42c3c1e4e805c94f6a869210e3c319d0bc

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/jquery-ui.min.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:32 GMT
etag: "7d15-5e3533d318700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7864
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/bootstrap.min.css

155.94.135.193

200 OK

20 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/bootstrap.min.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (65371)
Size
20 kB (19694 bytes)
Hash
ff866d37a12705c2ef496e8b9f4c517c
20ca7fa9f3fc1922460cb27aefdde2f5310df05d
bc1f26dc4f463aca5a197e7dbbca884c4217278092f93a92e8472bbf627d8d58

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/bootstrap.min.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:00 GMT
etag: "1d903-5e3533b493f00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 19694
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/OneLinkusps.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/main-sb.css

155.94.135.193

200 OK

2.2 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/main-sb.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (625)
Size
2.2 kB (2162 bytes)
Hash
bc9f0de09b3510e38c71cef4f30fa8d8
2bd506f4c976482a8e30a9a8dced8b12ad2e6e82
a25222538f844009bc37a0da1e6c8da50035ea382747576f188be04921cb42c4

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/main-sb.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:34 GMT
etag: "1a26-5e3533d500b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2162
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/tracking-cross-sell.css

155.94.135.193

200 OK

1.0 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/tracking-cross-sell.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (3075), with no line terminators
Size
1.0 kB (1048 bytes)
Hash
797100b379ef4b459b884be14bbb6e4f
0683d9a3ead422cbf0e163d0ae0d61e51d6f1236
bbf22e1882686844926ae028f381e94def083d8b511f80edc3cfb5d8ccfa781f

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/tracking-cross-sell.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:42 GMT
etag: "c03-5e3533dca1d80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1048
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/megamenu-v4.css

155.94.135.193

200 OK

6.8 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (44325), with CRLF line terminators
Size
6.8 kB (6806 bytes)
Hash
10f6965dcdc79f9fb34960cc36801c1d
40e09e9917300b16f44267fc7ad702dfb28ae8f3
e0e176266ce6704c15b948d9597fe86087afe65e06c8a4a1a9f549da195ca9c0

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/megamenu-v4.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:40 GMT
etag: "ad27-5e3533dab9900-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6806
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/megamenu-v3.js.download

155.94.135.193

200 OK

2.8 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/megamenu-v3.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (13400), with no line terminators
Size
2.8 kB (2827 bytes)
Hash
37602b3130747f9e9b3f8ad770d2ab4e
283c158d06b9e0992135313fb29eb79526b9bc48
62272d1de13717290607e7164f3c382862d23bf37333dc833d982f0904234f9e

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/megamenu-v3.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:14 GMT
etag: "3458-5e353388b5780-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2827
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/modernizr.js.download

155.94.135.193

200 OK

4.6 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/modernizr.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document, ASCII text, with very long lines (11084)
Size
4.6 kB (4629 bytes)
Hash
a0b0bf9e066eb801303d09a4082dea72
ccc296b79d0e8254a382b389755b3c9ed1ad52e9
04d25a1e92428333cace4e7a3037522058950accdc0128e2689fc918e45cf8ff

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/modernizr.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:18 GMT
etag: "2bfd-5e35338c86080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4629
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/location.svg

155.94.135.193

200 OK

1.2 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/location.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1209 bytes)
Hash
34a7de74809276c444c11adc2ee2548a
b5bbe7d68582af73cbeed0d626204c5e77498599
e1bcd09ac1d25e2966c793dad31851895239753f917ca753a6f04d508c41b760

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/location.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:30 GMT
etag: "a1a-5e35340a68980-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1209
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/search.svg

155.94.135.193

200 OK

795 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/search.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
795 B (795 bytes)
Hash
bc6bba680b71bc912c455bd5621c5720
d48c35dec62877452b6345daf910ceea514acc2f
1204068f265bc491b31eb55cd585ab507116877de4d4d5abc0e613824cbc00b0

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/search.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:38 GMT
etag: "5b9-5e35341209b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 795
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/schedule-redelivery.css

155.94.135.193

200 OK

4.7 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/schedule-redelivery.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (23129), with no line terminators
Size
4.7 kB (4719 bytes)
Hash
6d4a63727be8138473bfc839153d5fcb
e14edfde9efd3edb856d673df1355c487c0d0c6f
36bf665d88643e1b7ab98cb52350a7b1e3e5ae0fae2033c50f1c3ffc4ab15925

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/schedule-redelivery.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:38 GMT
etag: "5a59-5e3533d8d1480-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4719
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/ge-login.js.download

155.94.135.193

200 OK

2.6 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/ge-login.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with CRLF line terminators
Size
2.6 kB (2624 bytes)
Hash
4c7265763ff2731e02c782829a979f5d
2579083d2f5bdea1c7b9ef5fddaf854dcc6a0ed1
57560cfeb4032dbbd17b434184e7b863fb308682698bb1f911435fee15071244

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/ge-login.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:03:42 GMT
etag: "2460-5e35336a30f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2624
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/tracking.svg

155.94.135.193

200 OK

844 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/tracking.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
844 B (844 bytes)
Hash
df358064d9a3e5fdf09fb9cc04559199
fa3e1c6d16a1aa2c2a12fc7eaf39f8e84d08312c
0e984ade03c77408d3ec03bc8b027a67745a3534f37e8c55f72fd48e72289ce5

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/tracking.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:50 GMT
etag: "619-5e35341d7b680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 844
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/holdmail.svg

155.94.135.193

200 OK

768 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/holdmail.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
768 B (768 bytes)
Hash
105347570302f32dbda804910de6cbd6
28bb230d50c51c108fdd3f2276d0e8fa2ca1bd82
1906c7cbea0ffb86914aaff0f63b344ce036c5fa0bdd25d7e898b24f07ee2de8

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/holdmail.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:26 GMT
etag: "5a8-5e35340698080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 768
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/schedule_pickup.svg

155.94.135.193

200 OK

923 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/schedule_pickup.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
923 B (923 bytes)
Hash
6e782ed8ead72b9c2b30eb8ea98187ec
6a3fa08e1d9337920d087bbc7a959b9d4d326898
933ea7499f489e16c2a30f006945636869ddc2b47bb330fb2fec0f57c44939c0

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/schedule_pickup.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:38 GMT
etag: "6ef-5e35341209b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 923
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/header-init-search.js.download

155.94.135.193

200 OK

0 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/header-init-search.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/header-init-search.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:03:44 GMT
etag: "0-5e35336c19400"
accept-ranges: bytes
content-length: 0
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/megamenu-additions.js.download

155.94.135.193

200 OK

0 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/megamenu-additions.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/megamenu-additions.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:12 GMT
etag: "0-5e353386cd300"
accept-ranges: bytes
content-length: 0
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/main.css

155.94.135.193

200 OK

15 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/main.css
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text
Size
15 kB (14986 bytes)
Hash
501908e461a81d21f9843dabe4d5a271
21934daf97007312e0df53c08c2de03539078854
d5a09840ea90cd3c968b3e14cd2f67a4bde157151472b3ac7f332ec8221de22d

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/main.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:36 GMT
etag: "17d4d-5e3533d6e9000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14986
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
afbc8c0df661e965fd4e02fe44f7acc8
ccf7a766f7fb2d9e487af05facb422abbca6e648
0e776e483041e86cf3f44df4b71f50a9172bb17b929835c65d737b66866a942a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4856
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:53:50 GMT
Last-Modified: Fri, 02 Dec 2022 04:32:54 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0

104.17.225.78

200 OK

0 B

URL HTTP/2
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP
104.17.225.78:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:53:50 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: T0ZH1hXNoB6jtguc1LneBuShAW+pnL1xXkATYgstf9s/Ek+CPWrz2AkHZOlSFb4Uzx1M4Yl24Z8=
x-amz-request-id: PR33JFF0ZQ6CYPJT
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 516333
accept-ranges: bytes
set-cookie: __cf_bm=Y8ho1OVTXYrS55XekagPA0Y7w5VgI_EOoshfKYolrV0-1669960430-0-AdFz32lq4jik0g24969IGKsfOGC7HczfD8TiY2CGZd67S56PqrQe78vGGFO7+mBQ31UebUAApbzpWPkZDiffRPI=; path=/; expires=Fri, 02-Dec-22 06:23:50 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731cdefcfb61c06-OSL
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/logo_mobile.svg

155.94.135.193

200 OK

908 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/logo_mobile.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
908 B (908 bytes)
Hash
bd23bec0b762655a1f6245c929b8d424
640178557a946360d7a160acc1c4ea52ff313258
919beb8f1a11326db3f1464fd7b2ae92ec2061a3a7091ceeae8d8a1f5c8092ae

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/logo_mobile.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:34 GMT
etag: "80c-5e35340e39280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 908
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/change_address.svg

155.94.135.193

200 OK

935 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/change_address.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
935 B (935 bytes)
Hash
8b5a8192d6d9bab07ba9363d48031e8d
9bfb0814d54c9e35c66f3b6231ab6662a2596b20
b5f023b16827792c716e84ed62f9dbe1b87bf68bf3052ab20ab82ccd4ac4b2ac

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/change_address.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:10 GMT
etag: "74d-5e3533f755c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 935
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/featured_clicknship.svg

155.94.135.193

200 OK

493 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/featured_clicknship.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size
493 B (493 bytes)
Hash
b93c4c39b88fca2acefa761a420a96e3
bf6507826fae68fd0c9bab378ebad29d32f00465
7f343f565aa96c3ae50cfd1180d0583b043e6d233326da227a0695afee85c6df

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/featured_clicknship.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:12 GMT
etag: "436-5e3533f93e100-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 493
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/js/login.js

155.94.135.193

200 OK

457 B

URL HTTP/2
uspoun.kabete.net/moblie/js/login.js
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with CRLF line terminators
Size
457 B (457 bytes)
Hash
90dd7529ab056fc37e613a8fcef05041
951a37e7580368cb5bd841e291190332aff71720
c50ee8c88d76c60618363ba5fa2e626ec7659aad5901267923a91d09eed5210b

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/js/login.js HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 20:13:10 GMT
etag: "567-5e8808649e180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 457
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/find_zip.svg

155.94.135.193

200 OK

793 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/find_zip.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
793 B (793 bytes)
Hash
7138d9e048926785f5a7609e6af8b5ff
891564b452b04a8762af39bab5db29319b793b71
f115211fc7a8c69e069820271283f2cf84c3e071e050bbc44778d7e15b8c4e4f

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/find_zip.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:12 GMT
etag: "5bf-5e3533f93e100-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 793
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/free_boxes.svg

155.94.135.193

200 OK

643 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/free_boxes.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
643 B (643 bytes)
Hash
40b492a5e65c0654e8b162cad3795475
1d89fce0b15dfb9e85b171a98dfd7701336ec363
f95845daaef3450ec7b6d0d14a6f9125cef5552e4fae068338512924a27a76c5

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/free_boxes.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:14 GMT
etag: "42a-5e3533fb26580-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 643
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/mailman.svg

155.94.135.193

200 OK

904 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/mailman.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
904 B (904 bytes)
Hash
80c18361aa7dd736d5442b5086e5bf9a
30e94a82cff4154161f1d45c395b43c44da2d74c
5429d099110a77d4f8eace62000c9af90636aa326e21c98b7ec1efc33a4bc4dc

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/mailman.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:34 GMT
etag: "723-5e35340e39280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 904
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/stamps.svg

155.94.135.193

200 OK

551 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/stamps.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
551 B (551 bytes)
Hash
473959a921d63844bfca913bdd647b86
0c3dcff1f1590f7e849a243024bbf750334f27c7
1e96b78b600d7a126ce207ba09b15fc7d139d27f3da90cdaf2cbf9c3a7c13f67

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/stamps.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:48 GMT
etag: "44f-5e35341b93200-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 551
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/calculate_price.svg

155.94.135.193

200 OK

772 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/calculate_price.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
772 B (772 bytes)
Hash
7da320f36dbec5db0155f8acf3c3e01f
0992c0aea45598de82500c3355a8592de1dbf1b2
f24aada878541d572bbe98fd32775e988625e502d12a0f02de7912347812ed8c

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/calculate_price.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:08 GMT
etag: "8fe-5e3533f56d800-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 772
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/po_box.svg

155.94.135.193

200 OK

848 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/po_box.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
848 B (848 bytes)
Hash
1d88a7c92e6c58ab328fb0f274d71799
dfc51974e2f17968b8e7e86e2ac8496735fbfce1
b10c2e5eb3a7281e8bd0f21c6bcdbf8b6a593e3ec063242e98ac465d53d353ac

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/po_box.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:36 GMT
etag: "667-5e35341021700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 848
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/hamburger.svg

155.94.135.193

200 OK

293 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/hamburger.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size
293 B (293 bytes)
Hash
9b7c44ed4f110f521a0723c72a8eb564
93880a1ac4f3db644c1cde233e1655515f0fe155
063ed60e1fad716b6c2d38c717f346301bfaee106a6e72a943527398322c9892

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/hamburger.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:24 GMT
etag: "222-5e353404afc00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 293
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/require.js.download

155.94.135.193

200 OK

6.5 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/require.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (17192)
Size
6.5 kB (6533 bytes)
Hash
b7402932e76206919f77fe7184228ebb
2e4fadd893e441ecf4086ce228c006c7bd870df7
dd524063d1894dc6509adda5a55a8aa6243754f2f93a600f6126ad7c8e54cda3

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/require.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:28 GMT
etag: "440f-5e3533960f700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6533
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/idxs-icon.svg

155.94.135.193

200 OK

994 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/idxs-icon.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
994 B (994 bytes)
Hash
3b2f48141e232b9a85fa780de927674d
31eac9a04c67f35d98e5f24339a8d3bcafcdfb0a
f3ffd2480beaf40e90a52c7a5626edfc58ea0f3433994e0a30a7a31de4e037e3

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/idxs-icon.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:28 GMT
etag: "754-5e35340880500-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 994
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/Official_files/icon.f31093ed.svg

155.94.135.193

200 OK

1.2 kB

URL HTTP/2
uspoun.kabete.net/moblie/Official_files/icon.f31093ed.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1211)
Size
1.2 kB (1195 bytes)
Hash
a13e6621a6e4de745f29637f91514206
341f7f56b979220a220d0ef108d952675e235a49
ef7031ece24d45aed883e4255ff84dc1001fa1b5dbad8bab390420aba47dbf41

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/Official_files/icon.f31093ed.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:02:48 GMT
etag: "b05-5e353336b1600-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1195
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/logo-sb.svg

155.94.135.193

200 OK

1.6 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/logo-sb.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.6 kB (1610 bytes)
Hash
c8cd694091256e9e622db809e3604157
0876363e046c8fd1cc641a74477847bca1e3f325
4c1f2d664fb8e66307932ba589cd6a50eaed3b33a300bd1aa51ec9014ebe5f5f

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/logo-sb.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:32 GMT
etag: "de5-5e35340c50e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1610
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/social-facebook_1.png

155.94.135.193

200 OK

1.9 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/social-facebook_1.png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1873 bytes)
Hash
5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/social-facebook_1.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:40 GMT
etag: "751-5e353413f2000"
accept-ranges: bytes
content-length: 1873
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/social-youtube_3.png

155.94.135.193

200 OK

2.5 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/social-youtube_3.png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2461 bytes)
Hash
e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/social-youtube_3.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:46 GMT
etag: "99d-5e353419aad80"
accept-ranges: bytes
content-length: 2461
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/social-pinterest_6.png

155.94.135.193

200 OK

2.3 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/social-pinterest_6.png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2325 bytes)
Hash
010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/social-pinterest_6.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:42 GMT
etag: "915-5e353415da480"
accept-ranges: bytes
content-length: 2325
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/social-twitter_2.png

155.94.135.193

200 OK

1.8 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/social-twitter_2.png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/social-twitter_2.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:44 GMT
etag: "732-5e353417c2900"
accept-ranges: bytes
content-length: 1842
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/go-now(1).png

155.94.135.193

200 OK

8.0 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/go-now(1).png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (8026 bytes)
Hash
49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/go-now(1).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:16 GMT
etag: "1f5a-5e3533fd0ea00"
accept-ranges: bytes
content-length: 8026
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/jquery-3.5.1.js(1).download

155.94.135.193

200 OK

31 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/jquery-3.5.1.js(1).download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30913 bytes)
Hash
b975568f7eb9ecf41804cb1bbc96dfcc
4be3d286559ff9a84da23644dd863c15dc7a6a1d
4a65ef10076dbfe50ddf6396716410e744ed681c7b4a8c4f5fed42feca72f06f

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/jquery-3.5.1.js(1).download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:03:50 GMT
etag: "15d84-5e353371d2180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 30913
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/go-now.png

155.94.135.193

200 OK

20 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/go-now.png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20334 bytes)
Hash
d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/go-now.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:20 GMT
etag: "4f6e-5e353400df300"
accept-ranges: bytes
content-length: 20334
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/go-now(3).png

155.94.135.193

200 OK

20 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/go-now(3).png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19969 bytes)
Hash
6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/go-now(3).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:18 GMT
etag: "4e01-5e3533fef6e80"
accept-ranges: bytes
content-length: 19969
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/go-now(4).png

155.94.135.193

200 OK

22 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/go-now(4).png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22133 bytes)
Hash
22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/go-now(4).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:20 GMT
etag: "5675-5e353400df300"
accept-ranges: bytes
content-length: 22133
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/go-now(2).png

155.94.135.193

200 OK

32 kB

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/go-now(2).png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 195 x 167, 8-bit/color RGBA, non-interlaced\012- data
Size
32 kB (32151 bytes)
Hash
572fc82e3845cdfb11843e27b9d0b11c
94227977268983b68c97418e90bd20b138f6a297
6ed17d6f02e09f54d461213f9887c177d32f4fb0d4eb4209bb90a5c839865d90

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/usps_files/go-now(2).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:16 GMT
etag: "7d97-5e3533fd0ea00"
accept-ranges: bytes
content-length: 32151
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/usps_files/mailman.svg

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/usps_files/mailman.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps_files/mailman.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/global-elements/header/images/utility-header/mailman.svg

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/global-elements/header/images/utility-header/mailman.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/global-elements/header/images/package-intercept.svg

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/global-elements/header/images/package-intercept.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/global-elements/header/images/schedule-redelivery.svg

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/global-elements/header/images/schedule-redelivery.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/calculate_price.svg

192.229.221.165

200 OK

772 B

URL HTTP/2
www.usps.com/assets/images/home/calculate_price.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
772 B (772 bytes)
Hash
42af7d5484bf8f80ac930313caa5941f
c3dbaf338d7fa81845487333c0cba5b8341bd140
f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c

HTTP Headers

GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17039
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2

uspoun.kabete.net/global-elements/header/images/icon-personalize-stamped-envelopes.svg

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/stamps.svg

192.229.221.165

200 OK

551 B

URL HTTP/2
www.usps.com/assets/images/home/stamps.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
551 B (551 bytes)
Hash
780aa534eb1541ac0834489beafdeea2
2593cddb6c1b7505016d3c1138e16ff556e42166
c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8

HTTP Headers

GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 77203
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/schedule_pickup.svg

192.229.221.165

200 OK

923 B

URL HTTP/2
www.usps.com/assets/images/home/schedule_pickup.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
923 B (923 bytes)
Hash
9f9e044f92360c82183e3a31b774e7b2
273798ee8d4dead89367b835cdb7f65f51e81b47
e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373

HTTP Headers

GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16974
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/utility_languages.png

192.229.221.165

200 OK

1.5 kB

URL HTTP/2
www.usps.com/assets/images/home/utility_languages.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1456 bytes)
Hash
410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826

HTTP Headers

GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 16844
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/find_zip.svg

192.229.221.165

200 OK

793 B

URL HTTP/2
www.usps.com/assets/images/home/find_zip.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
793 B (793 bytes)
Hash
4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b

HTTP Headers

GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16409
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/search.svg

192.229.221.165

200 OK

795 B

URL HTTP/2
www.usps.com/assets/images/home/search.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
795 B (795 bytes)
Hash
ccfe748c6040d78e356b03d1a731585e
3e15bb471b3c3d0a5cebc3ccd137b5daf9273b7e
9a1b75fecaa2e0de127c36ddbb63c1bc2c44b3f81eed395734dee1ce837162fe

HTTP Headers

GET /assets/images/home/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16410
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7F4B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/tracking.svg

192.229.221.165

200 OK

844 B

URL HTTP/2
www.usps.com/assets/images/home/tracking.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
844 B (844 bytes)
Hash
04034bbe69ef912819cee070ff866703
2c96d71004568c2b460a7f8b796ae45ad89999ec
959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181

HTTP Headers

GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33286
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2

uspoun.kabete.net/global-elements/header/images/loyalty.svg

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/global-elements/header/images/loyalty.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/loyalty.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/holdmail.svg

192.229.221.165

200 OK

768 B

URL HTTP/2
www.usps.com/assets/images/home/holdmail.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
768 B (768 bytes)
Hash
2f40bbb9da0d97f2ba3f3efcfd7533af
34c76f88cdda4be234b58a76e466bc7a972f14ea
f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069

HTTP Headers

GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17071
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/change_address.svg

192.229.221.165

200 OK

935 B

URL HTTP/2
www.usps.com/assets/images/home/change_address.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
935 B (935 bytes)
Hash
6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9

HTTP Headers

GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17069
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/po_box.svg

192.229.221.165

200 OK

848 B

URL HTTP/2
www.usps.com/assets/images/home/po_box.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
848 B (848 bytes)
Hash
a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122

HTTP Headers

GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17018
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/shipping-supplies.svg

192.229.221.165

200 OK

1.3 kB

URL HTTP/2
www.usps.com/test/nav/images/shipping-supplies.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.3 kB (1282 bytes)
Hash
7a8b39b328ba3e776e643f66844896e8
7a400d0f33c592651da919c728a30e46207a9449
05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99

HTTP Headers

GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16601
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/location.svg

192.229.221.165

200 OK

1.2 kB

URL HTTP/2
www.usps.com/assets/images/home/location.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1209 bytes)
Hash
9d8433f178d5a7b839a8bf25552c62b0
c21cec68e524862992f4aa51bf6955b953a65112
d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f

HTTP Headers

GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16597
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/cards-and-envelopes.svg

192.229.221.165

200 OK

1.1 kB

URL HTTP/2
www.usps.com/test/nav/images/cards-and-envelopes.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1056 bytes)
Hash
5d63c3636efb2bbcb327ed13b714367b
c7e326811c101213173c2a585d1e9700731816ed
c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f

HTTP Headers

GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65281
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/gifts.svg

192.229.221.165

200 OK

590 B

URL HTTP/2
www.usps.com/test/nav/images/gifts.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
590 B (590 bytes)
Hash
e97f9908f9eef2a76ea4f48e00196980
f32d5a4b791567c690ea7095d93bec78e422db40
ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4

HTTP Headers

GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16678
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2

www.usps.com/global-elements/header/images/utility-header/search.svg

192.229.221.165

200 OK

795 B

URL HTTP/2
www.usps.com/global-elements/header/images/utility-header/search.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
795 B (795 bytes)
Hash
78562ea313af96eca6581054fdbbc76c
b0f3fd320af131b3787b39c864ecac52de12a75e
7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9

HTTP Headers

GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16398
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/business.svg

192.229.221.165

200 OK

689 B

URL HTTP/2
www.usps.com/test/nav/images/business.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
689 B (689 bytes)
Hash
3b81ef43fc5b08bab4155c5fed116dc9
a5a804fb2f8f51b3e588d4edb01752eba0380f8d
a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb

HTTP Headers

GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17015
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/collectors.svg

192.229.221.165

200 OK

561 B

URL HTTP/2
www.usps.com/test/nav/images/collectors.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
561 B (561 bytes)
Hash
8439e88bd2e43656b157f9c184635032
ddcb40776177a5eac36973e53f2f8bab73e65ea3
5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e

HTTP Headers

GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16988
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/printcustomsforms.svg

192.229.221.165

200 OK

1.0 kB

URL HTTP/2
www.usps.com/assets/images/home/printcustomsforms.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2535), with no line terminators
Size
1.0 kB (1031 bytes)
Hash
88057e6794cb9a5a40e09d15a69a21e3
41054cda6b3e74eecb1f0cc02059322261ab39f0
421420743a01fdf018473f8de8edb18a8758b965b8b2eceb521db11b603ac7b2

HTTP Headers

GET /assets/images/home/printcustomsforms.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 85824
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "9e7-5cfbe96b910c0+gzip"
last-modified: Mon, 01 Nov 2021 18:46:03 GMT
server: ECAcc (dcb/7FCD)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1031
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/utility_customer_service.png

192.229.221.165

200 OK

1.3 kB

URL HTTP/2
www.usps.com/assets/images/home/utility_customer_service.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1307 bytes)
Hash
3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca

HTTP Headers

GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 16512
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/chinese_characters.gif

192.229.221.165

200 OK

2.2 kB

URL HTTP/2
www.usps.com/assets/images/home/chinese_characters.gif
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
GIF image data, version 89a, 44 x 102\012- data
Size
2.2 kB (2173 bytes)
Hash
6cfd66aca15e28ed9e77672fa22604b7
79f78e9167a5853d740486cdae627034cf2a7085
dc9835ec6574c8d748f4fe255d01035a7d289f4a8caae72a989a32d3973caecd

HTTP Headers

GET /assets/images/home/chinese_characters.gif HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 5794
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/gif
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "87d-547e11c4438c0"
last-modified: Mon, 06 Feb 2017 18:50:51 GMT
nncoection: close
server: ECAcc (dcb/7FA2)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 2173
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/featured_clicknship.svg

192.229.221.165

200 OK

493 B

URL HTTP/2
www.usps.com/assets/images/home/featured_clicknship.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size
493 B (493 bytes)
Hash
efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe

HTTP Headers

GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17121
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/usps_files/OneLinkusps.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612

104.17.225.78

200 OK

0 B

URL HTTP/2
fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
IP
104.17.225.78:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Cookie: __cf_bm=Y8ho1OVTXYrS55XekagPA0Y7w5VgI_EOoshfKYolrV0-1669960430-0-AdFz32lq4jik0g24969IGKsfOGC7HczfD8TiY2CGZd67S56PqrQe78vGGFO7+mBQ31UebUAApbzpWPkZDiffRPI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:53:50 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: L4EOkitD5B6fbXjDNcrkuduVi3eGNo9F14OjaO+u2YgcGB6QtnNu58109AjEqcs1/yqpoBUnuoI=
x-amz-request-id: 1DJPF4CPWRK3EGMS
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 302676
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731cdf3f9b21c06-OSL
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/images/nav-red-chevron.svg

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/images/nav-red-chevron.svg
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/images/nav-red-chevron.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/global-elements/footer/images/footer-logo.png

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/global-elements/footer/images/footer-logo.png
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

HTTP Headers

GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6752 bytes)
Hash
f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JZAFwGz7kAWplsA1qeraQTjirrZb29JTnUPii5BcPg5tzxcBLtt0WA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:24:25 GMT
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
age: 26966
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

184.51.252.197

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
184.51.252.197:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11402 bytes)
Hash
1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 28938
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/js/vue.js

155.94.135.193

200 OK

97 kB

URL HTTP/2
uspoun.kabete.net/moblie/js/vue.js
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
data
Size
97 kB (96689 bytes)
Hash
9a2a59b97a9e53ad1fb8c957852e8ba7
906020c667b307318fcdd37925edd121ed6d6279
652285aacf6dd9c8c65aa3596902aff8666ddc9ba218ea2e1aaa9ff6f81a2a09

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/js/vue.js HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Apr 2021 20:12:48 GMT
etag: "53882-5c0f9e2cc9000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7732 bytes)
Hash
379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V4Z3TZtTDMjnyxZx7VdJrKtZ-PbZkWnsQ0-1eFDem4TVyRGvk0dc7A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 29155
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4834 bytes)
Hash
cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bBj-TXtavCuORZ9qBoZeVj-GXeRljAeW-98HY7lTk5_VRSKF4_07VQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 04:22:38 GMT
age: 5473
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 29944
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/client/favicon.ico

155.94.135.193

200 OK

5.5 kB

URL HTTP/2
uspoun.kabete.net/moblie/client/favicon.ico
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
5.5 kB (5515 bytes)
Hash
22c4870923e0f7ddc1ea7da681309e53
901d2af5294c75c623809804138fa3fe88d9cdad
83f51fdc82874452f15022eece208e629759e495c8cd9e98eb30bfb4e4883d0b

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - US Postal Service

HTTP Headers

GET /moblie/client/favicon.ico HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:38:14 GMT
etag: "7d26-5e353b2234580-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5515
content-type: image/x-icon
date: Fri, 02 Dec 2022 05:53:51 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:51 GMT
server: Apache
X-Firefox-Spdy: h2

uspoun.kabete.net/moblie/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf

155.94.135.193

404 Not Found

264 B

URL HTTP/2
uspoun.kabete.net/moblie/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
IP
155.94.135.193:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
264 B (264 bytes)
Hash
e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /moblie/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:51 GMT
server: Apache
X-Firefox-Spdy: h2

fast.fonts.net/t/trackingCode.js

104.17.225.78

200 OK

0 B

URL HTTP/2
fast.fonts.net/t/trackingCode.js
IP
104.17.225.78:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Cookie: __cf_bm=Y8ho1OVTXYrS55XekagPA0Y7w5VgI_EOoshfKYolrV0-1669960430-0-AdFz32lq4jik0g24969IGKsfOGC7HczfD8TiY2CGZd67S56PqrQe78vGGFO7+mBQ31UebUAApbzpWPkZDiffRPI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:53:50 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: tV243F2E3FHzbzOmyb20MHfeQ1GDyYatZCBl0Nm17F8uWij/iigaf5Z34J37a+dZQxKIa0bZwb8=
x-amz-request-id: VPCR2ZHNCTBAG0DH
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 330
expires: Fri, 02 Dec 2022 05:58:50 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731cdf299231c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations