Report - info.montrose-env.com/e3t/Ctc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04

Report Overview

Visited public
2023-12-05 14:13:55
Tags
linkedin microsoft phishing
URL
info.montrose-env.com/e3t/Ctc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04
Finishing URL
www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
IP / ASN
199.60.103.225
#209242 Cloudflare London, LLC
Title
LinkedIn Login, Sign in | LinkedIn
Phishing - LinkedIn

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
info.montrose-env.com	unknown	2012-09-29	2021-03-15 23:39:49	2023-11-08 19:44:24	2.1 kB	75 kB	199.60.103.31
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2023-12-05 09:21:53	1.3 kB	119 kB	64.233.161.84
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-05 06:14:20	1.0 kB	56 kB	216.58.207.227
platform.linkedin.com	3785	2002-11-02	2012-05-21 15:08:59	2023-12-05 07:32:30	739 B	43 kB	23.36.76.210
play.google.com	34	1997-09-15	2013-05-31 01:24:35	2023-12-05 11:25:49	1.1 kB	1.6 kB	216.58.211.14
ponf.linkedin.com	18578	2002-11-02	2020-12-13 16:52:45	2023-12-05 07:32:29	860 B	164 B	144.2.9.1
www.linkedin.com	608	2002-11-02	2015-06-18 18:10:03	2023-12-05 05:24:07	34 kB	45 kB	13.107.42.14
static.licdn.com	12070	2011-02-24	2012-10-18 10:55:00	2023-12-05 07:32:29	6.8 kB	374 kB	23.36.76.121

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-05 14:13:45	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:45	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:45	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:45	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:45	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:45	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:46	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:46	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:46	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:46	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:48	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:48	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:51	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-12-05 14:13:51	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	static.licdn.com/sc/h/179r7h6dytjlclq68a906sd4s	ScriptElement	74 kB	2023-11-17	2024-08-20
Pretty URL static.licdn.com/sc/h/179r7h6dytjlclq68a906sd4s IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 02:19 Last Seen2024-08-20 19:11 Times Seen478 Hash 1a385461f30e3f360d31f242fd6b3d98 0c0d69d3d866e93732265776ae44fd02db855d99 f89934ac0709430477b8a664f72035461a08e79aab91944d71d695660d810c13 Loading...

	static.licdn.com/sc/h/es8jfua30moj789rlzkfx9heo	ScriptElement	249 kB	2023-11-01	2024-08-21
Pretty URL static.licdn.com/sc/h/es8jfua30moj789rlzkfx9heo IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 21:18 Last Seen2024-08-21 10:10 Times Seen535 Hash a041ea63e8e2c42dba82d2650b617e66 d8f25b3c769df6ec8ecc2dab2d4a67f255bc9956 bd3580fa64a24a72f97df0f382cb2d529568062394f30db2ade926fc2c92f814 Loading...

	static.licdn.com/sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs	ScriptElement	260 kB	2023-11-28	2023-12-11
Pretty URL static.licdn.com/sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 00:34 Last Seen2023-12-11 22:01 Times Seen136 Hash 2d65d654153b49b1b18d8f4321ca5082 744f406fafd5882170510fe3e91c566e2b4bea61 60b563ab65efeb6eadf0b815d1808c01b7b71287c4415f357a8701dbc3c47fd3 Loading...

	static.licdn.com/sc/h/473v2cdto9klp3y6gfjcs28u2	ScriptElement	76 kB	2023-10-13	2024-11-21
Pretty URL static.licdn.com/sc/h/473v2cdto9klp3y6gfjcs28u2 IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 04:40 Last Seen2024-11-21 00:06 Times Seen2296 Hash 77476e9f4544d16e10921cb9d56067f3 22677d2df42eec873802245ec72bbd8b6896f324 fb9b509d020c4c45ad497de7c4f7d1b22b4e7dc62339927fbf7e32e227932cb7 Loading...

	accounts.google.com/_/gsi/_/js/k=gsi.gsi.en_US.l0gW8cfNiGI.O/am=AFDA/d=1/rs=AF0KOtUrwx34kJVktK_iDOM6QrGemfPJ-A/m=credential_button_library	ScriptElement	107 kB	2023-12-04	2024-08-20
Pretty URL accounts.google.com/_/gsi/_/js/k=gsi.gsi.en_US.l0gW8cfNiGI.O/am=AFDA/d=1/rs=AF0KOtUrwx34kJVktK_iDOM6QrGemfPJ-A/m=credential_button_library IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 23:11 Last Seen2024-08-20 16:46 Times Seen47 Hash 428759f6d24e7c95e1d5cf5a08208baa 804f0f938023cddad6081a9c5202a94fb4b84788 6ced2645c53c3d4975fd7e70041f5831c48791b248e8bd348facae794352aa4e Loading...

	platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1701785400000	ScriptElement	134 kB	2023-08-18	2023-12-14
Pretty URL platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1701785400000 IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-18 02:59 Last Seen2023-12-14 05:26 Times Seen914 Hash db6c2bc7d90fd8644a138ef1a5a12261 9d8caf31e893a4b8e423ba663f7cc3d1f0eafe6a 48b3ee4a9140dc93948400bce8c0dd6ee916abab061d2d4ff3e36af63f8f9851 Loading...

	static.licdn.com/sc/h/2y3qdqw0xpfk3qo1agmkdpn7x	ScriptElement	95 kB	2023-10-13	2024-08-21
Pretty URL static.licdn.com/sc/h/2y3qdqw0xpfk3qo1agmkdpn7x IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 04:40 Last Seen2024-08-21 04:55 Times Seen785 Hash a950a7a2748f3b6c2be4446130954fbc 96da4e74d53dd697dfda847448997cf621a475c7 5d10ba7adf9cc820eccc13113fc116160254aa5adfeff8e79d62edba4bc52fb4 Loading...

	static.licdn.com/sc/h/ccg6j0toh362m9pa9exs90nin	ScriptElement	2.2 kB	2023-08-22	2024-08-21
Pretty URL static.licdn.com/sc/h/ccg6j0toh362m9pa9exs90nin IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-22 04:35 Last Seen2024-08-21 10:10 Times Seen1138 Hash 68225657c41b94dfdd7669563fa18c80 58e43494bc31122f06fcb3aa3764be2883d0618f 72bccd36c17aa93a7bb553557626bb720be60cde2357d817bd03af6be67cf08e Loading...

	static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv	ScriptElement	39 kB	2023-03-07	2025-05-11
Pretty URL static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-05-11 11:33 Times Seen3345 Hash f5629c31bca5301ab5980247effef360 f61db978aa8c26a7001df3f7600515b9f07f5231 c852b1105eb000028e9b27677996f8d4773daa31fa1aaf663cb6ae3a6857a50a Loading...

	static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1	ScriptElement	186 kB	2023-03-07	2025-03-29
Pretty URL static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1 IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:41 Last Seen2025-03-29 17:55 Times Seen4449 Hash 7554ae17c5023ecc6d0ffc1e8775bc2f 37b39540102e29993f710047ed89bbe3b47a3a2b 6101eea4239ded7503b74732d078de0de0e31d9465de3876b1641802dd299200 Loading...

	accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US	ScriptElement	107 kB	2023-12-04	2024-08-20
Pretty URL accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US IP 64.233.161.84 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-04 23:11 Last Seen2024-08-20 16:46 Times Seen47 Hash 4ff95fc5024b629593d5a64f5c777c88 121e7a63b3d1349c46c2c6ad87cf9113f157e944 38c05e1377963a5a24c2ee3e4383d63967997a5b6307956188e7d18f3fed0bb1 Loading...

HTTP Transactions (51)

URL IP Response Size

www.linkedin.com/company/1177649?utm_campaign=Sensible%20EDP&utm_medium=email&_hsmi=285185500&_hsenc=p2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA&utm_content=285185500&utm_source=hs_email

13.107.42.14

302 Found

0 B

URL User Request GET HTTP/2
www.linkedin.com/company/1177649?utm_campaign=Sensible%20EDP&utm_medium=email&_hsmi=285185500&_hsenc=p2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA&utm_content=285185500&utm_source=hs_email
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

GET /company/1177649?utm_campaign=Sensible%20EDP&utm_medium=email&_hsmi=285185500&_hsenc=p2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA&utm_content=285185500&utm_source=hs_email HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
set-cookie: JSESSIONID=ajax:7161877376482573920; Domain=.www.linkedin.com; Path=/; Secure; SameSite=None
lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; Domain=.linkedin.com; Expires=Wed, 04-Dec-2024 14:13:38 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; Domain=.www.linkedin.com; Expires=Wed, 04-Dec-2024 14:13:38 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; Domain=.linkedin.com; Expires=Sun, 02 Jun 2024 14:13:38 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; Expires=Wed, 06 Dec 2023 14:13:38 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ v.clarity.ms/collect *.microsoft.com *.adnxs.com *.tealiumiq.com; script-src 'report-sample' 'sha256-th47JTnh6tX15SUn/I+GGmsOSXpa7dh5Skner77gxlY=' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=gg
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9c/mNANsDvNwVPb+g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 059DC3D6A8A9484FA1E55E932B407875 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:37Z
date: Tue, 05 Dec 2023 14:13:37 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email

13.107.42.14

200 OK

13 kB

URL User Request GET HTTP/2
www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (40210)
Size
13 kB (13103 bytes)
Hash
d8f11b38b7796d921286e094635beb70
046419ad5dd01d9baf675780d3e89a2fb81bc88f
eb3befa469377b17063e8149ae3a8d9ea62077b183929ed9843c975491c686df

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

GET /uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 13103
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Mon, 04 Dec 2023 21:09:13 GMT
vary: Accept-Encoding
set-cookie: li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; Max-Age=31536000; Expires=Wed, 04 Dec 2024 14:13:38 GMT; SameSite=None; Path=/; Domain=.www.linkedin.com; Secure; HTTPOnly
bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 04-Dec-2024 14:13:38 GMT; SameSite=None
bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; domain=.www.linkedin.com; Path=/; Secure; Expires=Wed, 04-Dec-2024 14:13:38 GMT; HttpOnly; SameSite=None
x-fs-uuid: 00060bc3d7427d917affe79fdff03405
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ v.clarity.ms/collect *.microsoft.com *.adnxs.com *.tealiumiq.com; script-src 'report-sample' 'sha256-th47JTnh6tX15SUn/I+GGmsOSXpa7dh5Skner77gxlY=' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=grl
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dCfZF6/+ef3/A0BQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 25EC00C7D35F4BC8B89AD04DB2D7CAA2 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:38Z
date: Tue, 05 Dec 2023 14:13:38 GMT
X-Firefox-Spdy: h2

static.licdn.com/sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs

23.36.76.121

200 OK

57 kB

URL GET HTTP/2
static.licdn.com/sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
57 kB (57041 bytes)
Hash
2d65d654153b49b1b18d8f4321ca5082
744f406fafd5882170510fe3e91c566e2b4bea61
60b563ab65efeb6eadf0b815d1808c01b7b71287c4415f357a8701dbc3c47fd3

HTTP Headers

GET /sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Tue, 26 Nov 2024 19:29:35 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00060b27527334dd4e2347ad3ba87f1a
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYLJ1JzNN1OI0etO6h/Gg==
content-length: 57041
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 05 Dec 2023 14:13:38 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/1sjpgjk18flzq8du4cxjl13ch

23.36.76.121

200 OK

24 kB

URL GET HTTP/2
static.licdn.com/sc/h/1sjpgjk18flzq8du4cxjl13ch
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
24 kB (24081 bytes)
Hash
67415238a0ed99286f8261e4a6cdfbe5
86ebb0bbd60d8d6bbdc80aa60bc809f17fa9f6d3
7c3190461704d64cb2fb3bbe447902518dcc8a93536e10b7d3475b8ecb836152

HTTP Headers

GET /sc/h/1sjpgjk18flzq8du4cxjl13ch HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: Play
expires: Thu, 19 Sep 2024 19:13:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/css
x-li-fabric: prod-ltx1
x-content-type-options: nosniff
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-fs-uuid: 000605cf2acee7d545711ff787bf461b
x-li-source-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYFzyrO59VFcR/3h79GGw==
content-length: 24081
date: Tue, 05 Dec 2023 14:13:38 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

info.montrose-env.com/e3t/Ctc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04

199.60.103.31

29 kB

URL
info.montrose-env.com/e3t/Ctc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04
IP
199.60.103.31:0
ASN
#209242 Cloudflare London, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1183)
Size
29 kB (29173 bytes)
Hash
cfe7f5af353407b0adc7cbf9e91a98fa
c85b4985492331655a52b47739a6ae9aa86052c3
02c9f67651865bbe984dfecc9aae1c027ccea9841e89589d259d6157817025a4

HTTP Headers

GET /e3t/Ctc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04 HTTP/1.1
Host: info.montrose-env.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 14:13:37 GMT
content-type: text/html;charset=utf-8
cf-ray: 830ce40ace5d0b51-OSL
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 14:13:37 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: false
content-security-policy: upgrade-insecure-requests
referrer-policy: no-referrer
x-content-type-options: nosniff
x-envoy-upstream-service-time: 4
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/event-tracking-td/envoy-proxy-5bb8974fb5-gfgz4
x-evy-trace-virtual-host: all
x-hs-https-only: worker
x-hubspot-correlation-id: 316f0b0c-36a9-4690-b150-6badfdc94564
x-request-id: 316f0b0c-36a9-4690-b150-6badfdc94564
x-robots-tag: none
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QAob1QvPbAtqCfjSvyYHAW7efzKJskrLA98TYL9%2BXV2ZTOURU1na4gxviKoybqMSv0YYc86EZ4qY3TVoSP3NsIOmg6FCNSkpMNRfJS17e6So2S2oskg2uoUgR%2FblE2BFEKtQS2rgKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=HRroegzRwxQqAiEFi7gFY7FHd2tUUPsa1EntApHd67I-1701785617-0-Afp3EVl8LESk17PTJnlNo5sLL4HbV6Bp8dX0zDdJE7MXpVzf3C/9YQYUY5h9Kiu+Gger9a+HlvyhZxtFl10NVBQ=; path=/; expires=Tue, 05-Dec-23 14:43:37 GMT; domain=.info.montrose-env.com; HttpOnly; Secure; SameSite=None
__cfruid=d4b75df64e6232e8325a4a69b171c119b7802e79-1701785617; path=/; domain=.info.montrose-env.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.licdn.com/sc/h/473v2cdto9klp3y6gfjcs28u2

23.36.76.121

200 OK

16 kB

URL GET HTTP/2
static.licdn.com/sc/h/473v2cdto9klp3y6gfjcs28u2
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
C source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size
16 kB (15685 bytes)
Hash
77476e9f4544d16e10921cb9d56067f3
22677d2df42eec873802245ec72bbd8b6896f324
fb9b509d020c4c45ad497de7c4f7d1b22b4e7dc62339927fbf7e32e227932cb7

HTTP Headers

GET /sc/h/473v2cdto9klp3y6gfjcs28u2 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 09 Oct 2024 21:59:08 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00060763d0eb2aa8bf576ed88f93c8ed
x-li-fabric: prod-ltx1
x-content-type-options: nosniff
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYHY9DrKqi/V27Yj5PI7Q==
content-length: 15685
date: Tue, 05 Dec 2023 14:13:38 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/ccg6j0toh362m9pa9exs90nin

23.36.76.121

200 OK

776 B

URL GET HTTP/2
static.licdn.com/sc/h/ccg6j0toh362m9pa9exs90nin
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2164), with no line terminators
Size
776 B (776 bytes)
Hash
68225657c41b94dfdd7669563fa18c80
58e43494bc31122f06fcb3aa3764be2883d0618f
72bccd36c17aa93a7bb553557626bb720be60cde2357d817bd03af6be67cf08e

HTTP Headers

GET /sc/h/ccg6j0toh362m9pa9exs90nin HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Tue, 20 Aug 2024 22:09:59 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0006037623aac0dedd6a34bb903e50da
x-li-fabric: prod-lor1
x-content-type-options: nosniff
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYDdiOqwN7dajS7kD5Q2g==
content-length: 776
date: Tue, 05 Dec 2023 14:13:38 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/es8jfua30moj789rlzkfx9heo

23.36.76.121

200 OK

64 kB

URL GET HTTP/2
static.licdn.com/sc/h/es8jfua30moj789rlzkfx9heo
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
64 kB (64122 bytes)
Hash
a041ea63e8e2c42dba82d2650b617e66
d8f25b3c769df6ec8ecc2dab2d4a67f255bc9956
bd3580fa64a24a72f97df0f382cb2d529568062394f30db2ade926fc2c92f814

HTTP Headers

GET /sc/h/es8jfua30moj789rlzkfx9heo HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Thu, 31 Oct 2024 16:42:04 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00060919f37e604d4645fbf7febc72c6
x-li-fabric: prod-lor1
x-content-type-options: nosniff
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYJGfN+YE1GRfv3/rxyxg==
content-length: 64122
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 05 Dec 2023 14:13:38 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/179r7h6dytjlclq68a906sd4s

23.36.76.121

200 OK

22 kB

URL GET HTTP/2
static.licdn.com/sc/h/179r7h6dytjlclq68a906sd4s
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (41541)
Size
22 kB (22037 bytes)
Hash
1a385461f30e3f360d31f242fd6b3d98
0c0d69d3d866e93732265776ae44fd02db855d99
f89934ac0709430477b8a664f72035461a08e79aab91944d71d695660d810c13

HTTP Headers

GET /sc/h/179r7h6dytjlclq68a906sd4s HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Fri, 15 Nov 2024 20:01:01 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00060a4a7a9bee2498434f67c7b7709b
x-li-fabric: prod-lor1
x-content-type-options: nosniff
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYKSnqb7iSYQ09nx7dwmw==
content-length: 22037
date: Tue, 05 Dec 2023 14:13:38 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q

23.36.76.121

5.5 kB

URL GET
static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5491 bytes)
Hash
e3eae9467d41fa15bc1d2a03a4d47a53
2cdb3230a055bc0b402bdcd4415553c964da1a35
7ebe33084a6e722927ef76ff3c583b1bae3ff27b6a48bf921d5de4aeebb56c62

HTTP Headers

GET /sc/h/55ggxxse8uyjdh2x78ht3j40q HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Mon, 13 Nov 2023 10:13:14 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
x-datastream-cache-status: 1
x-akamai-ew-subworker: 8096267
server: Play
content-encoding: br
x-li-static-content: 1
content-type: image/png
x-fs-uuid: 04c00bc5fda47716f0f06b3bc32a0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: BMALxf2kdxbw8Gs7wyoAAA==
content-length: 5491
remote-cache-status: TCP_HIT
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz

23.36.76.121

200 OK

799 B

URL HEAD HTTP/2
static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
799 B (799 bytes)
Hash
3d0e5c05903cec0bc8e3fe0cda552745
1b513503c65572f0787a14cc71018bd34f11b661
42a498dc5f62d81801f8e753fc9a50af5bc1aabda8ab8b2960dce48211d7c023

HTTP Headers

GET /sc/h/9lb1g1kp916tat669q9r5g2kz HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Thu, 18 Jan 2024 14:35:22 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
x-datastream-cache-status: 1
x-akamai-ew-subworker: 8096267
server: Play
content-encoding: br
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: a74a955909787716b02ac8cbcd2a0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: p0qVWQl4dxawKsjLzSoAAA==
content-length: 799
remote-cache-status: TCP_HIT
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1

23.36.76.121

200 OK

64 kB

URL GET HTTP/2
static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1354)
Size
64 kB (63716 bytes)
Hash
7554ae17c5023ecc6d0ffc1e8775bc2f
37b39540102e29993f710047ed89bbe3b47a3a2b
6101eea4239ded7503b74732d078de0de0e31d9465de3876b1641802dd299200

HTTP Headers

GET /sc/h/4k6diadsezedadhkq4uxfxss1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Thu, 15 Feb 2024 18:40:07 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
server: Play
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-li-fabric: prod-lor1
x-fs-uuid: 0005e66469e783f1b384bdbac2cc6845
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXmZGnng/GzhL26wsxoRQ==
content-length: 63716
remote-cache-status: TCP_HIT
x-datastream-cache-status: 2
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv

23.36.76.121

200 OK

13 kB

URL GET HTTP/2
static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7566)
Size
13 kB (13154 bytes)
Hash
f5629c31bca5301ab5980247effef360
f61db978aa8c26a7001df3f7600515b9f07f5231
c852b1105eb000028e9b27677996f8d4773daa31fa1aaf663cb6ae3a6857a50a

HTTP Headers

GET /sc/h/1gpe377m8n1eq73qveizv5onv HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Thu, 11 Jul 2024 01:03:57 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
x-datastream-cache-status: 1
server: Play
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0a9d6ce11f5bad16b00010e0be2a0000
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: Cp1s4R9brRawABDgvioAAA==
content-length: 13154
remote-cache-status: TCP_HIT
x-akamai-ew-subworker: 8096267
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1501
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dUkXPpOYfYm0rhLw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D5ADABE8BAE446B7B4AFC292F0F8CCCF Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1502
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dUlA2Luo7GZPzrTQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7D1537A7A0C8426C8B6FAA1132457AAE Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q

23.36.76.121

0 B

URL GET
static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/55ggxxse8uyjdh2x78ht3j40q HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Mon, 13 Nov 2023 10:13:14 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
x-datastream-cache-status: 1
x-akamai-ew-subworker: 8096267
server: Play
content-encoding: br
x-li-static-content: 1
content-type: image/png
x-fs-uuid: 04c00bc5fda47716f0f06b3bc32a0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: BMALxf2kdxbw8Gs7wyoAAA==
content-length: 5491
remote-cache-status: TCP_HIT
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz

23.36.76.121

200 OK

0 B

URL HEAD HTTP/2
static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/9lb1g1kp916tat669q9r5g2kz HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Thu, 18 Jan 2024 14:35:22 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
x-datastream-cache-status: 1
x-akamai-ew-subworker: 8096267
server: Play
content-encoding: br
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: a74a955909787716b02ac8cbcd2a0000
x-li-fabric: prod-ltx1
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: p0qVWQl4dxawKsjLzSoAAA==
content-length: 799
remote-cache-status: TCP_HIT
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1

23.36.76.121

200 OK

0 B

URL GET HTTP/2
static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/4k6diadsezedadhkq4uxfxss1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Thu, 15 Feb 2024 18:40:07 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
server: Play
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-li-fabric: prod-lor1
x-fs-uuid: 0005e66469e783f1b384bdbac2cc6845
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXmZGnng/GzhL26wsxoRQ==
content-length: 63716
remote-cache-status: TCP_HIT
x-datastream-cache-status: 2
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv

23.36.76.121

200 OK

0 B

URL GET HTTP/2
static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /sc/h/1gpe377m8n1eq73qveizv5onv HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Thu, 11 Jul 2024 01:03:57 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
x-datastream-cache-status: 1
server: Play
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0a9d6ce11f5bad16b00010e0be2a0000
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: prod-eda6
x-li-proto: http/1.1
x-li-uuid: Cp1s4R9brRawABDgvioAAA==
content-length: 13154
remote-cache-status: TCP_HIT
x-akamai-ew-subworker: 8096267
date: Tue, 05 Dec 2023 14:13:39 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1487
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dW2QdaxrYfDZuCsw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 818700DDF0024F90B38A1A2B161006C4 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 751
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dW1thBFPDoL4yt2w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 9636CA080EAD4E1BBB3EFAC386A162AF Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/cookie-consent/

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/cookie-consent/
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /cookie-consent/ HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 74
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; Max-Age=15552000; Expires=Sun, 02 Jun 2024 14:13:39 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 04-Dec-2024 14:13:39 GMT; SameSite=None
bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; domain=.www.linkedin.com; Path=/; Secure; Expires=Wed, 04-Dec-2024 14:13:39 GMT; HttpOnly; SameSite=None
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.microsoft.com *.adnxs.com; script-src 'report-sample' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-3RIGhhApBii1KY+aW1xk7kFyoQY8vSVE5DfT7E9SJUc=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' 'sha256-wy4DvlEW9PHPIGvQJW6Wv4woBSa/0LJHs8LHsBVVXCs=' 'sha256-065A0cJTDQ+hyKvufSL/flW02hIbgLndOINLRWux6To=' 'sha256-Ga5SLB8hPdWUE8Wb6LgZ05D9Z5vrdLAaPbDBW2m3BI8=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=default
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dXT37ojaH2YeAFPw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E17CE433C7A645AD97ED5455EA442C85 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1681
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dXujQoJ4DlnyeJvw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 77A8437B52AD4DF8A5F69FE44BED74ED Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1592
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dYUAaW+Smclooeeg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 10BA6D4A83264898899537FAC37869F5 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 841
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dYTh56PUezBiUtqA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 27D3328E29D94E508C9E8C9AF66DD855 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:7161877376482573920
Content-Length: 740
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dZokgZjxUCLbbudw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 93D72761AF1D4C67816DC1C43BF876F2 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:7161877376482573920
Content-Length: 2240
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dZr4qoM5P86y1QCQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C54E03C556C344C6B72195D7B2C534E9 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Csrf-Token: ajax:7161877376482573920
Content-Length: 9612
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dZiy39jFqP1lq/BA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D7AF1BFAE30A40B492B71DACC1DB2E5D Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:7161877376482573920
Content-Length: 855
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dc6ijLxT+91mL/Xw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E33D169979D24AFDBB2837CC3DEA9E47 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:39 GMT
content-length: 0
X-Firefox-Spdy: h2

accounts.google.com/gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=zISsgWFyK8VXZupu7D2vog

64.233.161.84

200 OK

538 B

URL GET HTTP/2
accounts.google.com/gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=zISsgWFyK8VXZupu7D2vog
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintF3:FB:54:1B:21:E9:69:01:41:02:BB:D0:97:A2:BA:45:72:5A:71:D8
ValidityMon, 20 Nov 2023 08:09:49 GMT - Mon, 12 Feb 2024 08:09:48 GMT

File type
gzip compressed data, max compression\012- data
Size
538 B (538 bytes)
Hash
4969d47ebb90ce4a7bf9820e1d3a5ef1
f15139ee643ecfe60cd3079185906160a3674289
a85970c4e0661754afe73395a90ba3e504f68033f18631825ee03b0fd26e6ff1

HTTP Headers

GET /gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=zISsgWFyK8VXZupu7D2vog HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-content-type-options: nosniff
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
access-control-allow-methods: GET
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 14:13:39 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-0iF4Qw6b9xTrrYpgqRASbQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf

216.58.207.227

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Size
27 kB (27191 bytes)
Hash
20f7180ebc95ade510a7fbd4cbdc35b6
6cfc5afa73095577a20461de09d2a8f4b34d80e0
8087cf253743d85d9153ba12ce624c2e460e966c40a61928b3a036a2d452f45a

HTTP Headers

GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:18:29 GMT
expires: Tue, 03 Dec 2024 23:18:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 53711
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf

216.58.207.227

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\012- data
Size
27 kB (27431 bytes)
Hash
9ecc1a07aa9e5e87f04d31b49ca09897
a030a565d2168e505861d6f1de260dc1adf8b77b
ebeace42646aa327b1fa6225f70120658993d4796cc9103484a6f068d3a58a6d

HTTP Headers

GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:36:53 GMT
expires: Thu, 28 Nov 2024 21:36:53 GMT
cache-control: public, max-age=31536000
age: 491807
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1701785400000

23.36.76.210

200 OK

42 kB

URL GET HTTP/2
platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1701785400000
IP
23.36.76.210:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectplatform.linkedin.com
Fingerprint4B:93:3D:B1:BC:00:2B:2E:AE:1F:AE:FD:0C:60:BD:19:AB:04:FE:CC
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (34128)
Size
42 kB (42150 bytes)
Hash
db6c2bc7d90fd8644a138ef1a5a12261
9d8caf31e893a4b8e423ba663f7cc3d1f0eafe6a
48b3ee4a9140dc93948400bce8c0dd6ee916abab061d2d4ff3e36af63f8f9851

HTTP Headers

GET /litms/utag/checkpoint-frontend/utag.js?cb=1701785400000 HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Cookie: lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
etag: "54373abd9a186ced967d3eb6c4bf409c346c5968"
server: Play
accept-ranges: bytes
cache-control: max-age=300
last-modified: Sat, 02 Dec 2023 16:52:02 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
x-li-uuid: AAYLwisR3eteaHCsuzOipQ==
content-length: 42150
date: Tue, 05 Dec 2023 14:13:40 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 10463
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9ddDeFQ8dwWjT1eXA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 25F0A7DF6928410381FD366116BFA76D Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:39Z
date: Tue, 05 Dec 2023 14:13:40 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/litms/api/metadata/user

13.107.42.14

200 OK

226 B

URL GET HTTP/2
www.linkedin.com/litms/api/metadata/user
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (345), with no line terminators
Size
226 B (226 bytes)
Hash
ccb8e9f87744d3b614cadf7b951ae5ea
da1e0528d0b7377a965b569dae93a8ea0e8dbacb
6b6676ca025aaa38464ebd3b1a6c642e3d7feef94b66595fa183f0d76da5f222

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

GET /litms/api/metadata/user HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 226
content-type: application/json
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.microsoft.com *.adnxs.com; script-src 'report-sample' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-3RIGhhApBii1KY+aW1xk7kFyoQY8vSVE5DfT7E9SJUc=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' 'sha256-wy4DvlEW9PHPIGvQJW6Wv4woBSa/0LJHs8LHsBVVXCs=' 'sha256-065A0cJTDQ+hyKvufSL/flW02hIbgLndOINLRWux6To=' 'sha256-Ga5SLB8hPdWUE8Wb6LgZ05D9Z5vrdLAaPbDBW2m3BI8=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=default
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9df7MvfueyudzlxHA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 0CF2A01A4FE7462DB3F5BA92607C7811 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:40Z
date: Tue, 05 Dec 2023 14:13:40 GMT
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:7161877376482573920
Content-Length: 720
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9di2nAP7JcIC+iGXw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D4F8C1228E47478188BADAB09D4AEE57 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:40Z
date: Tue, 05 Dec 2023 14:13:40 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9duoXkRinuRxyWuGg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C4ED9B099CF1489DB5085FF50A92B592 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:41Z
date: Tue, 05 Dec 2023 14:13:41 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/apfcDf

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/platform-telemetry/li/apfcDf
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 5010
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dv7NthTLCubO+6KA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6C7C09A1D2A64201A206F3A2A7C9057C Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:41Z
date: Tue, 05 Dec 2023 14:13:41 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/platform-telemetry/li/apfcDf

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/platform-telemetry/li/apfcDf
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 5010
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9dzVcvd4aLiGzJtjg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 79F5F71D20D64D77AA0DB4AEF8E7CACF Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:41Z
date: Tue, 05 Dec 2023 14:13:41 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9eM2nLh4Dlzi0QDJg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7EF7DA24C04542E89D2CB92F871F31F6 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:43Z
date: Tue, 05 Dec 2023 14:13:43 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9erXi6273MXHdcjeg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 95BAE53A532E48A0ABB248EF6D0D8B25 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:45Z
date: Tue, 05 Dec 2023 14:13:45 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9fJ5l/3tlyyppsxqg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B5E14ED3DFDB4B12856A4D0A7845DCC1 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:47Z
date: Tue, 05 Dec 2023 14:13:47 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9foaIzwsoPWPVCkgw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E77DB543A30D4ED1A8DA93A0A9B8AFB7 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:49Z
date: Tue, 05 Dec 2023 14:13:49 GMT
content-length: 0
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

216.58.211.14

200 OK

0 B

URL POST HTTP/2
play.google.com/log?format=json&hasfast=true&authuser=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 05 Dec 2023 14:13:50 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+959; expires=Thu, 04-Dec-2025 14:13:50 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 14:13:50 GMT
cache-control: private
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

216.58.211.14

200 OK

131 B

URL POST HTTP/2
play.google.com/log?format=json&hasfast=true&authuser=0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 453
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 05 Dec 2023 14:13:50 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+702; expires=Thu, 04-Dec-2025 14:13:50 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 14:13:50 GMT
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9gG8oXle/NkDOnHfg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8ABE7CDD1CC141A1B8790CE9DC6D5F2F Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:51Z
date: Tue, 05 Dec 2023 14:13:51 GMT
content-length: 0
X-Firefox-Spdy: h2

www.linkedin.com/li/track

13.107.42.14

200 OK

0 B

URL POST HTTP/2
www.linkedin.com/li/track
IP
13.107.42.14:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - LinkedIn

HTTP Headers

POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 739
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Cookie: JSESSIONID=ajax:7161877376482573920; lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; bscookie="v=1&20231205141338717823dd-be6e-47b6-85bb-43c02b7eadd3AQEG2ysAV87UHZ9BkkWaJ1_ty3eOBhJz"; li_gc=MTs0MjsxNzAxNzg1NjE5OzI7MDIxoW0jo82SeVNJVD2+RGRegewB6accEI+nibKPU1VFiBw=; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"; li_rm=AQGCYTpQyy3zlQAAAYw6U8dmO3-bOc_tqWUJyOSjF1uzzrwCHGPy1y0dfD4ED0SZxVy2f3bEhE5qd0kW6cYwWg-2PjavQSzo6gGhhH52o954Jcr2VfSUo5Zj; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAYLw9ggbAsYt8MXmjmJrw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B141031B1FDB4B0D9027FB32FA70BF26 Ref B: OSL30EDGE0409 Ref C: 2023-12-05T14:13:52Z
date: Tue, 05 Dec 2023 14:13:52 GMT
content-length: 0
X-Firefox-Spdy: h2

ponf.linkedin.com/pixel/tracking.png?reqid=c54de52e-3ea5-461d-914e-68c648e5fdae&pageInstance=urn%3Ali%3Apage%3Acheckpoint_lg_uasLogin%3BDz9ycTERRlCMpLz63mBlVg%3D%3D&js=enabled

144.2.9.1

200 OK

43 B

URL GET HTTP/2
ponf.linkedin.com/pixel/tracking.png?reqid=c54de52e-3ea5-461d-914e-68c648e5fdae&pageInstance=urn%3Ali%3Apage%3Acheckpoint_lg_uasLogin%3BDz9ycTERRlCMpLz63mBlVg%3D%3D&js=enabled
IP
144.2.9.1:443
ASN
#14413 LINKEDIN

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectponf.linkedin.com
Fingerprint2D:44:F8:1B:0A:DA:84:FE:D5:86:76:F7:5F:F8:46:AE:90:96:11:7F
ValidityTue, 21 Feb 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /pixel/tracking.png?reqid=c54de52e-3ea5-461d-914e-68c648e5fdae&pageInstance=urn%3Ali%3Apage%3Acheckpoint_lg_uasLogin%3BDz9ycTERRlCMpLz63mBlVg%3D%3D&js=enabled HTTP/1.1
Host: ponf.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Cookie: lang=v=2&lang=en-us; bcookie="v=2&b41b2731-419a-454d-8ef1-1450095b945b"; li_gc=MTswOzE3MDE3ODU2MTg7MjswMjE20DFtS7iflAh2VrN9aNZpG/KuurbPytaU2Lfpn/zG0A==; lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2643:u=1:x=1:i=1701785618:t=1701872018:v=2:sig=AQHQrugbJIE49fgOyi2utJX83gZcO0z8"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.20.1
date: Tue, 05 Dec 2023 14:12:10 GMT
content-type: image/gif
X-Firefox-Spdy: h2

accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US

64.233.161.84

200 OK

116 kB

URL GET HTTP/2
accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintF3:FB:54:1B:21:E9:69:01:41:02:BB:D0:97:A2:BA:45:72:5A:71:D8
ValidityMon, 20 Nov 2023 08:09:49 GMT - Mon, 12 Feb 2024 08:09:48 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7754)
Size
116 kB (115727 bytes)
Hash
6e7e1d4813dee01f141a9934482ae3c8
b54dec2232aa8d0531b45a76bcb6e523ffec79f4
a6769aa0b7d15a21f0b190b07ee52e929c91aa1ded6183c279891c275a937467

HTTP Headers

GET /gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_625492_95501&as=zISsgWFyK8VXZupu7D2vog&hl=en_US HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 14:13:39 GMT
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: same-site
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: script-src 'nonce-9RwnAS_rrVEprgDl07FN4Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

info.montrose-env.com/events/public/v1/encoded/track/tc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04?_ud=d0374442-16f8-4cf8-8dc8-f5087d83c900&_jss=1&_fl=8&_pl=5&_hc=48&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024

199.60.103.31

307 Temporary Redirect

43 kB

URL User Request GET HTTP/3
info.montrose-env.com/events/public/v1/encoded/track/tc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04?_ud=d0374442-16f8-4cf8-8dc8-f5087d83c900&_jss=1&_fl=8&_pl=5&_hc=48&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024
IP
199.60.103.31:443
ASN
#209242 Cloudflare London, LLC

Certificate
IssuerGoogle Trust Services LLC
Subjectinfo.montrose-env.com
FingerprintCF:0F:AE:97:A3:C0:69:5A:07:26:8A:E3:EA:DB:51:6A:05:6B:83:43
ValiditySun, 19 Nov 2023 07:02:13 GMT - Sat, 17 Feb 2024 07:02:12 GMT

File type

Size
43 kB (42647 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /events/public/v1/encoded/track/tc/LY+113/cX6nZ04/MWyCPmxQdffW9g9Zt86K5CP9W93kvSZ56HMltN8fXWBd3qgyTW6N1vHY6lZ3mjN8DT4rRMfqNVW7NCVCV76ct41W6SMLC-5md-KXW7rpN_x6KJc1LW6Xtpfn4_SN7VW6wcr0369ND2KW6mPYfF5gW3KqV60bGs5r0qGHV7dmxB77T56YW94jNlh7bx_HvN7TL9b99nGKwW8y958K4GqsxyW8DfrlR44xjhwW4n0kRv3SMDG6W5rbL0-7W7qx0VGMH_y68ygN1W4r6yTj4YylrmVLtv6N10C6TyW1Pym1t4JtjcdW1f--By1MQXfcW5nLVCw1K74nKW77tlmg91lmkdf5y4s7q04?_ud=d0374442-16f8-4cf8-8dc8-f5087d83c900&_jss=1&_fl=8&_pl=5&_hc=48&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024 HTTP/1.1
Host: info.montrose-env.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=HRroegzRwxQqAiEFi7gFY7FHd2tUUPsa1EntApHd67I-1701785617-0-Afp3EVl8LESk17PTJnlNo5sLL4HbV6Bp8dX0zDdJE7MXpVzf3C/9YQYUY5h9Kiu+Gger9a+HlvyhZxtFl10NVBQ=; __cfruid=d4b75df64e6232e8325a4a69b171c119b7802e79-1701785617
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 307 Temporary Redirect
date: Tue, 05 Dec 2023 14:13:37 GMT
location: https://www.linkedin.com/company/1177649?utm_campaign=Sensible%20EDP&utm_medium=email&_hsmi=285185500&_hsenc=p2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA&utm_content=285185500&utm_source=hs_email
cf-ray: 830ce40e8e5f56ca-OSL
cf-cache-status: MISS
link: <https://www.linkedin.com/company/1177649?utm_campaign=Sensible%20EDP&utm_medium=email&_hsmi=285185500&_hsenc=p2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA&utm_content=285185500&utm_source=hs_email>; rel="canonical"
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: false
content-security-policy: upgrade-insecure-requests
referrer-policy: no-referrer
x-content-type-options: nosniff
x-envoy-upstream-service-time: 43
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/event-tracking-td/envoy-proxy-5bb8974fb5-4qckm
x-evy-trace-virtual-host: all
x-hs-https-only: worker
x-hubspot-correlation-id: 687b4020-dedd-4047-9c1a-5397b99aa20d
x-request-id: 687b4020-dedd-4047-9c1a-5397b99aa20d
x-robots-tag: none
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0tr96nI3YyhoZuYKji%2F1I6N2A0jAjX%2BQtcfTvgqSIdSHwqMtaJLVoI8ZpLaupRyIbBaBCltt%2Fow3hOIkgQDftHwP8cx4x2PbWOVIi96vQHOW%2FbVQjCQa6ZpWN7DAXFLk5JrS8MZ17g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400

static.licdn.com/sc/h/2y3qdqw0xpfk3qo1agmkdpn7x

23.36.76.121

200 OK

95 kB

URL GET HTTP/2
static.licdn.com/sc/h/2y3qdqw0xpfk3qo1agmkdpn7x
IP
23.36.76.121:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1177649%3Futm_campaign%3DSensible%2520EDP%26utm_medium%3Demail%26_hsmi%3D285185500%26_hsenc%3Dp2ANqtz--LK_U-P6qts2zu_6yOF-EHf7zRCx3x1AnZmQ-Cg6OtBg7PXX_RePsqwqiYo8B9uaEGcdtEKnSP2tuHY9WTyjBM732XGA%26utm_content%3D285185500%26utm_source%3Dhs_email
Certificate
IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT

File type

Size
95 kB (95162 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sc/h/2y3qdqw0xpfk3qo1agmkdpn7x HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Play
expires: Wed, 09 Oct 2024 22:24:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 000607642ab0a0b7a1819fbe797d498a
x-li-fabric: prod-ltx1
x-content-type-options: nosniff
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYHZCqwoLehgZ++eX1Jig==
content-length: 26826
date: Tue, 05 Dec 2023 14:13:38 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by