Report - trace-fedx.1aut.com/

Report Overview

Submitted URL
trace-fedx.1aut.com/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-05 05:50:38
Access
public
Website Title
Track & Ship Online or Find Nearby Locations | FedEx
Final URL
trace-fedx.1aut.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
78

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
trace-fedx.1aut.com	unknown	unknown	No data	No data	20 kB	1.3 MB	188.114.97.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	3.2 kB	132 kB	216.58.207.227
www.fedex.com	8412	1991-02-26	2012-05-22	2024-04-22	480 B	1.4 kB	23.218.92.216
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	661 B	47 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation
2024-05-04	medium	trace-fedx.1aut.com/	FedEx Corporation

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	trace-fedx.1aut.com/	1.1 kB	2024-05-05	2024-05-05
Pretty URL trace-fedx.1aut.com/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 07:50:45 Last Seen2024-05-05 07:50:45 Times Seen1 Hash 7ec29e21d9d051d85761ea18ff1c30ed bbdb2d5d31308526bbcd8ec74e32f310a8f12d7c 06d9d10714fb58dc184ac8683d7d7244dc4bc25aa150676507fbdb9df3a62d87 Loading...

	unknown	247 B	2024-05-05	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 07:50:45 Last Seen2024-05-05 07:50:45 Times Seen1 Hash daf42b6dd59ed097f2de72ff8777fe89 34c1ffe3685cc4845c19cf305dbb78d2a336a7e4 2d8a0986416ac8b934d04e458ef32948293f701eb8c674149cc04e42638cf7e6 Loading...

	trace-fedx.1aut.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-05	2024-05-05
Pretty URL trace-fedx.1aut.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 07:50:45 Last Seen2024-05-05 08:29:51 Times Seen4 Hash 7296c0037a5561671e967fc2a091e9a5 3d6af76be5384ead6b17c1c99550905662252217 9ecda788cce17624d8bf1586a2668c0f739d663ad3db73a05b7f4b51a01f315f Loading...

HTTP Transactions (47)

URL IP Response Size

trace-fedx.1aut.com/Images/dropDown.png

188.114.97.1

200 OK

3.0 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/dropDown.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
3.0 kB (2960 bytes)
Hash
3517aa906af8f18f5c3c8d931389d495
22975ab7ceb6f6908459bd5f0dff4be4e5233bd1
51e081e76753acd8484ea9325ea6d77bf0740f51ed748517ab02c2b17a9537a4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/dropDown.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 2960
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QrCxNWrOixONCH2G78B7Hy2IP8bcxSfoe%2FRInSEIhfMDJ9h2lgBzchX4XQhyIZ5nkjHmeqJefMv73rBWp3jPZvAuFDuEcNU7%2B6tZeORM1WLEYg%2BdcncgYCQS0x3Xo70RI9s0TjWk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43ea456ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/profileIcon.png

188.114.97.1

200 OK

3.0 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/profileIcon.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
3.0 kB (2991 bytes)
Hash
31fd6d1a424104f16ba4cdc3c96ffa47
138afe303948a78e0d354d34914e8052fca77a9e
5d37981c9cbaa908976927de8cf5f813333f392d279affecfad96a87d9d353a8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/profileIcon.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 2991
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zs0o%2FInfmhbihyeh6UjUKxU0L%2BXA5CGHX6BBrFLnaLojWeakBRevg0S7XPAKURuwO3vBWGV7Mxb1uFaSK5%2FflqjhBtXKcFo48xcxe2lKVjXEtOfZE3ZUTOwj5DhOrBWV7KIQ5ajI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43ea556ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/shipmentDetailsIcon1.png

188.114.97.1

200 OK

4.0 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/shipmentDetailsIcon1.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Size
4.0 kB (3990 bytes)
Hash
98533fca8d7822e0d40f85ff900df909
c454f47e8fc88fa05379ab480a72385622f57d4e
f4198a6c9208fe18fe32ff0bd9ee7064fcf5627eaecf5d5ffdaec11ca0512cde

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/shipmentDetailsIcon1.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 3990
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FhuqbdTshbBQuL%2B%2FvMpWiEwgQMLmkQPu1ZnZKmir9G1axz6ILviOxmZDjAdIMc7r7z%2Bp9VdwA45Nuu%2FM548cH%2FJvgg8Vj21NKbt28cU8z9qFcfIL%2BavGI97RGleGwuPz%2FBehxITa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43eb356ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/shipmentDetailsIcon4.png

188.114.97.1

200 OK

2.0 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/shipmentDetailsIcon4.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced
Size
2.0 kB (1983 bytes)
Hash
cc629787271992ee2e5e373aeb1705f4
3003f10dd6039ef6454ef33754c95331108fad75
b4323d5475ccd04d8db82c3fc0616b4b89e41138c8c808397439d0acc1dc9c52

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/shipmentDetailsIcon4.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 1983
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TKAERCnBWtOMmh52WfGcI7IQ6%2BERn%2Ba%2F27Tbq1B3sw99EIAXOdlbxkjgi61hahQppF%2Fu712EnprpvCd0Jh1ZO1lbeV8t61mfw3qzWokJCoEhsYVDSp2WmhSKyiyzONdqdzV1IY9V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a44eba56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/shipmentDetailsIcon3.png

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/shipmentDetailsIcon3.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 64 x 65, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1052 bytes)
Hash
e27b96c3636627830a50673b7ffaceb8
93d74a8e6c8cf3ead04430bd8f7641bc5aefd865
dd263999aef1a759cfaaeb319af3924d1fe366f3f24f07eec4e438e4492ec51c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/shipmentDetailsIcon3.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 1052
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0%2FM1oi8%2B%2FDzLlEIh9HZgbe5%2B6rq47tpY%2FH%2BNeRhrC%2FJoJ3ceTpGL5Opevj74Z2V6IxCyPRSd7lZDJY3yVuvDyOUhvjhC34798Njj8KFbVSMGe2nEyWSbZcyVrsxrsfuHt3jXKne1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a44eb956ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/shipmentDetailsIcon2.png

188.114.97.1

200 OK

2.7 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/shipmentDetailsIcon2.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced
Size
2.7 kB (2663 bytes)
Hash
033f4207051289fe2e2411580d666b8c
9180e04e5b431c686c339e16fb99e8a60ac01d2d
cd339d543f8022a6604228c8e3437e4ccc4efe6d9a78681233edba340b95969e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/shipmentDetailsIcon2.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 2663
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5Dc6ypXNDl1JMwWHmW9u9WMGxt17eXQBGQ3ehXtGOZToDg2%2FNLSCO%2FwOKugpw3CDVwcbIGLk9kmx2q8%2F2N8lHuyQ1TsMD0RwV0W3DFIMxIYuhT%2FHiia7MePsMfVu2m%2BXYNSC4kYc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a44eb756ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/shipmentDetailsIcon5.png

188.114.97.1

200 OK

1.7 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/shipmentDetailsIcon5.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 128 x 129, 8-bit/color RGBA, non-interlaced
Size
1.7 kB (1723 bytes)
Hash
19b227f196dbd70d0864e925ec2241f8
2f057c9ec4063a0cad6763fe3e18608a7df05619
5dfb6f22fc5a025718d9adfd12482b7afbffa794e7994fe43d7b1a0eec55a270

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/shipmentDetailsIcon5.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 1723
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=83odwIDVeTwcRx53CPw2r6ZI15j8b4K%2BFqPZJEyu557B5YBhZq1IYigR0SZ7fnPHwgWyegv595MxWje27rweR9ka5TTbtPo%2BLqo%2BOR84YYGMtv9nIrRyW%2Bt0%2BcsbHDD9uNh%2FhVN%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a44ebb56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/searchIcon.png

188.114.97.1

200 OK

1.6 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/searchIcon.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1559 bytes)
Hash
e9facb2a2192c2a7ff34ad0abfa1c859
1329fe9b1440485388b35617f35c163ad49f6abf
cf56fb185a231fe9ff239e0e3654ccf5c5a03f35a493eb57ee5aec7d9a8b4d84

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/searchIcon.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 1559
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wGhUgupVWhs5iOpn6UxeVjVX01YM37yq3cSnBWhCie3DRuBOj2AM8AipBrx66MvnQDAxLl9Xj%2BcFyTEO7tEeTx07YdMfcUVd2hxFCo2k0yz2FyOiSVxlLCwNZ%2FeRoCW%2BXjsqh17F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43ea856ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/img4.png

188.114.97.1

200 OK

5.3 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/img4.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Size
5.3 kB (5335 bytes)
Hash
bfc2db8c3bf2fe4edd3090ad2ad3a98a
c53c496da28928fbd84a2e20545187a77eb56f9e
9e4e89ba7ca6c295ce200637298e8dcf5927a9e401d649151ba9424f3a2a3713

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/img4.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 5335
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RfSE74N1uVi7EkCBWhUOyFbPBiskxDmpBFaLD5bTSYUnbDh8T38ZzsEwJylmwo5f7X4ptNTc5zBdOZCY33Uixd1YUeOVVMxQgDlOCR3ap24Hv5YP7bxsg9g9D7tEiKmc0V0AXhBr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ec956ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/icon2.png

188.114.97.1

200 OK

12 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/icon2.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
12 kB (12517 bytes)
Hash
a3d44ee56bb08a41d934507d50a913a7
cf11b92ab33f463d3d1aae9f79ad5018b982c5f7
7251b9ab4bc39864d6d226c9f305f1722f1b3a3c3c00901ced3e549c172034ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/icon2.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 12517
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kFRMsoDZprZy%2F94sDwUVmj373NoDQtVdfuRCih4vx1OcytyIErVK9oG4YFmICJZm4xE8ZvDkDoac%2FpZQLZbimCzKoI72PJ9s7seyh1EQ3FrEH9VwZDZicZ8J5vKthkmFb8s73JPz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43eb156ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/img3.png

188.114.97.1

200 OK

3.5 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/img3.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
Size
3.5 kB (3544 bytes)
Hash
109956f13c50e4855a4890436d81f440
a3babe4db3812ae8162999a740ea93f3e61971d3
651b8fd09e696108c28dc837806226cf1a869f134dc14f936e3be644eac2678c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/img3.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 3544
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rdOaDA1M89ZKP%2FoLrnqS%2Fx4CLB2GkdFW2t1ghsK2Pm3wA7p9Nsv2wwx5hdLnJEsSlU17qKq4BRDwgZWB5idwtYOLOIAsTE81NZSYn9an2TXEp6KOZOumRIDDmQrUPVYBQT%2Fc6eeD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ec656ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/logo.png

188.114.97.1

200 OK

18 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/logo.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced
Size
18 kB (17964 bytes)
Hash
f9f3a4bf508eec8270bf7c8fe4397384
8b47c45b41e159b9dc2d6fe563b1197bd2a3ec16
99f7cd905d160e4bf4408195b22a893a45661a8855a0841e207d5bafe7411d90

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/logo.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 17964
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YILq8vZcoEFqgLT8G7FVj%2Flx%2FmXl5kLqtLdENEXndBBDmoptlL%2Fp8dSJ2YYcU7E%2FP0aoY9fqWo6W2hi6JCcgSflmU3Uq3KpgsC4H49pjOQvEKHwm5nx9eL1gLHYxVXHRbTKaIdD7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a42ea256ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/icon1.png

188.114.97.1

200 OK

22 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/icon1.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
22 kB (22000 bytes)
Hash
5682f849f70b53f373473aee643c9e79
be4c27a20dc515cd2cb3858b7a564934e9a3bdb5
ad0b8376208bf6faa4842891a13ae166df61d7b564accb3d4ee6dd341a05fbd3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/icon1.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 22000
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xXafNUwXp7WTtlCy7dMR2xvlPpRY9Kgyshlx6LW85dk6IMspapHZIrlb%2BJF9VnaRMgthCRB%2BEpau2AirAlzmNmnu%2B2ZRLAGvgMYZPpSH%2Br4FWFVpxzUNNGII3utCmihNP%2F1StVye"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43eae56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/icon3.png

188.114.97.1

200 OK

16 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/icon3.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
16 kB (16080 bytes)
Hash
11abdde0c31967fe44b9f8f241190db9
babf05e00d6a8b5bf02c1a07d8f7a872e4df9e66
7d51fbc3d2b322a6da22acf09fb0a40babbd98dff12cfb3f88f65147b9525471

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/icon3.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 16080
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JDGIye8P2pYBxM3FwHURALoRUa5%2B13Jj3oTD6L6dX5ynOIrA3NkaYY2gTzk%2FZLbdQy3vOiOb81dWDq8bOt8dcf00coqQWVxWFkFsbGM4Pc4F03sC%2BVMjvKEAqJQg5RzA0L7sxmId"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43eb256ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/history.png

188.114.97.1

200 OK

24 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/history.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 727 x 245, 8-bit/color RGBA, non-interlaced
Size
24 kB (24070 bytes)
Hash
ea7e4a337a5272b6b27ac1809486a9ee
f8dc7c8f8c6e81f95068ce48695af1ec37bdf6d3
3cfbc0455fa7de60a7074926503c1f625456ff2f39b26eb35afa81527f5a685e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/history.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 24070
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=atpRaPx6%2FF4gOoriZQc37zm9M%2BpxOyyhBo%2Fd11H8iOmt2c0%2F8I%2BPfgEMbMsbK0E0KauISHec2Jp%2FOwbt1jYsgVO0XE0DXEls62aqJgrFiDVtvnL3O%2Fr6FSaEtTDjRRjGCmFFMpVX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a44ebe56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/services.jpg

188.114.97.1

200 OK

26 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/services.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 468x353, components 3
Size
26 kB (25589 bytes)
Hash
2aecb6d267acfb3a982f39901ed1798a
a8f22e9f8b43f0e3c3af93c37b017bb9b91ec8ef
92df33f77ea1e9b6fea01f1be2fefc9f74a378aaa85432de55641ed1a2b60296

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/services.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 25589
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1aqXtKN3OZS%2Fwj6Ibo%2FO%2BaHU6EdqDBnUjIlAGsyBpRHMGBTxsr0ybVZvfUQdJkbMrbOpcWDlJfahQYwCTPeSJgNInZqkjTgHwk6ll57arbLpxDclZXBsm1dfTVbAl7ahNYvfR1JW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ec156ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/twitter.png

188.114.97.1

200 OK

17 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/twitter.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
17 kB (17042 bytes)
Hash
474ab059c2722a579662f5dae7266593
54cf6151f8406ac1fe3970085e297f0d8ef7290a
1fe924a0e1d8e3bc3b076e63a2c5e85ad74347b8092fdd62daf468926a90eee7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/twitter.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 17042
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RMouVwc7p09fCJGMnckDJ2DcM%2BCoo0KUSfeGX2qAkrwIUXBtCKkaLyV0%2B97oZVE9LpSlu209BrT0T%2BgxQk%2ForLTkbzUEU7QD99bb8tbuouDNVaB3O3USIZFlsheQhcWGYS86v3oW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ed156ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/email.png

188.114.97.1

200 OK

18 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/email.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
18 kB (17748 bytes)
Hash
5952ded41d9803b8bccb6db343161e43
815be885858f8a8201d56604b11410f345da24ea
9c5d9195b6ad595cad4b90c53f3d69fd38fff8e68dbe314695d01c723dce8537

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/email.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 17748
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q6XCUvOkYcxTxDoAAZbC9dJu%2FwnkwCXEueNP27EAbb4G%2BuuZtnWlUK8lEq02HDGaZImJqFPZQtdyUDCuJdSIyRJ4BhsX3WgdxxJ0p73ayAEIiJj%2FYovT9%2BGHekMMfaOd3mF4hifW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ecf56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/instagram.png

188.114.97.1

200 OK

24 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/instagram.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
24 kB (24296 bytes)
Hash
35f4c4f29cd8a208d9431a81b6e47a4e
2b09c86aa30d6018e012f5a0e26f38ded3914a0f
3ccac7fc46fcb68aa779b72c28b8a325dcb94e1fa09c39c52c47b1061e996000

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/instagram.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 24296
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Moea7tPgYv1umS1vG802MWoaIh08yjBpNHSNGJsYqzCt8UIFw104RTkOZyMUKeEBi9gb%2FQnFVqOLI0lci8WMWOoqBfDxA8IV7r0bqx9vS9WYuU0xCILagl7PgUYrV2QO42y4Y2vA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a46ed356ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/pinterest.png

188.114.97.1

200 OK

22 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/pinterest.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
22 kB (22432 bytes)
Hash
08dc3f561e212f0684027c4038652d11
66fe5cb306eb9c881dd4058e3c2526bc533bb9aa
d0764f2d48e0ffa07be21c75253fdd3f350e431391cba76c8689a8f1df2473d0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/pinterest.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 22432
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=It2%2BQelYvWL4HCLpRan3fXEhR7abhxW%2B8OGoDAa77XV6YBYXbN%2FuEPE5CGn68MX%2FUaM0NjJjMuDVCcMlTiZHYqstHEGZYCEGNEJq7F9UVWII8iUxoASqUf31M5teO61B57rKO1kF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a46eda56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/linkedin.png

188.114.97.1

200 OK

18 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/linkedin.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
18 kB (18511 bytes)
Hash
bc42c022a3af59cf55d0a6e911c1258f
01cdd4f9a7bfa3a523fccb7e27ff939cb56b095a
95e32344b7388795554f0f1dff370b253849dfa64ab281c2cb747280db105ece

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/linkedin.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 18511
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uACMD8T6H%2FYu1f%2FCPJ7mqUvrC1KNtmBBPRd2zr3dsE%2BkFfkgRA9aARx5bVFnKcTgTC0N0pVaIQxKu3BQvlWg0IwFy6BJtRo3cxM%2FofHBsfLVjSj4iSqEKtorXva6jA0OlKLzkr20"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a46ed556ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/facebook.png

188.114.97.1

200 OK

17 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/facebook.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
17 kB (17364 bytes)
Hash
53c0394b81d7357f2a3ed66e8edc86f2
e8e666b3e95c794c9c322db99269af691293493e
aa42d3fd59f8becbadb09ab290aa51718b922409257a97927b100fc2d8d76e6c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/facebook.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 17364
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m0Ov1f%2B5M3h8hby2M4AHXLovERGFGZVZjGLxrQAxeNjlMDheF8qhpziUviP64VW0UB3YpJnXF8%2F0NrQV30kJsqVbwI2RwpbzmJvWnFI4cEDYYZ0Vw7%2BTtFnLZ5cwLaVmM7UVp34V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ed056ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/youtube.png

188.114.97.1

200 OK

17 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/youtube.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
17 kB (17207 bytes)
Hash
856f764992ef462fa7759930798a7ec0
6269b235af86534e30176dea57fdde205ecb84ed
abd30ea41b45285b9cc6a24ff9ce530ac04a257976492a07bca27e19de1bd728

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/youtube.png HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/png
content-length: 17207
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JDZOL5YsB5kprCB7WpZSc%2B2nhDGPN0OYnR8565pPxp6Hk1I%2BCcLm9R3kxUTHevGFBTHjoHKaih0nJGggEM6ZWHTn5IITNrRUGBS2tyxOiCrimFteo9dAzHZkgzRS0lF2odmXJ3wP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a46ed656ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/img1.jpg

188.114.97.1

200 OK

44 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/img1.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3
Size
44 kB (44237 bytes)
Hash
8bf3012693ba31b87b5be36813eef1dc
f530972b1e61cb5cf9c7bb5892334cae1ec52dc3
4320ce82e407d6cf6a46a65024a915c230570f4ec12143eae5822e245d65117b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/img1.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 44237
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9yyaffmhYMUJqVI6qRvFEWTSsOALLAdnaiXra0c0wgkoBJpI%2BwclioQsARZft0Ox0WonTjcrSBeXeL%2B8dgU%2BNWgoSevU5lTyvj8iHLTUSFU3xx%2BLQ3PLFFrfEIkx2vY7POo5tL1c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ec256ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/img2.jpg

188.114.97.1

200 OK

62 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/img2.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, progressive, precision 8, 727x463, components 3
Size
62 kB (61575 bytes)
Hash
e5f3d79b74ccff377b289125b0ffb03e
e159ef099dbe1c61e0ef4172b9c732e2690a6875
287af90df0756fd7dd00d4c2b95ef7f771874f6b47b0fda8b32de62e5f7ca4b7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/img2.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 61575
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=caZEFJpSKWHgoeYr8NcYZBZghrYELFkwVnCGBtCQitrri7YnrTGP%2FL4qaxiDvMh%2B%2Fpjn5q3guRnH40IV1ZfGWV%2B08A5UMkOlxuJ2LRf96B2XBY4vv9kGyA8%2BjExfI0qZEZiOAGDk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ec356ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/giftDetail1.jpg

188.114.97.1

200 OK

68 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/giftDetail1.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3
Size
68 kB (68435 bytes)
Hash
922e9986be5c3bd110a62a0121a08535
ea91f32c988951b487993e9bb6e92416b2015592
767b800e5ea5daa6c400940d128de324735393509364103646e3392f76c12cb6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/giftDetail1.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 68435
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d32sMI%2FhBA0da7Po5NmIV%2B5ZJo6zhPjSdBYwSH%2BYUTkqRhAXtcZJoYmTMpEi2tTJ95yuvGMxJRzPt5S5xy8M61JD4FFi6icheHyc8d%2F1msKs6W46bMbcm6fpKf53vrplw5JoJUgK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ec456ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/giftDetail2.jpg

188.114.97.1

200 OK

67 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/giftDetail2.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3
Size
67 kB (66794 bytes)
Hash
99ac078d67cbd28e1a45bce499172289
56a4f24bf44f35edc898cc5b04e75b2be6989f36
7b918796dc3718a4dd23cbe3df1fca4cd92005f8d087475cc2733bd05b6c6834

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/giftDetail2.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 66794
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KKQOSFJ%2BS9wr%2BgADTMwKZpnrUBfPxPLv9MuUP%2Bpy1H0Yhl5UtJ5zKuwh%2BpNZEvPYpjQNhmpKZgwJsrc13LuWjucHW7d8iJIKm%2B%2FKNMSDzGzqdcPryXC%2FTs1dkgoc76dbC8RA%2BWdt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ec556ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/giftDetail3.jpg

188.114.97.1

200 OK

92 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/giftDetail3.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, progressive, precision 8, 727x463, components 3
Size
92 kB (91466 bytes)
Hash
4f6f4d260cf86159e522494cedab8120
2bb809f8a5b4874873e37995c432fa483a2039e2
2d928017f9ad34dac89cdbed1b74ac4ce276fc94a45b6c29767633398395b0a8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/giftDetail3.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 91466
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ba31barX%2B8uqW%2F02mUyYp9kZ4GtbwOQlpKuSnLPjiasQToYCcErD4bfiNA3tcJkcW6gVXgrSJowoN8ELDHPsfIUUycD%2F5XmMUVHgEUQDVTplIk9WzVS2AkDLdSpBgl%2FC%2FPP7pCL3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ecb56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/giftDetail4.jpg

188.114.97.1

200 OK

69 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/giftDetail4.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 727x463, components 3
Size
69 kB (69193 bytes)
Hash
b0685489edb13a4bad02d2793341c3eb
56a23ee496d77d04b9b10de1f7f8f76f0b26ffa7
ef668345b4e2c57de10dae3acfae2ea3cbed143cc757c58b3e121891a0f1712a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/giftDetail4.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 69193
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dNRx37NLTqFgnsIIHQgodx4M3DaUcSHzUVDXzhPJkIv8VBcg4EGnuaJq0wYkDtvAKnZFwdQVsicp%2BMUSE4ZxQMcnjcwrCjzbiZLrGi1Qt1nlHJZPLXnTnS%2BOA1KBOBZ%2BnoZuqgZe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ecd56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

188.114.97.1

302 Found

0 B

URL GET HTTP/3
trace-fedx.1aut.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sun, 05 May 2024 05:50:13 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0TSjtDIgQ3Pm%2B1C7x8sqSJmghQtGi43kbjadCVZqpoS15%2Bkx1vDvMbbhgI2BdKYOEbmqmIh0QkdfjyxzoyRYk88%2Ft%2F63OGqf9LefRXvQmed0TjC0CZ7QhpSkLKkoocTMiAb5cugy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a768c156ca-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trace-fedx.1aut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 73296
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trace-fedx.1aut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 273313
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trace-fedx.1aut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 272779
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trace-fedx.1aut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 272779
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trace-fedx.1aut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 270913
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trace-fedx.1aut.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:32:46 GMT
expires: Fri, 02 May 2025 02:32:46 GMT
cache-control: public, max-age=31536000
age: 271047
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

trace-fedx.1aut.com/Images/mainBanner2.jpg

188.114.97.1

200 OK

186 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/mainBanner2.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, progressive, precision 8, 1366x477, components 3
Size
186 kB (186482 bytes)
Hash
c7e0da23efe82025b305d274a80d7a94
535c0dfa5b3cd513359ac496e64a290701ee1c3f
8db2d3480f929baa7364fd3f20198a032677bf84bd5a1472713283c932dce35a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/mainBanner2.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/style.css
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/jpeg
content-length: 186482
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MEr5Sdjz0Abb1ZniV52l8ka0YQGSVR9X9UyZimg1yu6HaT2ZLZDL15rLuPTF%2FsvXNSjP26dl7uhj%2FKE2EQmqMtC1ImwFvDlr%2Fy5zaloeGDletFPiP4aCsnGSGbShpJLz1Fdbb535"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a6c83956ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/cdn-cgi/challenge-platform/h/g/jsd/r/87ee73a0b8b5b521

188.114.97.1

200 OK

0 B

URL POST HTTP/3
trace-fedx.1aut.com/cdn-cgi/challenge-platform/h/g/jsd/r/87ee73a0b8b5b521
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/87ee73a0b8b5b521 HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12161
Origin: https://trace-fedx.1aut.com
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:14 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=75z5E9DL2UJSkZWbnKC9bpp8oT20kOUzimX3cdF_Myo-1714888214-1.0.1.1-9lH_WaemqqzLEUCzWWsuRwbEYhRa.Jv8dHw3tLyJJSJ_CpIAMK7Q5cmXOUNoj0ts4igSaEvSTfDWjrRaCQh_pg; path=/; expires=Mon, 05-May-25 05:50:14 GMT; domain=.1aut.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yKOoai5EaA4PB%2BZ%2Fi2d6ucdLGL4A%2FRy%2Fw9tiDr3vHNIqnGNBHRUSpSOY7fbqAKhnrl5bXw0o4RDRWxcznFLn5eYouX9kFnOX9ut4BF1HXQXu8g8AhMVI%2BniUCI0m6AXUlYfdygok"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee73a9ba6356ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/secondBanner.jpg

188.114.97.1

200 OK

168 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/secondBanner.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 970x280, components 3
Size
168 kB (167961 bytes)
Hash
87b3acbd6c2587042b981ff622faae92
9e479cca0918a02f8dbd2f209bfbb8c8b5777799
26a3cac4007fe0ba04e26395ab3c8a064a106d9db138a80b01fd7c5eb3a0156e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/secondBanner.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/style.css
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:14 GMT
content-type: image/jpeg
content-length: 167961
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yCe5nQRQMywW5iOcCG29pl%2F7bTnVSsgJ0Fzk2iMbih%2FPPpP3Rj2%2FkXs4K71cBe9%2F6juAPAl7QvgfLEu4ZLRGhvSBBLA6pJsuf4E1a1rzROOMlBETL3p9kKrJr%2FWHSJVLUxEQZ5lu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a6c83a56ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/bannerBeforeFooter.jpg

188.114.97.1

200 OK

246 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/bannerBeforeFooter.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 727x463, components 3
Size
246 kB (245460 bytes)
Hash
077d2e32a8fbd54136f6f40ee859abb3
fa6fe30528c8ed58258dd95508d6f8933c3395b6
2c6f9a6920b03940acc278e8e235649b0adb1ec52647e288f4d2058aa6ebc7b5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/bannerBeforeFooter.jpg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/style.css
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:14 GMT
content-type: image/jpeg
content-length: 245460
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z3ezBzAmQSAMDKJV00QqcYH7Ym5h1geh3si34z5Y0FszGyi6A%2FPfIMjRSVH43W80B2h5vGtqLNM6lAj4GHG6EoqaRLb58sOBqV45Tp697v1kBD%2Bg0VOPHqZf0A8cJF1t%2BpB8NzCc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a6c83b56ca-OSL
alt-svc: h3=":443"; ma=86400

www.fedex.com/etc.clientlibs/designs/fedex-common/images/resources/fx-favicon.ico

23.218.92.216

818 B

URL GET
www.fedex.com/etc.clientlibs/designs/fedex-common/images/resources/fx-favicon.ico
IP
23.218.92.216:0
ASN
#20940 Akamai International B.V.

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerSectigo Limited
Subjectwww.fedex.com
Fingerprint58:A6:FF:7E:57:65:24:72:90:F2:4B:A8:71:BC:03:AF:D1:85:E1:11
ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
818 B (818 bytes)
Hash
a53129769d15f251d4e5c5cb966765b4
043d6a7b9cca5d05aba04fc0a3f4527e3ad075e0
eab1b9a0ef942d84e3a8ed8c3e3996acb7a46af9a0b9f914ced662bcbe0e54be

HTTP Headers

GET /etc.clientlibs/designs/fedex-common/images/resources/fx-favicon.ico HTTP/1.1
Host: www.fedex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN
last-modified: Fri, 03 May 2024 21:36:08 GMT
accept-ranges: bytes
content-type: image/x-icon
access-control-allow-credentials: true
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
content-length: 818
cache-control: max-age=2773
expires: Sun, 05 May 2024 06:36:27 GMT
date: Sun, 05 May 2024 05:50:14 GMT
vary: Accept-Encoding
akamai-grn: 0.d45cda17.1714888214.1ef1ffb5
set-cookie: Rbt=f0; path=/
fdx_bman=e8afc186947ca53701478d7a55e249dd; path=/; domain=.www.fedex.com; Secure
X-Firefox-Spdy: h2

trace-fedx.1aut.com/Images/hamBurger.svg

188.114.97.1

200 OK

736 B

URL GET HTTP/3
trace-fedx.1aut.com/Images/hamBurger.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
SVG Scalable Vector Graphics image
Size
736 B (736 bytes)
Hash
1e97cb9b7a81bd1b7da616db0ee627f7
c0ac7ecec151a912f72c33a066dca65bc951eb67
c65b58aa9bf91445fa1d9e284d7eee821973dccbd897bf2ec26d7b0b470c3c0f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/hamBurger.svg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/svg+xml
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kapGIY1VhgWgv6xt%2Fl0z0f4ZFGrw%2FL4y6qOFGbLlhOoYZ%2FrZjf65zE7Uom%2FEiaik6cftJpo4pKwqMbmvan4x%2FGI8ENN8wssbdaLUNtkbM5XM7fOTSbhD9J2QlB34HySu7ZL7BxCU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a43eab56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/style.css

188.114.97.1

200 OK

4.7 kB

URL GET HTTP/3
trace-fedx.1aut.com/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
ASCII text
Size
4.7 kB (4717 bytes)
Hash
ead81fa1e44d760dcc5ad6c399e3284c
b29d30526e8eb8ef6202ee917798e013c93e5d2a
6773777980e0d1e93d79c2d5ac178cdf9e87f9d6a31052ffad05429885119ab1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /style.css HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 18:12:12 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bn%2FBaEj7OvcMaEmPGEOBYQGXK4mwmTiO3Hcjsxx%2BMqe%2BmUbj4hJYxOG2G6ac7dGFUaDnbHrIjG0GBuQEi%2Bke0ktg8VE8xUX5ex8gN9sZIyvOALRITEvQzouZKvYLzomcTilaiSbA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a42e9c56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js

188.114.97.1

200 OK

12 kB

URL GET HTTP/3
trace-fedx.1aut.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
JavaScript source, ASCII text, with very long lines (7880), with no line terminators
Size
12 kB (12008 bytes)
Hash
7296c0037a5561671e967fc2a091e9a5
3d6af76be5384ead6b17c1c99550905662252217
9ecda788cce17624d8bf1586a2668c0f739d663ad3db73a05b7f4b51a01f315f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Flx2LofxdGfjOcUHJntREbT3yBPA49lEsYXms1fpfNq18MzdiwRc5ndb%2FdsOI%2FbVhHC%2BwemFWofxTMXBIUuDUq5sH9lD7XpPcsXAEIt3WOnrQ3u4gmkM4t%2FKcmARsB7VLuHaokQZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee73a7a92256ca-OSL
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/Images/globeIcon.svg

188.114.97.1

200 OK

1.3 kB

URL GET HTTP/3
trace-fedx.1aut.com/Images/globeIcon.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1311 bytes)
Hash
2b5b6e7d3c21d1b828fb0c1fc2091eba
a6e3abda13e2bbfb4aa87af624ba587e906f0d5f
17ddbdcb464cdd68caa335b7af80ee6022a0dbbdbda5bd9596c1ea303fa03389

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET /Images/globeIcon.svg HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:13 GMT
content-type: image/svg+xml
last-modified: Fri, 03 May 2024 10:12:04 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7dhjx51cEcGwrjT3PSSTJnOP6z8ZoQCkyR6oF3LwMmxNUsSGjQsHSE7ZeN2ddhwbBZpKUPBRLKw7dqI4K0sj%2BbrmX86C%2BOhWb7j6tNTttnIemW2T87I4gMvuJ%2BcfMBTU9gR6q0GD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee73a45ece56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

trace-fedx.1aut.com/

188.114.97.1

200 OK

16 kB

URL User Request GET HTTP/2
trace-fedx.1aut.com/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subject1aut.com
Fingerprint76:BC:F1:4D:24:F5:21:49:C8:53:56:3D:8A:AA:71:03:1D:21:32:97
ValidityMon, 01 Apr 2024 02:11:14 GMT - Sun, 30 Jun 2024 02:11:13 GMT

File type

Size
16 kB (16048 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	FedEx Corporation

HTTP Headers

GET / HTTP/1.1
Host: trace-fedx.1aut.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 05:50:12 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=96c0eabb5b7ef9648d569ce277d9d089; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PwUErdpQPh5TEx4ZO6uQNtwwm8eUbezGZwCGEuOqdBFKZpOm9xWIIe79fH7LXYoOaS8Wkf9LrmbEyrDUzByowNXWrM%2BscJ8DyTC2dIzskjoekPJfDPr2ExrMtSHBwIppxcwZzRTu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee73a0b8b5b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Cabin&family=Montserrat:ital,wght@0,100..900;1,100..900&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Pinyon+Script&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap

142.250.74.106

200 OK

46 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Cabin&family=Montserrat:ital,wght@0,100..900;1,100..900&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Pinyon+Script&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://trace-fedx.1aut.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1572)
Size
46 kB (46190 bytes)
Hash
304761a1b8d508e4d3418b2eea31c2f9
ec3e6983adcdb7531b3c1505a1536ced3ce1a56a
570a3e22431afe11dfe39d00273d594ab82b0fbc9353eef493fe888084c81e0d

HTTP Headers

GET /css2?family=Cabin&family=Montserrat:ital,wght@0,100..900;1,100..900&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Pinyon+Script&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trace-fedx.1aut.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 05:50:13 GMT
date: Sun, 05 May 2024 05:50:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (47)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate