Report - www.jbovietnam.com/vn/mobile/SQRP/

Report Overview

Submitted URL
www.jbovietnam.com/vn/mobile/SQRP/
IP
172.65.210.15
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-05 00:11:07
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
gateway.jbovietnam.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	10 kB	172.65.210.15
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.jbovietnam.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	16 kB	547 kB	172.65.210.15
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.13.69.101
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76
analytics.gavelz.com	639235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	434 B	84 kB	172.65.244.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-05	medium	www.jbovietnam.com/vn/mobile/SQRP/	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/SQRP/	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/webpack-643ac398b79faeb7.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/_app-ce3dda70c573acdc.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/75fc9c18-5a55cb0f13134a2c.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/7766-5ee68882709923fc.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/951-950a3a3a3ca26723.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/sqrp-0bc6b633ad2b054e.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_buildManifest.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_ssgManifest.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_middlewareManifest.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/javascript/gtag.piwik.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/assets/favicon-jbo.ico	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/framework-79bce4a3a540b080.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/3408-41d5a1c6de631a7b.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/main-083af86fb5b8c716.js	Phishing
2022-12-05	medium	www.jbovietnam.com/vn/mobile/_next/static/chunks/9206-aa50dee40dfff451.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	www.jbovietnam.com/vn/mobile/_next/static/chunks/webpack-643ac398b79faeb7.js	5.6 kB	2023-03-08	2023-03-08
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/webpack-643ac398b79faeb7.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:07 Last Seen2023-03-08 16:25:07 Times Seen1 Hash 18aeafa70627385b6ec849c59857ea17 9c147537c56650d64bbcbdeace8a773b91a9a319 2f6fbe3184ba779286dc1ee84c3c0de6b6ee955a3d1949fd47d0e48cae3f1c01 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/75fc9c18-5a55cb0f13134a2c.js	60 kB	2023-03-08	2024-04-25
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/75fc9c18-5a55cb0f13134a2c.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:11:07 Last Seen2024-04-25 18:26:18 Times Seen262 Hash bbac5aa8fefd1beaa35511586761bfb7 105deeeb854dc213ec4aa414bc0aa65534272f3a 8a2a24b79768c0dd7c3b1aef7623d2c633c5d263673cddfd894114d54d5a4df0 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/7766-5ee68882709923fc.js	19 kB	2023-03-07	2023-05-10
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/7766-5ee68882709923fc.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2023-05-10 07:55:03 Times Seen3 Hash 89c2d45c8a8ae19875d23757e4e885d0 9014199eb9766cfb7a3840dd700f9fc4c9ebc6ad 0d7af8e887c6177d592a96d7d9c075f85c87eab6b0acbd420ad7bee00532a5a0 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/3408-41d5a1c6de631a7b.js	66 kB	2023-03-08	2023-03-08
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/3408-41d5a1c6de631a7b.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:07 Last Seen2023-03-08 16:25:07 Times Seen1 Hash d15918e0083acc023c9d778b9db7842c 28fb64b808f3c13eadfc738d68296e24f78bf684 afd722a9bd58acb66444b1c9d5b12c2c37ba22b4424ab7a38c1a8aecabc879d3 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/_app-ce3dda70c573acdc.js	54 kB	2023-03-08	2023-03-11
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/_app-ce3dda70c573acdc.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:07 Last Seen2023-03-11 09:39:04 Times Seen1 Hash c89a3ba4256e7f945a565f31b0392c68 616ad93bd7041f5a8b2339c4d4e33c8c42bd059f 1da3fc7ac134f9fb881173c40470da30b51fce192c9af3950459f1456c3da848 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/951-950a3a3a3ca26723.js	10 kB	2023-03-07	2023-05-10
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/951-950a3a3a3ca26723.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2023-05-10 07:55:03 Times Seen3 Hash a48ef976738bc83c5954470fbe5b9547 fb57da971e3d3399b8e3103b76fe8643a21d0eee bfb583af0974ca491855ea9dcc2f880b6fcf63154d110ad626961a28c9e4ed25 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_middlewareManifest.js	92 B	2023-03-07	2024-05-08
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_middlewareManifest.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-05-08 00:04:31 Times Seen7803 Hash 7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Loading...

	www.jbovietnam.com/vn/mobile/SQRP/	583 B	2023-03-07	2023-03-11
Pretty URL www.jbovietnam.com/vn/mobile/SQRP/ IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2023-03-11 20:48:13 Times Seen1 Hash 10a2465707ca3c7e3799492c2202bd89 bec569148327fd41a55ec4215f939d633b4cc03b 027e9e69733f3825fe44b1a773588cc622799289c2ac27344b0e22f55c8305fd Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/framework-79bce4a3a540b080.js	130 kB	2023-03-07	2024-05-07
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/framework-79bce4a3a540b080.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2024-05-07 18:16:43 Times Seen1829 Hash 8ceac1a0789024027e37cca07bebaad2 6a80812d9e27ecc9b58466d027409f8a0668e2f4 745834316128a9605db352a4146dfb81cfd209fa037d3256277e2bc9d12b0f44 Loading...

	analytics.gavelz.com/containers/edece658-e298-4c9b-990e-67c1a1438724.js?dataLayer=piwikDataLayer	219 kB	2023-03-07	2023-03-11
Pretty URL analytics.gavelz.com/containers/edece658-e298-4c9b-990e-67c1a1438724.js?dataLayer=piwikDataLayer IP 172.65.244.226 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2023-03-11 20:48:13 Times Seen1 Hash eee515fa7ae73d6e7b499ca5db939692 f191ae9ac94d6502d62b09ebe037594fc5115845 d203b0774235c7ca39c5b3fe632d4cc0828fb257cb5c2048cdaeaed40f551b64 Loading...

	analytics.gavelz.com/ppms.js	71 kB	2023-03-07	2023-09-18
Pretty URL analytics.gavelz.com/ppms.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2023-09-18 16:25:14 Times Seen8 Hash d578b5b04d0b3c3bb5df28b3214881a8 e5520561401f17b0140624d74def2afb5e105890 30a36b85d2f698e46249c684712f34ecb6ef7459eea6a8e1b340e464270cb0d9 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/restrictaccess-1ee0dfa39e7dd049.js	9.7 kB	2023-03-08	2023-03-11
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/restrictaccess-1ee0dfa39e7dd049.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:07 Last Seen2023-03-11 20:48:13 Times Seen1 Hash 751ca23c05789d4e438c285afa912405 0e90f7fa4d4912574fde3a7f7679b671bdfda2ad 7907dca583bec596cb8a28897bdf5580c11aa6a5b3ee0a1c1ee4cb98e3d51378 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/main-083af86fb5b8c716.js	84 kB	2023-03-07	2023-05-10
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/main-083af86fb5b8c716.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2023-05-10 07:55:04 Times Seen3 Hash 5b01517255e89f80dcbf5c6800ca234f 80e9a5df830a6405866bd6df55020c573fb70128 757b7d0785543bf157db050b8de56d53b61b2721cd43100653808043770b8992 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/9206-aa50dee40dfff451.js	141 kB	2023-03-08	2023-03-11
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/9206-aa50dee40dfff451.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:07 Last Seen2023-03-11 09:39:04 Times Seen1 Hash ce3f6d1eedb8cdfe4413f62a6666db88 aa17dd333274e883dbe3c5c2f657d39f8e2b70fe b6a236fb17aa58a53c18fda5d71d18f378d74e00a517cf4681c6844e6dc64bba Loading...

	www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/sqrp-0bc6b633ad2b054e.js	9.9 kB	2023-03-08	2023-03-11
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/sqrp-0bc6b633ad2b054e.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:07 Last Seen2023-03-11 20:48:13 Times Seen1 Hash c0363c49e6487a35445334ad872ed32d e9603d5bd16338ed32ce9b12aec1abe70197b367 a3dce482d315f6ea1cc94aa5e27112dccc6ba12a594fa5b61aa708065a7d6997 Loading...

	www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_buildManifest.js	9.2 kB	2023-03-08	2023-03-08
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_buildManifest.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:25:07 Last Seen2023-03-08 16:25:07 Times Seen1 Hash 7bc2879420fdd69915a746f7ba4eff7c b67a58d72056d0a7cde2c9d4615e9531f011e2be 1bf47e7f7014d34dbf784aaca762da3e23ba922900ba3ffcbd523a690eb9440e Loading...

	www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_ssgManifest.js	77 B	2023-03-07	2024-05-08
Pretty URL www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_ssgManifest.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-05-08 00:04:31 Times Seen85982 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	www.jbovietnam.com/vn/mobile/javascript/gtag.piwik.js	7.2 kB	2023-03-07	2023-03-11
Pretty URL www.jbovietnam.com/vn/mobile/javascript/gtag.piwik.js IP 172.65.210.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2023-03-11 20:48:13 Times Seen1 Hash 34deef9ec783ee67db0fa73ff90f9747 17a5bfbdb958e4179f216a5c7614dc24a958cbc1 0bacc30e1582b9bc0bed24e7a61eaea7783132901e9f3b93d941608ecffbfd9c Loading...

		Size	First Seen	Last Seen
	#1 Eval - c3b3ee66b0f33ceca473d437e2626383	472 B	2023-03-07	2023-09-19
Pretty Observations First Seen2023-03-07 01:11:44 Last Seen2023-09-19 18:15:39 Times Seen6 Hash c3b3ee66b0f33ceca473d437e2626383 5b8a41c451f7958f1a6619dcb7e39258c32b4804 de7e36c582edde6d09def7cebce2f27592c0f9264d6adf0a1df374cfdfa6393c Loading...

HTTP Transactions (59)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2840
Expires: Mon, 05 Dec 2022 00:58:16 GMT
Date: Mon, 05 Dec 2022 00:10:56 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1127
Cache-Control: max-age=124748
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:10:56 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 10:50:04 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9328
Expires: Mon, 05 Dec 2022 02:46:24 GMT
Date: Mon, 05 Dec 2022 00:10:56 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 23:18:25 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3151
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: y3q18wBmC60OjKQE0Z19JHkxaJG0P+/bCk9+DPBp9jYdaJzKbN0C5mER06Y7fQa/pTeMjznt0LsLE6OPuZT8kg==
x-amz-request-id: TYYBB1G7T0Y39V6Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 23:47:45 GMT
age: 1391
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 00:10:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 00:08:58 GMT
cache-control: public,max-age=3600
age: 118
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1136
Cache-Control: max-age=119691
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 00:10:56 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 09:25:47 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

www.jbovietnam.com/vn/mobile/SQRP/

172.65.210.15

301 Moved Permanently

164 B

URL HTTP/1.1
www.jbovietnam.com/vn/mobile/SQRP/
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
164 B (164 bytes)
Hash
50a925683c752abbd7870831a1264009
70ba3a8cdc034e7fa0275b3e15bafb0291476080
c24e17afd2ccc0cbe18de39f6fabb370c733d944a37cfaf97f69673db7d78851

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/SQRP/ HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Dec 2022 00:10:56 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://www.jbovietnam.com:443/vn/mobile/SQRP/
Server: gocache

push.services.mozilla.com/

52.13.69.101

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.13.69.101:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: io6JAui3bd21Nnzo+MG53g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nOyv1XwovtdsyMZhmqQcuos752Q=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3486
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:10:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3486
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:10:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3486
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:10:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3486
Expires: Mon, 05 Dec 2022 01:09:04 GMT
Date: Mon, 05 Dec 2022 00:10:58 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10031 bytes)
Hash
bb029b41d342a82250aef6d6f713be6e
cd754bb6094d2e456b95dce8daace45a0de8a121
c16e364547c9e7a3c487b614073d59c7c495c5e5387b75136afab0dc68bebca4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10031
x-amzn-requestid: ca6c11c5-8842-4ffb-bb9e-5351c4e60c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjY0CGUVIAMFxog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ad4e6-4282be9f505aa5764e9b1fa2;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 04:47:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vg9n0d9YqjfrKwJHGGcztV4gsGENhNYUuC1HUmWFsxRlDdMSpV4IQw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 15:58:47 GMT
age: 29531
etag: "cd754bb6094d2e456b95dce8daace45a0de8a121"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f879ef8-1a6d-4f5a-9ed7-092a33c3642f.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.7 kB (3707 bytes)
Hash
d7bde76a4dbab17f37747e7da55ad924
56ee7aa6cf94570b1218ef6e767a7036d0b8900f
bd8320fe10dc06061008034cfd1ca9f17e941b2b859b8dd12f23bcac35746aab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f879ef8-1a6d-4f5a-9ed7-092a33c3642f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3707
x-amzn-requestid: e9d4dc01-cb68-471b-8da4-c6f170248387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_xhEm-IAMFRNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d133c-5414a54751e2569f639d0dea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:38:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _nGZrHCvmP-EKAQG20l1ayIftZ4spFGPuG--vyTpMhbNa9L3pIWhCA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:48:29 GMT
age: 8549
etag: "56ee7aa6cf94570b1218ef6e767a7036d0b8900f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6826 bytes)
Hash
a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d5IKLNblcA9AzCoGMpGmIGwUu-kQlHlouju5mm2NwsSOin4MFT40mg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:56:21 GMT
age: 8077
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12348 bytes)
Hash
b8e6f84dff61fedd8ff9baa9bb648883
f8d5cc7b315879b66a11b403463da1330617d2fa
025c66a4a0e7927353e1733d7f8cfb6ec3c9c0228d34267cbff11f09cf112127

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12348
x-amzn-requestid: 72f681ef-9ae7-4fc5-8539-230e1d4277a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKa_HpTIAMFrcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abddf-43ef45165fd982997e5018c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:09:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGsNaADKr1KoJT7rxDSFf8dxM1_IXsaF67Eqe8DIO9PAJy8HtqQKng==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:21:42 GMT
age: 74956
etag: "f8d5cc7b315879b66a11b403463da1330617d2fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b8e1482-c241-410e-81b0-55ea5ac84c98.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7631 bytes)
Hash
50eeb012f0903f0848c8afcd6b26a7ec
ff7740d3c12ce7ab23291272221c0d9503f9c139
f4aeac45941c34d8e0794d20a4bb2658b020fed85c5059f247844f2755bc9d72

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b8e1482-c241-410e-81b0-55ea5ac84c98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: 9fc3a621-dcd9-4332-b085-6cda0cb25ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUYF2toAMFVkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-36f6c7d67940ed18394328c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: azPc-KWHbEA3DMhyphQq3zERUrF14hxrEHwxDZZfcFlu5-IpyKwtgw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:17:41 GMT
age: 75197
etag: "ff7740d3c12ce7ab23291272221c0d9503f9c139"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10183 bytes)
Hash
99d1ff8fa2e095dcf2bda3d1e1af1221
f914f04a0e1fb45a221d31d2105bfc73015b03e6
90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 0cdea572-aab4-4d52-948b-976170a787a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_uLHQZoAMF4hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1327-7948052f39c4f6071b4a0e0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WDqUFMBT59kulx4WLxNh5XTsHzr4_u524juvZJnGMYBH-mUaJclnTg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:03 GMT
age: 8515
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/SQRP/

172.65.210.15

200 OK

2.5 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/SQRP/
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6051), with no line terminators
Size
2.5 kB (2495 bytes)
Hash
13d963e3f827712fb82c726aba545512
335b72532d5d5a66fdd089bdfaa4a863f72d3e88
c73b65a3700b64bedbb9654f0bd198d1c8418ac9fb7d1782fe82b140f61858b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/SQRP/ HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: text/html
content-length: 2495
cache-control: no-cache
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
accept-ranges: bytes
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
c-type: df
rid: e1b668edba6ad8c430c61a39480594f0
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/css/ed70e9e6a4c2bfb9.css

172.65.210.15

200 OK

9.0 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/css/ed70e9e6a4c2bfb9.css
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (30882), with no line terminators
Size
9.0 kB (8975 bytes)
Hash
8d2f4295444b5ce95b67cd53fe8a5bbf
5baf2168a3bd699c9bf6e1fd9940db32215066a8
620deb69085c43fe0926b40d771608153d22243c0c66179ac0e1303db2702cdc

HTTP Headers

GET /vn/mobile/_next/static/css/ed70e9e6a4c2bfb9.css HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: text/css
content-length: 8975
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 094af231949e9dc2a16f2901a05ed6a1
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/css/c04f37fe5a2c421b.css

172.65.210.15

200 OK

8.4 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/css/c04f37fe5a2c421b.css
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (43586), with no line terminators
Size
8.4 kB (8433 bytes)
Hash
166e26ba5a0d8e25e04c1edf6c5470cd
e49079d0e44a82bef2c0f5784fa07366ee7f1cb5
eb531fe605c861013ac00dfff6f83adf0d20c64331138e07d00f9d65ade321fb

HTTP Headers

GET /vn/mobile/_next/static/css/c04f37fe5a2c421b.css HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: text/css
content-length: 8433
cache-control: max-age=86400
last-modified: Sun, 27 Nov 2022 19:47:42 GMT
etag: "03c41c992d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: e09b26ab84dfa7f2e6b68e237979d304
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/css/e6d6290cddf124fa.css

172.65.210.15

200 OK

5.7 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/css/e6d6290cddf124fa.css
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (23744), with no line terminators
Size
5.7 kB (5718 bytes)
Hash
ece3871d29d3f82e5e84418c68fcbe64
f6aba7c0840059986c63934c62428252248a6f7e
06c1b5ed3acf85468ad0590320d325cbb2139bd5d257ecf62f272bc3d4a2c29a

HTTP Headers

GET /vn/mobile/_next/static/css/e6d6290cddf124fa.css HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: text/css
content-length: 5718
cache-control: max-age=86400
last-modified: Sun, 27 Nov 2022 19:47:42 GMT
etag: "03c41c992d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 2b84fe780e88483ea821160787a5a144
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/css/1265d86229b52ead.css

172.65.210.15

200 OK

873 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/css/1265d86229b52ead.css
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3699), with no line terminators
Size
873 B (873 bytes)
Hash
99cac2200bc9925ec13e02fa4d8b44b1
c9c833d4eb3bccd221b9b39faf3a604c186d0d6c
9337550d9888ef3ac9d0a3ca5a9787741c44d5ebc445fd2fbe1fa8cc2256bc68

HTTP Headers

GET /vn/mobile/_next/static/css/1265d86229b52ead.css HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: text/css
content-length: 873
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 4af67ec61180a5759ef5a8692f180334
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/webpack-643ac398b79faeb7.js

172.65.210.15

200 OK

3.3 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/webpack-643ac398b79faeb7.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (5581), with no line terminators
Size
3.3 kB (3322 bytes)
Hash
e5ba0d816d348c5d35ce01e2c7f5749a
8121078cd91f8011184395551997a8f133516fd2
c832889dbbd16d3c0a6d984ea0c9bfe37e46f16c7fc34f1f7f9c77994c4df213

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/webpack-643ac398b79faeb7.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 3322
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 9d209cf39dd58dd4e9e6843fc3f44060
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/_app-ce3dda70c573acdc.js

172.65.210.15

200 OK

22 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/_app-ce3dda70c573acdc.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (53551), with no line terminators
Size
22 kB (22118 bytes)
Hash
03c522e98aeadf6c6e0e959359aa24e2
7f85f69e343a777319b38bbd07f6bf9313851e84
1a62baf44905eb6f23e46028c0997734f3dfff2d3a128bf9f52397c2120a3183

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/pages/_app-ce3dda70c573acdc.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 22118
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 5b34c73e7b7b5ee57775f5b599f58c89
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/75fc9c18-5a55cb0f13134a2c.js

172.65.210.15

200 OK

25 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/75fc9c18-5a55cb0f13134a2c.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (60381), with no line terminators
Size
25 kB (24757 bytes)
Hash
857d42107191cfafe39c2e9d3845c71d
87adedb1c7877a1c1c5d7516debfcd4d177c8487
54165ab861b775580ac12f11af29367bab2301760b45d0825d703850062fa350

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/75fc9c18-5a55cb0f13134a2c.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 24757
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 6e272124c418f8c2b62b4e4f2ac138b5
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/7766-5ee68882709923fc.js

172.65.210.15

200 OK

6.8 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/7766-5ee68882709923fc.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (18801), with no line terminators
Size
6.8 kB (6760 bytes)
Hash
1674a589cf7842dc53650e8cf8868f32
92471569032cdd096daa61e9c0babc76f872e4e5
43350bb8a3ad247ad05905dafe6844ee01c821748bdc10220a28b02cdb37b157

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/7766-5ee68882709923fc.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 6760
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 7870a63b6e1c3e1c1afa30181ac23019
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/951-950a3a3a3ca26723.js

172.65.210.15

200 OK

3.9 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/951-950a3a3a3ca26723.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (10114), with no line terminators
Size
3.9 kB (3876 bytes)
Hash
9c5414233a5a9bd6c6d5df5bf4165ab2
5963d283a8e8e62d5b284aa538fa3f946caefb08
0fee9c8fae550af2fce2b05b7170b23f76fc4c47261a3f8b79bff20626897325

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/951-950a3a3a3ca26723.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 3876
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: e0e5e670a0a0b228f77adf4278702399
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/sqrp-0bc6b633ad2b054e.js

172.65.210.15

200 OK

4.4 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/pages/sqrp-0bc6b633ad2b054e.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9924), with no line terminators
Size
4.4 kB (4440 bytes)
Hash
b4d106341933e850b2788e14aa31c0b9
073ced68e6a6f0c2c197baffbd1fb08ee54e1564
4492f29c7bd3404dd6913f5b36d4125dbcb16299b8bcf361757664b079af6daf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/pages/sqrp-0bc6b633ad2b054e.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 4440
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 57351225ecbb0384e917f4875211f3bd
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_buildManifest.js

172.65.210.15

200 OK

4.1 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_buildManifest.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9169), with no line terminators
Size
4.1 kB (4101 bytes)
Hash
489049e4e1a49522e6bb41a18abc7df7
63ddb692eea8b89fdf8c1cff8b6503b512cef2cd
2ef988c96eaf9ad5604917f95564a452a7a81226439fa9225aef660052a99566

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_buildManifest.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 4101
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 0b35a058688ef415c6e9977036659505
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_ssgManifest.js

172.65.210.15

200 OK

60 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_ssgManifest.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
60 B (60 bytes)
Hash
598f5e6fd8d7c72af9358f2952aa2702
3bd5d2d22425d7c7ceec7de4a57c32cae1ae24af
fb267ab55225263c3dcec76539d2bdc732c62629075eff7f10b569c5b76f8641

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_ssgManifest.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 60
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: d11935c2d38f5f558122d75fdaca46c5
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_middlewareManifest.js

172.65.210.15

200 OK

61 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_middlewareManifest.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
61 B (61 bytes)
Hash
21811e289b81ca085ead53c9e54144f8
b229565e05cd6e34e10c9ce42d6c48962f980974
60b0b6597d4a501c24429a41bdf39702932a671a9115c86384db817c9213b180

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/MHElMnirMJxfNsOdeUUBA/_middlewareManifest.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
content-length: 61
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 6d5b0cedbde377f8b943bc5e83b1c9b3
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/registered/mb1.png

172.65.210.15

200 OK

1.7 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/registered/mb1.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1654 bytes)
Hash
cca57dfd9ad2093f805e7b17cd04da64
06c32877bc84eee43a3fdded4b0a48119f3048c1
feac9c0a37a25423f560be3724ac1bbc6580e85e3e85037c57d93340bcc42963

HTTP Headers

GET /vn/mobile/assets/images/registered/mb1.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: image/png
content-length: 1654
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 5f19b167f457813ad4aaa246530f3133
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/registered/mb2.png

172.65.210.15

200 OK

1.9 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/registered/mb2.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 57 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1910 bytes)
Hash
4c2253578186a7cbb2269e93fe8a2ca1
9cce770e7469e07a4633a787fa63d945990b85d2
8009df477a1ae85100886c5602fda17eeec113d1d81310615cbee5a29bf749d1

HTTP Headers

GET /vn/mobile/assets/images/registered/mb2.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: image/png
content-length: 1910
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 82fa265d48c5dcd66009fdf378ad94b4
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/registered/mb3.png

172.65.210.15

200 OK

1.5 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/registered/mb3.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 42 x 67, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1516 bytes)
Hash
69865b670f31f480f80479419c2e0a97
0d6e1b50fd1fd23234f6d9f103fbc042a0778b6a
3e71e3f9f2ae35748423ea48c208ce4d04c886ce0cecbde399216da4da784011

HTTP Headers

GET /vn/mobile/assets/images/registered/mb3.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: image/png
content-length: 1516
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 5fb563e3ecb8afd3619921d9dce922da
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/registered/u3.png

172.65.210.15

200 OK

85 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/registered/u3.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 730 x 587, 8-bit colormap, non-interlaced\012- data
Size
85 kB (85441 bytes)
Hash
9a01202d7c90bba91ebd24cd747805a0
e28c6c549baa0a87661deaf728a8f17712399d77
22d273fc11f2278127cc7bf0375848258b5ef60ea6228917e09f370a40a1e20e

HTTP Headers

GET /vn/mobile/assets/images/registered/u3.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: image/png
content-length: 85441
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 53d3e953717fcf2af28b1e73df6ea3e9
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/css/aff95234bb3e7786.css

172.65.210.15

200 OK

90 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/css/aff95234bb3e7786.css
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
90 kB (89559 bytes)
Hash
f8e374294a1546a1bfe15a3a266633c2
a313b9e6742e15d78b1e733f5e29c5f5bf890505
56598f9982b7afaac585ff5e820974ca167ac15d335bcc0c244a929adf4c3bec

HTTP Headers

GET /vn/mobile/_next/static/css/aff95234bb3e7786.css HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: text/css
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 74d3abc81e8b3506819449aefbe5b960
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/qrpPage/sqrpBG_new.png

172.65.210.15

200 OK

39 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/qrpPage/sqrpBG_new.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 540x960, components 3\012- data
Size
39 kB (39335 bytes)
Hash
3f3dd5529025cb7edf9a2a6b449aa38b
49d2d5e3970e410ec5be1e006b3800a01c67cc82
401c27bd0114071a8cde3b2930bf7106ba5b69179abb88410fb6e92b64feaa94

HTTP Headers

GET /vn/mobile/assets/images/qrpPage/sqrpBG_new.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/_next/static/css/aff95234bb3e7786.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:59 GMT
content-type: image/png
content-length: 39335
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:59 GMT
c-type: st
rid: 31f24de0668bfb2ee228a4f6b24e6e64
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/qrpPage/button.png

172.65.210.15

200 OK

2.5 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/qrpPage/button.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 134 x 38, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2499 bytes)
Hash
9c53d354cfb5fd8639ad40293752dd28
4bb381e166a70dced7657f77e97a5f62c8957dd4
96750423589f96befe38aaa40bfc57990e9ef8681e644d4ae740836e46470526

HTTP Headers

GET /vn/mobile/assets/images/qrpPage/button.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/_next/static/css/aff95234bb3e7786.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:59 GMT
content-type: image/png
content-length: 2499
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:59 GMT
c-type: st
rid: 0139761be5183bf78fc838ea422ed35c
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/registered/dangki.png

172.65.210.15

200 OK

21 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/registered/dangki.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 573 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (21416 bytes)
Hash
69fb888e4ca321d989c345776cc94106
cd7d4cf02a3b7da75accb09b3f83672c129489b4
424245d6579d7f3e11233782b8dea25b76ac457d67d50ae06f013a99e62b5091

HTTP Headers

GET /vn/mobile/assets/images/registered/dangki.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/_next/static/css/aff95234bb3e7786.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:59 GMT
content-type: image/png
content-length: 21416
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:59 GMT
c-type: st
rid: 6095e380aa5aa77e2df665868f0e11ab
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/qrpPage/QRP-button-mobile.png

172.65.210.15

200 OK

7.2 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/qrpPage/QRP-button-mobile.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 687 x 112, 8-bit/color RGBA, non-interlaced\012- data
Size
7.2 kB (7216 bytes)
Hash
f2601544fb337860587d62fe91dd147b
a75e45e94f6e37b4023594d1d41f5572563c1389
3a24b6fbe2d7cb3df581322eb8e321ee4fcadead0ff9aee5c6bf12422a449a43

HTTP Headers

GET /vn/mobile/assets/images/qrpPage/QRP-button-mobile.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/_next/static/css/aff95234bb3e7786.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:59 GMT
content-type: image/png
content-length: 7216
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:59 GMT
c-type: st
rid: c6ea7b986fe726fb722250ffbf8e99e2
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/registered/taiungdung.png

172.65.210.15

200 OK

22 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/registered/taiungdung.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 573 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22359 bytes)
Hash
4661e2378d7074cb17dde634fb9e0b77
2812e57cb22cee2c0ac4ca8f3aec09f966806831
f4bf1ad8000d025f8cfbfdb9b3f3d53b2e8c4f9ed855291fda09c3f6d0ca763d

HTTP Headers

GET /vn/mobile/assets/images/registered/taiungdung.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/_next/static/css/aff95234bb3e7786.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:59 GMT
content-type: image/png
content-length: 22359
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:10:59 GMT
c-type: st
rid: c5081644a153db6d1b2b4927389dc37d
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/javascript/gtag.piwik.js

172.65.210.15

200 OK

2.5 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/javascript/gtag.piwik.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (472)
Size
2.5 kB (2471 bytes)
Hash
f0fb5f524eccdd122c59feb0a08c4890
c86aae320c1fcb63e8070f0990e84616dd16e06d
d1395df7e4b270be4613feb65bff96364197b162e79f86b8e1206d7579d71637

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/javascript/gtag.piwik.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:11:00 GMT
content-type: application/javascript
content-length: 2471
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:11:00 GMT
c-type: st
rid: e293d581a04fcbb81ae91cb42b39f17e
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/app_icon_1.png

172.65.210.15

200 OK

37 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/app_icon_1.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Size
37 kB (37282 bytes)
Hash
946f78558a556cb0acc7447d4ba075ab
54a35b803f6cc65b43070bc233cf16e9f85dde8c
3e3483af8618653ec92ba00d6b13132bcb3a3a41394f0e7609bddfed5b9233a8

HTTP Headers

GET /vn/mobile/assets/images/app_icon_1.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:11:00 GMT
content-type: image/png
content-length: 37282
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:11:00 GMT
c-type: st
rid: fbbc68e8622eb296b9b8a09357ee1c5f
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

gateway.jbovietnam.com/api/Setting/Phone/Prefix?api-version=2.0&brand=jbo&Platform=Mobile

172.65.210.15

204 No Content

0 B

URL HTTP/2
gateway.jbovietnam.com/api/Setting/Phone/Prefix?api-version=2.0&brand=jbo&Platform=Mobile
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/Setting/Phone/Prefix?api-version=2.0&brand=jbo&Platform=Mobile HTTP/1.1
Host: gateway.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,culture
Referer: https://www.jbovietnam.com/
Origin: https://www.jbovietnam.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 204 No Content
date: Mon, 05 Dec 2022 00:11:01 GMT
access-control-allow-origin: https://www.jbovietnam.com
access-control-allow-credentials: true
access-control-allow-headers: content-type,culture
access-control-allow-methods: GET
x-powered-by: ASP.NET
version: new
x-kong-upstream-latency: 3
x-kong-proxy-latency: 0
via: kong/0.13.1
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: d74ce5a810b3ea308face20ae0bfc046
X-Firefox-Spdy: h2

gateway.jbovietnam.com/api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile

172.65.210.15

204 No Content

0 B

URL HTTP/2
gateway.jbovietnam.com/api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile HTTP/1.1
Host: gateway.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,culture
Referer: https://www.jbovietnam.com/
Origin: https://www.jbovietnam.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 204 No Content
date: Mon, 05 Dec 2022 00:11:01 GMT
access-control-allow-origin: https://www.jbovietnam.com
access-control-allow-credentials: true
access-control-allow-headers: content-type,culture
access-control-allow-methods: GET
x-powered-by: ASP.NET
version: new
x-kong-upstream-latency: 3
x-kong-proxy-latency: 0
via: kong/0.13.1
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 4e5feb98a665b190af45cd7569819a91
X-Firefox-Spdy: h2

gateway.jbovietnam.com/api/Setting/Phone/Prefix?api-version=2.0&brand=jbo&Platform=Mobile

172.65.210.15

403 Forbidden

8.2 kB

URL HTTP/2
gateway.jbovietnam.com/api/Setting/Phone/Prefix?api-version=2.0&brand=jbo&Platform=Mobile
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Size
8.2 kB (8217 bytes)
Hash
b8e5a321919052dd0d9cdd62d3b3828a
2e7c603fb655e7e8af0347995220f574907510c8
4dfda1d277f2433be715a91fb864dbed25b673d864def57d63950ddbc28f5bbc

HTTP Headers

GET /api/Setting/Phone/Prefix?api-version=2.0&brand=jbo&Platform=Mobile HTTP/1.1
Host: gateway.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jbovietnam.com/
Content-Type: application/json; charset=utf-8
Culture: vi-vn
Origin: https://www.jbovietnam.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 05 Dec 2022 00:11:02 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: https://www.jbovietnam.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
version: new
x-kong-upstream-latency: 879
x-kong-proxy-latency: 0
via: kong/0.13.1
server: gocache
content-encoding: br
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/home/loader-icon.png

172.65.210.15

200 OK

2.1 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/home/loader-icon.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2075 bytes)
Hash
3106612753aa9334e2b8cf24b4784bc5
8849dfe5ffafcdef7df05ce61cdb54f811383af9
70ab1f2fd3011bb8028eee6b729762eb189e607a625a8fcf8b3a62fdb8fd5912

HTTP Headers

GET /vn/mobile/assets/images/home/loader-icon.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/_next/static/css/ed70e9e6a4c2bfb9.css
Cookie: stg_returning_visitor=Mon%2C%2005%20Dec%202022%2000:10:59%20GMT; stg_traffic_source_priority=1; stg_externalReferrer=; stg_last_interaction=Mon%2C%2005%20Dec%202022%2000:10:59%20GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:11:02 GMT
content-type: image/png
content-length: 2075
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:11:02 GMT
c-type: st
rid: af173258850372a38eabf124edc0e126
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

analytics.gavelz.com/containers/edece658-e298-4c9b-990e-67c1a1438724.js?dataLayer=piwikDataLayer

172.65.244.226

200 OK

84 kB

URL HTTP/2
analytics.gavelz.com/containers/edece658-e298-4c9b-990e-67c1a1438724.js?dataLayer=piwikDataLayer
IP
172.65.244.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
84 kB (83512 bytes)
Hash
0bf8b68df1b13c2524d558d832a1a798
d4bed05c34355b93218ed9fe8852f741266f59c1
8a319918ff9ec95af796ae7073f63c9d2d96c97f644ba070b6f1ad7b7808a53c

HTTP Headers

GET /containers/edece658-e298-4c9b-990e-67c1a1438724.js?dataLayer=piwikDataLayer HTTP/1.1
Host: analytics.gavelz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:11:02 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=86400
x-robots-tag: none
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:11:02 GMT
c-type: st
rid: 2e42b6505d7c5d4a995ff20b0a673f9e
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/images/restrict/guard-1.png

172.65.210.15

200 OK

120 kB

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/images/restrict/guard-1.png
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 750 x 480, 8-bit colormap, non-interlaced\012- data
Size
120 kB (119954 bytes)
Hash
089847ce1986ecdd01f8db83af3ad3bf
4f35fa5bc70cf0a0179ac47b2fb65b4dbc3d7a4c
02e368d623e55cdb96b12858cafb5ff725412090fc448abab38faff5746aa07d

HTTP Headers

GET /vn/mobile/assets/images/restrict/guard-1.png HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/restrictaccess/
Cookie: stg_returning_visitor=Mon%2C%2005%20Dec%202022%2000:10:59%20GMT; stg_traffic_source_priority=1; stg_externalReferrer=; stg_last_interaction=Mon%2C%2005%20Dec%202022%2000:10:59%20GMT; _pk_id.edece658-e298-4c9b-990e-67c1a1438724.f5d3=db121ac7b8b7f555.1670199060.1.1670199060.1670199060.; _pk_ses.edece658-e298-4c9b-990e-67c1a1438724.f5d3=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:11:03 GMT
content-type: image/png
content-length: 119954
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:11:03 GMT
c-type: st
rid: a73b7d99c5fddee897792f5491fb4292
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/assets/favicon-jbo.ico

172.65.210.15

200 OK

0 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/assets/favicon-jbo.ico
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/assets/favicon-jbo.ico HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:11:00 GMT
content-type: image/x-icon
vary: Accept-Encoding
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: W/"0a3d5fd1c5d91:0"
x-frame-options: sameorigin
server: gocache
expires: Tue, 06 Dec 2022 00:11:00 GMT
c-type: st
rid: 0f4936b4245324bb67e1012315a47d89
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
content-encoding: br
X-Firefox-Spdy: h2

gateway.jbovietnam.com/api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile

172.65.210.15

403 Forbidden

0 B

URL HTTP/2
gateway.jbovietnam.com/api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile HTTP/1.1
Host: gateway.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jbovietnam.com/
Content-Type: application/json; charset=utf-8
Culture: vi-vn
Origin: https://www.jbovietnam.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 05 Dec 2022 00:11:02 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: https://www.jbovietnam.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
version: new
x-kong-upstream-latency: 822
x-kong-proxy-latency: 0
via: kong/0.13.1
server: gocache
content-encoding: br
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/framework-79bce4a3a540b080.js

172.65.210.15

200 OK

0 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/framework-79bce4a3a540b080.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/framework-79bce4a3a540b080.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
cache-control: max-age=86400
last-modified: Sun, 27 Nov 2022 19:47:42 GMT
etag: "03c41c992d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 90bb25bb5d551670414a629c983c047c
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/3408-41d5a1c6de631a7b.js

172.65.210.15

200 OK

0 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/3408-41d5a1c6de631a7b.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/3408-41d5a1c6de631a7b.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: a2e137c77e7e3e9397f82ff436336b31
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

gateway.jbovietnam.com/api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile

172.65.210.15

403 Forbidden

0 B

URL HTTP/2
gateway.jbovietnam.com/api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/App/Domain?hostname=https://www.jbovietnam.com&api-version=2.0&brand=jbo&Platform=Mobile HTTP/1.1
Host: gateway.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jbovietnam.com/
Content-Type: application/json; charset=utf-8
Culture: vi-vn
Origin: https://www.jbovietnam.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 05 Dec 2022 00:11:03 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: https://www.jbovietnam.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
version: new
x-kong-upstream-latency: 11
x-kong-proxy-latency: 0
via: kong/0.13.1
server: gocache
content-encoding: br
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/main-083af86fb5b8c716.js

172.65.210.15

200 OK

0 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/main-083af86fb5b8c716.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/main-083af86fb5b8c716.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: e155a7a21d0217e73bff2f09eafb1df0
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

www.jbovietnam.com/vn/mobile/_next/static/chunks/9206-aa50dee40dfff451.js

172.65.210.15

200 OK

0 B

URL HTTP/2
www.jbovietnam.com/vn/mobile/_next/static/chunks/9206-aa50dee40dfff451.js
IP
172.65.210.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vn/mobile/_next/static/chunks/9206-aa50dee40dfff451.js HTTP/1.1
Host: www.jbovietnam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jbovietnam.com/vn/mobile/SQRP/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 00:10:58 GMT
content-type: application/javascript
cache-control: max-age=86400
last-modified: Thu, 01 Dec 2022 00:36:46 GMT
etag: "0a3d5fd1c5d91:0"
x-frame-options: sameorigin
content-encoding: gzip
server: gocache
expires: Tue, 06 Dec 2022 00:10:58 GMT
c-type: st
rid: 8dec56b76bd7d860d644302a0473bb39
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations