Report - securedsgaccount.fr/

Report Overview

Submitted URL
securedsgaccount.fr/
IP
37.221.65.142
ASN
#200019 Alexhost Srl
Submitted
2022-09-15 09:33:18
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
86

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	325 B	1.6 kB	143.204.55.115
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
securedsgaccount.fr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	648 kB	37.221.65.142
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.238.202.79
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	53 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale
2022-09-14	medium	securedsgaccount.fr/	Societe Generale

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-15	medium	securedsgaccount.fr/	Phishing
2022-09-15	medium	securedsgaccount.fr/index_files/rules.js.download	Phishing
2022-09-15	medium	securedsgaccount.fr/index_files/logo-sg-seul.svg	Phishing
2022-09-15	medium	securedsgaccount.fr/img/pictos-fonctionnels_20200629183129.svg	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-it.woff	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-semibold.woff	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-regular.woff	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-bold.eot	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-italic.woff	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-italic.otf	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-it.otf	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-semibold.eot	Phishing
2022-09-15	medium	securedsgaccount.fr/fonts/sourcesanspro-regular.eot	Phishing
2022-09-15	medium	securedsgaccount.fr/index_files/jquery2.js.download	Phishing
2022-09-15	medium	securedsgaccount.fr/index_files/jquery.js.download	Phishing
2022-09-15	medium	securedsgaccount.fr/index_files/js.js.download	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	securedsgaccount.fr/index_files/jquery2.js.download	70 kB	2023-03-07	2024-04-26
Pretty URL securedsgaccount.fr/index_files/jquery2.js.download IP 37.221.65.142 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-26 17:53:45 Times Seen808 Hash f86b7a0e560edb5951576cf8884153e6 e5b4c5b95c79e6e42ef676ed77986db3f85223ab 74a340d2c31205e840515065e739e3d08fa169bc8fa52c66db838dbf749103c1 Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 00:38:17 Times Seen37106434 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	securedsgaccount.fr/index_files/js.js.download	1.3 MB	2023-03-07	2024-04-26
Pretty URL securedsgaccount.fr/index_files/js.js.download IP 37.221.65.142 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-26 17:53:45 Times Seen564 Hash 6e6c70c409456c23a09d9adbce8d2e80 0f50b6f4f4555c31e8f832b446cda4996acb4460 3957ed7a4d5b5f5c36fe0872fbc2f619b8d2d0094b134dd65d1ebd6f3352847b Loading...

	securedsgaccount.fr/index_files/rules.js.download	488 B	2023-03-07	2024-04-26
Pretty URL securedsgaccount.fr/index_files/rules.js.download IP 37.221.65.142 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-26 17:53:46 Times Seen770 Hash cd884ffdf1f759fbdeaae54b636288d4 450ea313a0b4b250024abd0935c1f59617841134 f0f8ce50e148b374b7b9b29180824007970478e81ce52669d531a669d9c4c34d Loading...

	securedsgaccount.fr/	243 B	2023-03-07	2024-04-26
Pretty URL securedsgaccount.fr/ IP 37.221.65.142 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-26 17:53:45 Times Seen384 Hash 71d19f7fe5d2135f268f61647dc03988 1e25ed11489509b55de05241a48d728969493458 5e5eaf8632a7264aaa23953240629b96a0709d13b1091fc9763970c2dd8a02ce Loading...

	securedsgaccount.fr/	483 B	2023-03-07	2024-04-26
Pretty URL securedsgaccount.fr/ IP 37.221.65.142 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-26 17:53:45 Times Seen382 Hash d4e17ac95f6499091f5567792887b0fe 605112c6edb9f3f3aa27108cb32230deedbac7d2 e02463ed16a3d8b83b06cbc206098817ba44827c535b8a3971b78ccdb327abff Loading...

	securedsgaccount.fr/	303 B	2023-03-07	2024-04-26
Pretty URL securedsgaccount.fr/ IP 37.221.65.142 ASN #200019 Alexhost Srl Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-26 17:53:46 Times Seen379 Hash df4d122557c68345696b953efe9e8f1d 664b2317e9984afa6eadd6ad13bf90b92b1e8d31 e082f41c3e3feb3e3d50eb92d57a6f04b702744fbc401dca0fdd749808e70f8c Loading...

		Size	First Seen	Last Seen
	#1 Eval - 81506f6c9b74db893b121a759da430d7	1.0 kB	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-26 17:53:46 Times Seen439 Hash 81506f6c9b74db893b121a759da430d7 2d4226d3b0de0217029bc6113d7489f398b5a4be a49959becff3155c2f2c2ba4684dfecdf77e055678880cbddac3c81eba11fe3c Loading...

	#2 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-04-27
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-27 00:18:13 Times Seen350181 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

HTTP Transactions (41)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 09:10:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _3mr-ki1dz1IIU-9wP0cqK_mlVuG_7UWunh42M1FwEdfO_XC58DaMg==
Age: 1364

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11738
Expires: Thu, 15 Sep 2022 12:48:45 GMT
Date: Thu, 15 Sep 2022 09:33:07 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vK7xfGvVVVRCJK0rCmiTNSI9J6T30dfHFYAGYxCOxWSF1-zeWMJsag==
age: 17872
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
03f847e81a207f3cb01fea290a92d1ae
3e792b83cd459042bd295eb0d11d6be8a2e47c55
a34b8ccf010986e30078333751c7d3ca56df77fc004c76619aef7a879caf9bcc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A34B8CCF010986E30078333751C7D3CA56DF77FC004C76619AEF7A879CAF9BCC"
Last-Modified: Wed, 14 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2593
Expires: Thu, 15 Sep 2022 10:16:20 GMT
Date: Thu, 15 Sep 2022 09:33:07 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

securedsgaccount.fr/

37.221.65.142

200 OK

8.7 kB

URL HTTP/2
securedsgaccount.fr/
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2652), with CRLF line terminators
Size
8.7 kB (8706 bytes)
Hash
c8818e645d5fdb92e11ec719f9def522
38d92a44d4ee1f92e335e856ae977ec172af6b05
f481977869c755272ed9ff25b373dcfb39ed938a2cabc360e24a5f81c94a8d7c

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:07 GMT
content-type: text/html; charset=UTF-8
content-length: 8706
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/spec56_btn_gsm_all_gcd_20190320190559.min.css

37.221.65.142

200 OK

319 B

URL HTTP/2
securedsgaccount.fr/index_files/spec56_btn_gsm_all_gcd_20190320190559.min.css
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
ASCII text, with CRLF line terminators
Size
319 B (319 bytes)
Hash
f40ddb3cf4b4ff6d2d4077b47d42867f
cc0bd85164b085b6dc17450107cbeb25dc562270
fa63c74bd568e45d82556fd70dbdfb05aa7241af3f61ebe9b8d5c66aae35bf08

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/spec56_btn_gsm_all_gcd_20190320190559.min.css HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/css
content-length: 319
x-accel-version: 0.01
last-modified: Tue, 13 Sep 2022 14:03:08 GMT
etag: "39c-5e88f78d000bb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/index_20190723161948.min.css

37.221.65.142

200 OK

33 kB

URL HTTP/2
securedsgaccount.fr/index_files/index_20190723161948.min.css
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
ASCII text, with very long lines (310), with CRLF line terminators
Size
33 kB (32559 bytes)
Hash
afc564f900f652325864ace66858d4a5
f292bbfe69f1b1788234fb3317ffa97208047cb0
1bdc5ac86df87c90a00acd139ce07e32cd270e6971eca5e62f26379090fcbb37

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/index_20190723161948.min.css HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 14:03:07 GMT
etag: W/"63208d9b-41496"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/rules.js.download

37.221.65.142

200 OK

248 B

URL HTTP/2
securedsgaccount.fr/index_files/rules.js.download
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
ASCII text, with CRLF line terminators
Size
248 B (248 bytes)
Hash
2b37ba4f0ac6c923da2dae3441653e1f
a64e64220c5f2058a99b84869115284e672df1db
b7679f70c6fbcd358d0e7aed87ea3a8e69e663e6ac54341f4380a094498bddd8

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /index_files/rules.js.download HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: application/javascript
content-length: 248
x-accel-version: 0.01
last-modified: Tue, 13 Sep 2022 14:03:05 GMT
etag: "1e8-5e88f78aaf43d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5377
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:33:08 GMT
Last-Modified: Thu, 15 Sep 2022 08:03:31 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

securedsgaccount.fr/index_files/logo-sg-seul.svg

37.221.65.142

200 OK

3.0 kB

URL HTTP/2
securedsgaccount.fr/index_files/logo-sg-seul.svg
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1433), with CRLF line terminators
Size
3.0 kB (3042 bytes)
Hash
a4905efc552b898322c256cb4d4f55c3
6ca6d615b2ebe329819a0338879c1d206ad0b90b
4d5f7f9cf24e66420cd0f39be3d181b4566ff8dcc8e699731c88787e511befd3

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /index_files/logo-sg-seul.svg HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: image/svg+xml
content-length: 3042
last-modified: Tue, 13 Sep 2022 14:03:20 GMT
etag: "63208da8-be2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

securedsgaccount.fr/img/pictos-fonctionnels_20200629183129.svg

37.221.65.142

200 OK

329 kB

URL HTTP/2
securedsgaccount.fr/img/pictos-fonctionnels_20200629183129.svg
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, Unicode text, UTF-8 text, with very long lines (5564), with CRLF, LF line terminators
Size
329 kB (328937 bytes)
Hash
da558b838d28b3ad56202aa0a4e848eb
0e91544bf95c232d558db1e57119d5fc5c0aeb74
3deb480b7998aca8fb7d8a3e6b07e356daf97d9d1120c4204733b15e091eba14

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /img/pictos-fonctionnels_20200629183129.svg HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: image/svg+xml
content-length: 328937
last-modified: Tue, 13 Sep 2022 14:03:09 GMT
etag: "63208d9d-504e9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

push.services.mozilla.com/

44.238.202.79

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.238.202.79:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5n7G27jiWZZuyK/W7PynxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9Z3hYcwYwUt4incsrHDbSuqY7Ns=

securedsgaccount.fr/fonts/sourcesanspro-it.woff

37.221.65.142

404 Not Found

808 B

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-it.woff
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
808 B (808 bytes)
Hash
a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-it.woff HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/awt-front-BDDF.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/html
content-length: 808
last-modified: Tue, 13 Sep 2022 14:01:33 GMT
etag: "328-5e88f7328a893"
accept-ranges: bytes
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/print_20190320190559.min.css

37.221.65.142

200 OK

72 kB

URL HTTP/2
securedsgaccount.fr/index_files/print_20190320190559.min.css
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
ASCII text, with very long lines (3067), with no line terminators
Size
72 kB (71657 bytes)
Hash
441350fa64b4647fdef03ea03b78fa29
e89d9337e1687f4f7154632e3ec6abf82baad3d9
8517813e2e3d46f38abfdf722e5a9341579434d85b2b89caff31583305bba7f2

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/print_20190320190559.min.css HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 14:03:25 GMT
etag: W/"63208dad-bfb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/img/spriteV4.png

37.221.65.142

200 OK

56 kB

URL HTTP/2
securedsgaccount.fr/img/spriteV4.png
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
PNG image data, 880 x 650, 8-bit/color RGBA, non-interlaced\012- data
Size
56 kB (56012 bytes)
Hash
2489b1de4b742de1d025c2751296143e
ca790ae20b4603ce6595ab1a0384dd217105306c
fdffcd1a92a88cf374901faf2ec466c6d16c0baa8b1f92426a24424743b65ab4

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /img/spriteV4.png HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: image/png
content-length: 56012
last-modified: Tue, 13 Sep 2022 14:03:21 GMT
etag: "63208da9-dacc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

securedsgaccount.fr/img/new_sprite.png

37.221.65.142

200 OK

10 kB

URL HTTP/2
securedsgaccount.fr/img/new_sprite.png
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
PNG image data, 312 x 104, 8-bit/color RGBA, non-interlaced\012- data
Size
10 kB (9961 bytes)
Hash
675d3d69bb78ed155d9d443bef4cccd8
8266846da238de6218a75a11744f35f821baff74
0d477834d11f75ff989d2b6bfbcbaaed80a8e4f8efe65569f4cee2ad603a73af

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /img/new_sprite.png HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: image/png
content-length: 9961
last-modified: Tue, 13 Sep 2022 14:03:14 GMT
etag: "63208da2-26e9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-semibold.woff

37.221.65.142

200 OK

64 kB

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-semibold.woff
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
Web Open Font Format, TrueType, length 63896, version 1.50\012- data
Size
64 kB (63896 bytes)
Hash
66d6f332d0d93578c726f68d3a9ada3b
10ebe50154b114f97ff25d99034ce724116ee47e
ecc485cb5434c03a5990728a87f66f6b46635d3bd97fd9fd175df05e37bbb6f9

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-semibold.woff HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: font/woff
content-length: 63896
last-modified: Tue, 13 Sep 2022 14:03:24 GMT
etag: "63208dac-f998"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-regular.woff

37.221.65.142

200 OK

30 kB

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-regular.woff
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
Web Open Font Format, TrueType, length 29936, version 1.0\012- data
Size
30 kB (29936 bytes)
Hash
ee8fb2f1d98caedf1822bd94ac49592a
78342ab4847d4794808b9f1ef361c8845139cd5b
b2bd7e62939ac983fd01971920b44c1313a0d00b6f81ef80ae7a4b8ba5f20311

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-regular.woff HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: font/woff
content-length: 29936
last-modified: Tue, 13 Sep 2022 14:03:17 GMT
etag: "63208da5-74f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-bold.eot

37.221.65.142

404 Not Found

30 kB

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-bold.eot
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
30 kB (30058 bytes)
Hash
3a1671d1b40684cd048cc368d0874cc7
b2e9b0d36a25ceee79552a2b934fe25ca97bc7de
7e8ae60cca2669e3e2548a49eef858ff4880dfcac05b0ba3f7a58f8f089cdf64

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-bold.eot HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/html
last-modified: Tue, 13 Sep 2022 14:01:33 GMT
etag: W/"328-5e88f7328a893"
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/img/favicon.ico

37.221.65.142

200 OK

318 B

URL HTTP/2
securedsgaccount.fr/img/favicon.ico
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
MS Windows icon resource - 1 icon, 16x16, 16 colors\012- data
Size
318 B (318 bytes)
Hash
ca10c09aeaf43460d3760f50c608eb51
f2ed2a4fe0e1eadb7dd28444ea6b7a04abf0d38e
daf58b06a09d467436ee5fd10eefbeadac3cf6ecaef1eca1884ef8330f561642

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /img/favicon.ico HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:09 GMT
content-type: image/vnd.microsoft.icon
content-length: 318
x-accel-version: 0.01
last-modified: Tue, 13 Sep 2022 14:03:04 GMT
etag: "13e-5e88f789316ca"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-italic.woff

37.221.65.142

404 Not Found

808 B

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-italic.woff
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
808 B (808 bytes)
Hash
a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-italic.woff HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/index_pri_20201013141424.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 09:33:09 GMT
content-type: text/html
content-length: 808
last-modified: Tue, 13 Sep 2022 14:01:33 GMT
etag: "328-5e88f7328a893"
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11937
Expires: Thu, 15 Sep 2022 12:52:07 GMT
Date: Thu, 15 Sep 2022 09:33:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11937
Expires: Thu, 15 Sep 2022 12:52:07 GMT
Date: Thu, 15 Sep 2022 09:33:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8447 bytes)
Hash
5a6939786c9343412c9af87efd3f44e0
14131148fda4e8d85b582fd20e76bcc814341bf1
8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8447
x-amzn-requestid: 6a307dbf-af18-4b40-a2c4-cda4a6e302d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLe84HUzIAMFkUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631adeb8-166dc8b954f4e5b50a0843de;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 06:35:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qQaQeJRgo5OcpjqbzgyZQCl-pYpvj6P_aoB07WGfV0YXyZqv4AQNCg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:17 GMT
age: 42653
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-italic.otf

37.221.65.142

404 Not Found

4.3 kB

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-italic.otf
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
4.3 kB (4321 bytes)
Hash
bb2f3445f73d80d72e5be5849ad93927
4fa09d6cb224d68dcf68ccdd8b53c87b94925eca
879d41fab57d198d14ab56cbdc1d1213b98550bdd8702ef4ebc0f51f087a1785

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-italic.otf HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/index_pri_20201013141424.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 09:33:09 GMT
content-type: text/html
last-modified: Tue, 13 Sep 2022 14:01:33 GMT
etag: W/"328-5e88f7328a893"
content-encoding: br
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9400 bytes)
Hash
4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0nTpbTo79RT78Sin1pTWaq4pRKWZyqnBkZCT2p66wWoW-A1OScJmIg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:09 GMT
age: 47521
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f370e89-6cc5-4da8-83dc-68d5a685ce0f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9340 bytes)
Hash
a05eafb022d09a0c88432fe018f2c325
b8ae9f4346fe63c5aa7a3b07ef84eac8fc63ca94
91b3994632d954d1c93ee53a46d2d8850ebe387af40962aad787d341b742e9f0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f370e89-6cc5-4da8-83dc-68d5a685ce0f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9340
x-amzn-requestid: 23ab295a-91a0-4a91-ba26-8302088a50c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNxvmEPIIAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bc996-10ccfaf45b93ef066901573d;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 23:17:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rM-kSnE6-SpiiNFAEsMmAUgxlgMDYun5zKMwTqvnM1BQcryism74gA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:18 GMT
age: 42652
etag: "b8ae9f4346fe63c5aa7a3b07ef84eac8fc63ca94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10633 bytes)
Hash
f42b72c3fd66a6758ebcf0ca8cc1a046
13d42d455f5131b7b861b97eb3f0e91236d4d222
4a07fcacde77dc890164fda9f295b61af6947b2d7f3f84f64749d93e3a1e5b99

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10633
x-amzn-requestid: 2a8ec7f2-8704-440e-9966-ae4643d6aa5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YdyhcF6RIAMFTEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322313c-4d1bfab72580e62231978193;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 19:53:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Dr0K5GobFSc2ooWzPsbe6tfoTbF_NglaVuT8z-cM-B0AufMh_PohhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:13 GMT
age: 47517
etag: "13d42d455f5131b7b861b97eb3f0e91236d4d222"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc482abf3-9a0f-40ae-8d4b-c95977ab3e5f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9630 bytes)
Hash
ebe7a0235de91cc1bf4cc6baecbf43f5
fb0078b3be78ca41f46c102148b9e801cfacba8e
6b35ef88d4ca58338480a87d0b0143fc4e1885427735d5ea48ba6e99aa882678

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc482abf3-9a0f-40ae-8d4b-c95977ab3e5f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9630
x-amzn-requestid: c48fade7-f2d1-480e-a411-9bfd080b4b92
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXwx8Fe-oAMFtiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fc80c-20c8930c7269503e6195fe72;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 00:00:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bFdVw0FZgpuFUOM1MQPSvXByye8bqcrEXDc6O3rFwQKgUOvLxoT7Xg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:39:14 GMT
age: 79183
etag: "fb0078b3be78ca41f46c102148b9e801cfacba8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-it.otf

37.221.65.142

404 Not Found

0 B

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-it.otf
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-it.otf HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/awt-front-BDDF.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/html
last-modified: Tue, 13 Sep 2022 14:01:33 GMT
etag: W/"328-5e88f7328a893"
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/index_pri_20201013141424.min.css

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/index_pri_20201013141424.min.css
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/index_pri_20201013141424.min.css HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 14:03:19 GMT
etag: W/"63208da7-3655e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-semibold.eot

37.221.65.142

404 Not Found

0 B

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-semibold.eot
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-semibold.eot HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/html
last-modified: Tue, 13 Sep 2022 14:01:33 GMT
etag: W/"328-5e88f7328a893"
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/fonts/sourcesanspro-regular.eot

37.221.65.142

404 Not Found

0 B

URL HTTP/2
securedsgaccount.fr/fonts/sourcesanspro-regular.eot
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /fonts/sourcesanspro-regular.eot HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/index_files/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/html
last-modified: Tue, 13 Sep 2022 14:01:33 GMT
etag: W/"328-5e88f7328a893"
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/style.css

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/style.css
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/style.css HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 14:03:20 GMT
etag: W/"63208da8-2c10f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/jquery2.js.download

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/jquery2.js.download
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /index_files/jquery2.js.download HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 14:03:14 GMT
etag: W/"63208da2-11348"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/gen_ui.png

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/gen_ui.png
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/gen_ui.png HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: image/png
content-length: 6380
last-modified: Tue, 13 Sep 2022 14:03:24 GMT
etag: "63208dac-18ec"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/awt-front-BDDF.css

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/awt-front-BDDF.css
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/awt-front-BDDF.css HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 14:03:15 GMT
etag: W/"63208da3-1891e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/inbenta.css

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/inbenta.css
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale

HTTP Headers

GET /index_files/inbenta.css HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: text/css
last-modified: Tue, 13 Sep 2022 14:03:13 GMT
etag: W/"63208da1-2268a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/jquery.js.download

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/jquery.js.download
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /index_files/jquery.js.download HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 14:03:21 GMT
etag: W/"63208da9-15851"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

securedsgaccount.fr/index_files/js.js.download

37.221.65.142

200 OK

0 B

URL HTTP/2
securedsgaccount.fr/index_files/js.js.download
IP
37.221.65.142:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Societe Generale
fortinet	Phishing

HTTP Headers

GET /index_files/js.js.download HTTP/1.1
Host: securedsgaccount.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedsgaccount.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:33:08 GMT
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 14:03:16 GMT
etag: W/"63208da4-134bc0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (41)

URL HTTP/1.1

IP

ASN

File type