Report - alhujielanmedical.com/

Report Overview

Submitted URL
alhujielanmedical.com/
IP
198.12.252.76
ASN
#26496 AS-26496-GO-DADDY-COM-LLC
Submitted
2022-09-28 09:32:26
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
270

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.83.91.138
alhujielanmedical.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	22 kB	574 kB	198.12.252.76
ocsp09.actalis.it	247887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	9.3 kB	109.70.240.114
corporateportal.unicreditgroup.eu	729586	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	378 kB	193.193.173.143
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	69 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/index_files/login.html	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft
2022-09-27	medium	alhujielanmedical.com/	UniCredit Bank Aktiengesellschaft

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-28	medium	alhujielanmedical.com/	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/ruxitagentjs_ICA27SVfghjqrux_10177191024092634.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/require.min.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/login.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/jquery.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/react-files.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/frontend-components.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/handlebars.amd.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/psf.portal.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/jquery.cookie.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.core.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.draganddrop.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.userevents.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/es6-promise.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Notification.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Loader.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/ModalDialog.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.window.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.button.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/emotion.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Icon.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/classnames.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Modal.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Button.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/polished.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/loginScript.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/loginLogic.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/customLoginScript.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/available_languages.min.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/frontend-components-theme.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/getParameterByName.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/loadingText.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/frontend-components.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/public/scripts/react-files.js	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/react-files.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/require.min.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/login.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/handlebars.amd.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/jquery.cookie.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/psf.portal.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.core.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/jquery.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.draganddrop.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/es6-promise.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.userevents.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Loader.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Notification.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/ModalDialog.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.window.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/kendo.button.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/emotion.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Icon.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/classnames.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Modal.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/Button.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/polished.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/loginScript.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/loginLogic.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/getParameterByName.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/customLoginScript.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/loadingText.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/login.html	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/itasec-bundle.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/psf.screen.js.download	Phishing
2022-09-28	medium	alhujielanmedical.com/index_files/itasec-bundle.js.download	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	alhujielanmedical.com/index_files/login.html	218 kB	2023-03-07	2023-03-08
Pretty URL alhujielanmedical.com/index_files/login.html IP 198.12.252.76 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:38 Last Seen2023-03-08 03:02:59 Times Seen1 Hash e85dd2866f6b2dde5716352411dc6545 84db14b4911e5e31b2a01247254af45b5db00255 6005101f2887fedb7453c97db289fe6cf397ec1c3272f47fd4d643bcba444128 Loading...

	alhujielanmedical.com/index_files/login.html	571 B	2023-03-07	2023-03-08
Pretty URL alhujielanmedical.com/index_files/login.html IP 198.12.252.76 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:38 Last Seen2023-03-08 03:02:59 Times Seen1 Hash 4168191b4d28c1a8f69e6b9e54e51806 3947bb00d976e1ea29037e5d742b320549f24a87 69b08e83bf8e83c6ada59edd8ab23d3c8456881a6cd02670de686b2f2fb8b4b0 Loading...

	alhujielanmedical.com/	498 B	2023-03-07	2023-03-08
Pretty URL alhujielanmedical.com/ IP 198.12.252.76 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:38 Last Seen2023-03-08 03:02:59 Times Seen1 Hash a99d1c3c51cca8d84bcbb5dcebb457d0 5550da4e65091b68a2df9b27644e30399c8d9377 fd5fd5c22ef39cedd2a17620861fa4f56df5e1c61d92b62c5637d3c29e535ca7 Loading...

	alhujielanmedical.com/	218 kB	2023-03-07	2023-03-08
Pretty URL alhujielanmedical.com/ IP 198.12.252.76 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:52:38 Last Seen2023-03-08 03:02:59 Times Seen1 Hash 718dda26c03dfe93282de2c58ca9a8a4 e757203432c5f8f9ab0e5c7190e7fabf1a9a5f21 b2ccc35c37b0ea397fcd8ef55438a7ca55e646e4786e7df28fb3e2a32aa53e47 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ad859401d438ebc4094db82c30a57bde	75 kB	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 13:52:38 Last Seen2023-03-08 03:02:59 Times Seen1 Hash ad859401d438ebc4094db82c30a57bde de1c888b140e022df6b0c31c8c69da675e3976e0 1088c6443d566c4d2580f5505bc0adfa1f0514121a721d1d3849ca342a2d8adc Loading...

	#2 Eval - 6c04e1a3c177c9209b83f31858eeb6f9	67 kB	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 13:52:38 Last Seen2023-03-08 03:02:59 Times Seen1 Hash 6c04e1a3c177c9209b83f31858eeb6f9 c6d47ae4a46434155ec9aa62a9f740822e255d72 42cc5f604b6fb9975738ced2cd6a7e768ac90c86a382890ff7b4f0415e57dff2 Loading...

	#3 Eval - 56c8998b2adcf1e91eb99c49b9245b83	13 B	2023-03-07	2024-04-13
Pretty Observations First Seen2023-03-07 13:03:31 Last Seen2024-04-13 12:13:15 Times Seen5 Hash 56c8998b2adcf1e91eb99c49b9245b83 858368069dd7fd17e6d9495165811dbb58928d25 36dd47f176d4cf0d1672ef739fe941192d5ce1f06770d947e9ffdc4eb1764b09 Loading...

	#4 Eval - ccf546cb8a2168b33e49dab25b8caa6a	96 kB	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 13:52:38 Last Seen2023-03-08 03:02:59 Times Seen1 Hash ccf546cb8a2168b33e49dab25b8caa6a 7f215681e81fb4fe72cea68d82d2a6c2c2f49a1d 9e85447b13e4115ef03ed5bbd90c8d59c19d7d908e9da44620cc926ff174e4e6 Loading...

HTTP Transactions (97)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 09:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PFfIpeQBVK2o3Lp4Z7wTBzIiN2uip22tIrQseX02WYt3EwTTMpt7tA==
Age: 995

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10563
Expires: Wed, 28 Sep 2022 12:28:18 GMT
Date: Wed, 28 Sep 2022 09:32:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8afc4649e99d0e42b9bf5b133eebed5c
e3e7e0e614af3262b74bd4b6267ef23293bdb5f0
e16e8b782b441ecb9a57c3fc3db9884b5a3034967b846cca67b2f53644fcabdf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E16E8B782B441ECB9A57C3FC3DB9884B5A3034967B846CCA67B2F53644FCABDF"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4270
Expires: Wed, 28 Sep 2022 10:43:25 GMT
Date: Wed, 28 Sep 2022 09:32:15 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: U3wcy2aQ4MueT77GJBnYU3X25xyI6onT2QcpJiYN3q5EgMb/1PFr2DKuA6jov3AkXHzmIaeRVFGC04qV6qKdMA==
x-amz-request-id: RG6AF9A9R9N732RK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 08:49:56 GMT
age: 2539
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 09:32:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

alhujielanmedical.com/

198.12.252.76

200 OK

233 kB

URL HTTP/1.1
alhujielanmedical.com/
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (57892)
Size
233 kB (232596 bytes)
Hash
b536e32a078e355d4811bdcfc013b023
f5420937835c1d56046829cd85b0b41e256be143
ea845d5b777a9a485e95a33687a9c37b17956c579a6decfe5179c5a00fb8a9c3

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:14 GMT
Server: Apache
Last-Modified: Tue, 27 Sep 2022 14:01:09 GMT
Accept-Ranges: bytes
Content-Length: 232596
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/html

alhujielanmedical.com/index_files/ruxitagentjs_ICA27SVfghjqrux_10177191024092634.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/ruxitagentjs_ICA27SVfghjqrux_10177191024092634.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/ruxitagentjs_ICA27SVfghjqrux_10177191024092634.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/require.min.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/require.min.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/require.min.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/login.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/login.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/login.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/jquery.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/jquery.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/jquery.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/react-files.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/react-files.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/react-files.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/frontend-components.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/frontend-components.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/frontend-components.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/handlebars.amd.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/handlebars.amd.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/handlebars.amd.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/psf.portal.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/psf.portal.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/psf.portal.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/jquery.cookie.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/jquery.cookie.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/jquery.cookie.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.core.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.core.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.core.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.draganddrop.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.draganddrop.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.draganddrop.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.userevents.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.userevents.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.userevents.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/es6-promise.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/es6-promise.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/es6-promise.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp09.actalis.it/VA/AUTHOV-G3

109.70.240.114

200

2.0 kB

URL HTTP/1.1
ocsp09.actalis.it/VA/AUTHOV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
2.0 kB (2033 bytes)
Hash
f1130e4e9b48c835956aa805a23c6ef3
74c76fe9e1d84010c162d642f401b36269fad9e8
5938a49ade676fe5040fa7f60bfc6f503c6413447d1eb51d963c2266e7807bb2

HTTP Headers

POST /VA/AUTHOV-G3 HTTP/1.1
Host: ocsp09.actalis.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Wed, 28 Sep 2022 09:32:15 GMT
Content-Type: application/ocsp-response
Content-Length: 2033
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 05:59:18 GMT
Expires: Thu, 29 Sep 2022 05:59:17 GMT
ETag: "74c76fe9e1d84010c162d642f401b36269fad9e8"

ocsp09.actalis.it/VA/AUTHOV-G3

109.70.240.114

200

2.0 kB

URL HTTP/1.1
ocsp09.actalis.it/VA/AUTHOV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
2.0 kB (2033 bytes)
Hash
f1130e4e9b48c835956aa805a23c6ef3
74c76fe9e1d84010c162d642f401b36269fad9e8
5938a49ade676fe5040fa7f60bfc6f503c6413447d1eb51d963c2266e7807bb2

HTTP Headers

POST /VA/AUTHOV-G3 HTTP/1.1
Host: ocsp09.actalis.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Wed, 28 Sep 2022 09:32:15 GMT
Content-Type: application/ocsp-response
Content-Length: 2033
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 05:59:18 GMT
Expires: Thu, 29 Sep 2022 05:59:17 GMT
ETag: "74c76fe9e1d84010c162d642f401b36269fad9e8"

alhujielanmedical.com/index_files/Notification.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Notification.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Notification.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Loader.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Loader.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Loader.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp09.actalis.it/VA/AUTHOV-G3

109.70.240.114

200

2.0 kB

URL HTTP/1.1
ocsp09.actalis.it/VA/AUTHOV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
2.0 kB (2033 bytes)
Hash
f1130e4e9b48c835956aa805a23c6ef3
74c76fe9e1d84010c162d642f401b36269fad9e8
5938a49ade676fe5040fa7f60bfc6f503c6413447d1eb51d963c2266e7807bb2

HTTP Headers

POST /VA/AUTHOV-G3 HTTP/1.1
Host: ocsp09.actalis.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Wed, 28 Sep 2022 09:32:15 GMT
Content-Type: application/ocsp-response
Content-Length: 2033
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 05:59:18 GMT
Expires: Thu, 29 Sep 2022 05:59:17 GMT
ETag: "74c76fe9e1d84010c162d642f401b36269fad9e8"

alhujielanmedical.com/index_files/ModalDialog.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/ModalDialog.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/ModalDialog.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.window.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.window.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.window.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.button.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.button.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.button.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp09.actalis.it/VA/AUTHOV-G3

109.70.240.114

200

2.0 kB

URL HTTP/1.1
ocsp09.actalis.it/VA/AUTHOV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
2.0 kB (2033 bytes)
Hash
f1130e4e9b48c835956aa805a23c6ef3
74c76fe9e1d84010c162d642f401b36269fad9e8
5938a49ade676fe5040fa7f60bfc6f503c6413447d1eb51d963c2266e7807bb2

HTTP Headers

POST /VA/AUTHOV-G3 HTTP/1.1
Host: ocsp09.actalis.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Wed, 28 Sep 2022 09:32:15 GMT
Content-Type: application/ocsp-response
Content-Length: 2033
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 05:59:18 GMT
Expires: Thu, 29 Sep 2022 05:59:17 GMT
ETag: "74c76fe9e1d84010c162d642f401b36269fad9e8"

alhujielanmedical.com/index_files/emotion.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/emotion.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/emotion.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

corporateportal.unicreditgroup.eu/portal/italy/styles/kendo.custom-pdp.min.css

193.193.173.143

404 Not Found

0 B

URL HTTP/1.1
corporateportal.unicreditgroup.eu/portal/italy/styles/kendo.custom-pdp.min.css
IP
193.193.173.143:0
ASN
#12428 UniCredit Business Integrated Solutions S.C.p.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /portal/italy/styles/kendo.custom-pdp.min.css HTTP/1.1
Host: corporateportal.unicreditgroup.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alhujielanmedical.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Strict-Transport-Security: max-age=31536000; preload
X-OneAgent-JS-Injection: true
Cache-Control: private,no-cache,no-store,no-transform,must-revalidate,max-age=0
Content-Length: 0
Expires: Thu, 01 Dec 1994 16:00:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: JSESSIONID=00004Uu0dXiWxF_DxnHX8zA23uE:1avh4blrl; Path=/; Secure; HttpOnly;SameSite=none
browserPreferredLanguage=en; Version=1; Path="/"; Secure
dtCookie=v_4_srv_18_sn_F6932CBE4A4BEC82F9BAC1290B3B988D_perc_100000_ol_0_mul_1_app-3A270abc028968e80d_1; Path=/; Domain=.unicreditgroup.eu
TS0102ee36=01357f8a036600b77b6ee1fc80139abbe6870bc20c89ca96f763e416ec688b203537ace5407961e4875dbfd8d5af30e7b0f29991e2; Path=/; Secure; HTTPOnly
TS0142c17c=01357f8a036600b77b6ee1fc80139abbe6870bc20c89ca96f763e416ec688b203537ace5407961e4875dbfd8d5af30e7b0f29991e2; path="/"; HTTPonly; Secure
TS013beec5=01357f8a036600b77b6ee1fc80139abbe6870bc20c89ca96f763e416ec688b203537ace5407961e4875dbfd8d5af30e7b0f29991e2; path=/; domain=.unicreditgroup.eu; HTTPonly; Secure
Access-Control-Allow-Credentials: true
X-QGP-Client-OS: Linux
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.unicreditgroup.eu https://*.unicreditcorporate.it https://*.unicredit.it ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; upgrade-insecure-requests ; worker-src 'self' blob: ;
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval'; child-src 'self' blob: https://ebanking-at.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://api.digital-portal.hv.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://ebanking-it.unicreditgroup.eu https://onlineaggregator.unicredit.eu https://usf-e2e.api.intranet.unicreditgroup.eu https://uchedge.unicredit.eu ; frame-src 'self' https://online-smallbusiness.unicredit.it https://corporateportal.unicreditgroup.eu https://online.bankaustria.at https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://usf-e2e.api.unicreditgroup.eu https://qgp-e2e.intranet.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://ebanking-it.unicreditgroup.eu https://ebanking-ro.unicreditgroup.eu https://ebanking-ae.unicreditgroup.eu https://ebanking-hu.unicreditgroup.eu https://ebanking-hr.unicreditgroup.eu https://ebanking-si.unicreditgroup.eu https://ebanking-cz.unicreditgroup.eu https://ebanking-sk.unicreditgroup.eu https://ebanking-sg.unicreditgroup.eu https://ebanking-cn.unicreditgroup.eu https://ebanking-us.unicreditgroup.eu https://ebanking-at.unicreditgroup.eu https://ebanking-hk.unicreditgroup.eu https://ebanking-uk.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://hv-wks-prd.prod-de.ocp.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://uchedge.unicredit.eu https://payfx.unicredit.eu ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; worker-src 'self' blob: ; report-uri https://a8f9bbf95aafc2df060399368dd98bb7.report-uri.com/r/d/csp/reportOnly;
X-Client-Network: internet
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Language: en-US

corporateportal.unicreditgroup.eu/portal/italy/vendor/bootstrap.min.css

193.193.173.143

404 Not Found

0 B

URL HTTP/1.1
corporateportal.unicreditgroup.eu/portal/italy/vendor/bootstrap.min.css
IP
193.193.173.143:0
ASN
#12428 UniCredit Business Integrated Solutions S.C.p.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /portal/italy/vendor/bootstrap.min.css HTTP/1.1
Host: corporateportal.unicreditgroup.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alhujielanmedical.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Strict-Transport-Security: max-age=31536000; preload
X-OneAgent-JS-Injection: true
Cache-Control: private,no-cache,no-store,no-transform,must-revalidate,max-age=0
Content-Length: 0
Expires: Thu, 01 Dec 1994 16:00:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: JSESSIONID=0000zn9ONQe6NlyoufPW1PYJpjD:1avh5eklh; Path=/; Secure; HttpOnly;SameSite=none
browserPreferredLanguage=en; Version=1; Path="/"; Secure
dtCookie=v_4_srv_6_sn_E900EB2DA13C613A7F9BF9AA0DA61164_perc_100000_ol_0_mul_1_app-3A270abc028968e80d_1; Path=/; Domain=.unicreditgroup.eu
TS0102ee36=01357f8a038ccbd1243566fe153c8cd5d1072a9fe976b9bbf12b340027ff353e56f670051b48a646812aab7d1b40c1682939b90eae; Path=/; Secure; HTTPOnly
TS0142c17c=01357f8a038ccbd1243566fe153c8cd5d1072a9fe976b9bbf12b340027ff353e56f670051b48a646812aab7d1b40c1682939b90eae; path="/"; HTTPonly; Secure
TS013beec5=01357f8a038ccbd1243566fe153c8cd5d1072a9fe976b9bbf12b340027ff353e56f670051b48a646812aab7d1b40c1682939b90eae; path=/; domain=.unicreditgroup.eu; HTTPonly; Secure
Access-Control-Allow-Credentials: true
X-QGP-Client-OS: Linux
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.unicreditgroup.eu https://*.unicreditcorporate.it https://*.unicredit.it ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; upgrade-insecure-requests ; worker-src 'self' blob: ;
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval'; child-src 'self' blob: https://ebanking-at.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://api.digital-portal.hv.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://ebanking-it.unicreditgroup.eu https://onlineaggregator.unicredit.eu https://usf-e2e.api.intranet.unicreditgroup.eu https://uchedge.unicredit.eu ; frame-src 'self' https://online-smallbusiness.unicredit.it https://corporateportal.unicreditgroup.eu https://online.bankaustria.at https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://usf-e2e.api.unicreditgroup.eu https://qgp-e2e.intranet.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://ebanking-it.unicreditgroup.eu https://ebanking-ro.unicreditgroup.eu https://ebanking-ae.unicreditgroup.eu https://ebanking-hu.unicreditgroup.eu https://ebanking-hr.unicreditgroup.eu https://ebanking-si.unicreditgroup.eu https://ebanking-cz.unicreditgroup.eu https://ebanking-sk.unicreditgroup.eu https://ebanking-sg.unicreditgroup.eu https://ebanking-cn.unicreditgroup.eu https://ebanking-us.unicreditgroup.eu https://ebanking-at.unicreditgroup.eu https://ebanking-hk.unicreditgroup.eu https://ebanking-uk.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://hv-wks-prd.prod-de.ocp.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://uchedge.unicredit.eu https://payfx.unicredit.eu ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; worker-src 'self' blob: ; report-uri https://a8f9bbf95aafc2df060399368dd98bb7.report-uri.com/r/d/csp/reportOnly;
X-Client-Network: internet
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=10, max=95
Connection: Keep-Alive
Content-Language: en-US

corporateportal.unicreditgroup.eu/portal/italy/vendor/kendo.common-material.min.css

193.193.173.143

404 Not Found

0 B

URL HTTP/1.1
corporateportal.unicreditgroup.eu/portal/italy/vendor/kendo.common-material.min.css
IP
193.193.173.143:0
ASN
#12428 UniCredit Business Integrated Solutions S.C.p.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /portal/italy/vendor/kendo.common-material.min.css HTTP/1.1
Host: corporateportal.unicreditgroup.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alhujielanmedical.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Strict-Transport-Security: max-age=31536000; preload
X-OneAgent-JS-Injection: true
Cache-Control: private,no-cache,no-store,no-transform,must-revalidate,max-age=0
Content-Length: 0
Expires: Thu, 01 Dec 1994 16:00:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: JSESSIONID=0000K-6QZ5FOfIK4TCw_TfmgioO:1e32rsdnu; Path=/; Secure; HttpOnly;SameSite=none
browserPreferredLanguage=en; Version=1; Path="/"; Secure
dtCookie=v_4_srv_2_sn_50936FA0EAE3D7FAFEB481D67316AB02_perc_100000_ol_0_mul_1_app-3A270abc028968e80d_1; Path=/; Domain=.unicreditgroup.eu
TS0102ee36=01357f8a03b8d6c6933ac6a93153abef2bf96ed196a95ab44a0f4b43c444f4903fe7dbce5c1dd59c393aa85aae4e2dcbbf813be2a5; Path=/; Secure; HTTPOnly
TS0142c17c=01357f8a03b8d6c6933ac6a93153abef2bf96ed196a95ab44a0f4b43c444f4903fe7dbce5c1dd59c393aa85aae4e2dcbbf813be2a5; path="/"; HTTPonly; Secure
TS013beec5=01357f8a03b8d6c6933ac6a93153abef2bf96ed196a95ab44a0f4b43c444f4903fe7dbce5c1dd59c393aa85aae4e2dcbbf813be2a5; path=/; domain=.unicreditgroup.eu; HTTPonly; Secure
Access-Control-Allow-Credentials: true
X-QGP-Client-OS: Linux
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.unicreditgroup.eu https://*.unicreditcorporate.it https://*.unicredit.it ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; upgrade-insecure-requests ; worker-src 'self' blob: ;
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval'; child-src 'self' blob: https://ebanking-at.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://api.digital-portal.hv.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://ebanking-it.unicreditgroup.eu https://onlineaggregator.unicredit.eu https://usf-e2e.api.intranet.unicreditgroup.eu https://uchedge.unicredit.eu ; frame-src 'self' https://online-smallbusiness.unicredit.it https://corporateportal.unicreditgroup.eu https://online.bankaustria.at https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://usf-e2e.api.unicreditgroup.eu https://qgp-e2e.intranet.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://ebanking-it.unicreditgroup.eu https://ebanking-ro.unicreditgroup.eu https://ebanking-ae.unicreditgroup.eu https://ebanking-hu.unicreditgroup.eu https://ebanking-hr.unicreditgroup.eu https://ebanking-si.unicreditgroup.eu https://ebanking-cz.unicreditgroup.eu https://ebanking-sk.unicreditgroup.eu https://ebanking-sg.unicreditgroup.eu https://ebanking-cn.unicreditgroup.eu https://ebanking-us.unicreditgroup.eu https://ebanking-at.unicreditgroup.eu https://ebanking-hk.unicreditgroup.eu https://ebanking-uk.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://hv-wks-prd.prod-de.ocp.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://uchedge.unicredit.eu https://payfx.unicredit.eu ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; worker-src 'self' blob: ; report-uri https://a8f9bbf95aafc2df060399368dd98bb7.report-uri.com/r/d/csp/reportOnly;
X-Client-Network: internet
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=10, max=97
Connection: Keep-Alive
Content-Language: en-US

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 10:03:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KumDBiibTxbg1IJUwt7DCs5I6OqMcuky_MjXE-coqARL_51YmaqZJA==
Age: 162

alhujielanmedical.com/index_files/Icon.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Icon.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Icon.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

corporateportal.unicreditgroup.eu/portal/italy/styles/login.min.css

193.193.173.143

200 OK

13 kB

URL HTTP/1.1
corporateportal.unicreditgroup.eu/portal/italy/styles/login.min.css
IP
193.193.173.143:0
ASN
#12428 UniCredit Business Integrated Solutions S.C.p.A.

File type
ASCII text, with very long lines (28161), with no line terminators
Size
13 kB (13152 bytes)
Hash
cb9806c073f64a50ad68bcc4d55790f3
559a4deadfb64f1f689b5b4e7f6edb0a9c6e789c
e50c909e232a3be9d66fdaf38f58653b0230e8e2a57398c43f6834af62676391

HTTP Headers

GET /portal/italy/styles/login.min.css HTTP/1.1
Host: corporateportal.unicreditgroup.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alhujielanmedical.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:15 GMT
Strict-Transport-Security: max-age=31536000; preload
X-OneAgent-JS-Injection: true
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: no-transform, public, max-age=14400, no-cache=set-cookie
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: JSESSIONID=0000PxFIPLq3-q-9VldMHldpF_c:1avh3ki42; Path=/; Secure; HttpOnly;SameSite=none
browserPreferredLanguage=en; Version=1; Path="/"; Secure
dtCookie=v_4_srv_2_sn_689CA6268EDD9026437D4FF94C0FBD69_perc_100000_ol_0_mul_1_app-3A270abc028968e80d_1; Path=/; Domain=.unicreditgroup.eu
TS0102ee36=01357f8a03e5769b31812b02afdedbc413db7ccff67b2a8e9f39e2bbd76ac2206b50b4f9492a561dbbb23aa02f6749d3faf35afd6a; Path=/; Secure; HTTPOnly
TS0142c17c=01357f8a03e5769b31812b02afdedbc413db7ccff67b2a8e9f39e2bbd76ac2206b50b4f9492a561dbbb23aa02f6749d3faf35afd6a; path="/"; HTTPonly; Secure
TS013beec5=01357f8a03e5769b31812b02afdedbc413db7ccff67b2a8e9f39e2bbd76ac2206b50b4f9492a561dbbb23aa02f6749d3faf35afd6a; path=/; domain=.unicreditgroup.eu; HTTPonly; Secure
Access-Control-Allow-Credentials: true
X-QGP-Client-OS: Linux
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.unicreditgroup.eu https://*.unicreditcorporate.it https://*.unicredit.it ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; upgrade-insecure-requests ; worker-src 'self' blob: ;
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval'; child-src 'self' blob: https://ebanking-at.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://api.digital-portal.hv.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://ebanking-it.unicreditgroup.eu https://onlineaggregator.unicredit.eu https://usf-e2e.api.intranet.unicreditgroup.eu https://uchedge.unicredit.eu ; frame-src 'self' https://online-smallbusiness.unicredit.it https://corporateportal.unicreditgroup.eu https://online.bankaustria.at https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://usf-e2e.api.unicreditgroup.eu https://qgp-e2e.intranet.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://ebanking-it.unicreditgroup.eu https://ebanking-ro.unicreditgroup.eu https://ebanking-ae.unicreditgroup.eu https://ebanking-hu.unicreditgroup.eu https://ebanking-hr.unicreditgroup.eu https://ebanking-si.unicreditgroup.eu https://ebanking-cz.unicreditgroup.eu https://ebanking-sk.unicreditgroup.eu https://ebanking-sg.unicreditgroup.eu https://ebanking-cn.unicreditgroup.eu https://ebanking-us.unicreditgroup.eu https://ebanking-at.unicreditgroup.eu https://ebanking-hk.unicreditgroup.eu https://ebanking-uk.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://hv-wks-prd.prod-de.ocp.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://uchedge.unicredit.eu https://payfx.unicredit.eu ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; worker-src 'self' blob: ; report-uri https://a8f9bbf95aafc2df060399368dd98bb7.report-uri.com/r/d/csp/reportOnly;
X-Client-Network: internet
Vary: Accept-Encoding
Content-Encoding: gzip
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/css
Content-Language: en-US
Transfer-Encoding: chunked

alhujielanmedical.com/index_files/classnames.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/classnames.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/classnames.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Modal.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Modal.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Modal.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Button.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Button.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Button.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/polished.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/polished.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/polished.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/loginScript.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/loginScript.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/loginScript.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/loginLogic.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/loginLogic.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/loginLogic.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/customLoginScript.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/customLoginScript.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/customLoginScript.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/available_languages.min.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/available_languages.min.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/available_languages.min.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/frontend-components-theme.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/frontend-components-theme.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/frontend-components-theme.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/getParameterByName.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/getParameterByName.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/getParameterByName.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/loadingText.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/loadingText.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/loadingText.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/logo_site.png

198.12.252.76

200 OK

7.6 kB

URL HTTP/1.1
alhujielanmedical.com/index_files/logo_site.png
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
PNG image data, 150 x 29, 8-bit/color RGBA, interlaced\012- data
Size
7.6 kB (7580 bytes)
Hash
5854dd1d0b88f840d7f2abd3a47929a4
e7076507fe69258fa811a97022c353b03af5e586
e78dc3a4608bed63b38b440dd6d95aed069aa4bdc7cef12da133368acf5eebec

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft

HTTP Headers

GET /index_files/logo_site.png HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Last-Modified: Tue, 27 Sep 2022 14:01:25 GMT
Accept-Ranges: bytes
Content-Length: 7580
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/png

alhujielanmedical.com/index_files/QGP-icon01.gif

198.12.252.76

200 OK

64 B

URL HTTP/1.1
alhujielanmedical.com/index_files/QGP-icon01.gif
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
bbfd7b49dc892a72a8a87d8d1ae3e4ee
8152afda534c80d6b7f94f00b4fa5d84a83246a7
d69cbc552cfe8de4931deb191dd349a881ff4448ed3251571e0bacd0257519b1

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft

HTTP Headers

GET /index_files/QGP-icon01.gif HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Last-Modified: Tue, 27 Sep 2022 14:01:25 GMT
Accept-Ranges: bytes
Content-Length: 64
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/gif

alhujielanmedical.com/index_files/footlogo.png

198.12.252.76

200 OK

4.1 kB

URL HTTP/1.1
alhujielanmedical.com/index_files/footlogo.png
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
PNG image data, 117 x 22, 8-bit/color RGBA, interlaced\012- data
Size
4.1 kB (4059 bytes)
Hash
1a690e241ee63cdd78f88ea2a1c1032c
9f0bd40f71d538f6d25642ae6a9a092727c6f337
bb8b45aeb63186e6a241dc3fb764a336aea75f560b7f5f4d806765abcc3badbe

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft

HTTP Headers

GET /index_files/footlogo.png HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Last-Modified: Tue, 27 Sep 2022 14:01:25 GMT
Accept-Ranges: bytes
Content-Length: 4059
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: image/png

alhujielanmedical.com/index_files/frontend-components.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/frontend-components.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/frontend-components.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:15 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6498
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 09:32:16 GMT
Last-Modified: Wed, 28 Sep 2022 07:43:58 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

alhujielanmedical.com/public/scripts/react-files.js

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/public/scripts/react-files.js
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /public/scripts/react-files.js HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/react-files.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/react-files.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/react-files.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/require.min.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/require.min.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/require.min.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/login.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/login.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/login.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/handlebars.amd.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/handlebars.amd.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/handlebars.amd.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/jquery.cookie.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/jquery.cookie.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/jquery.cookie.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/psf.portal.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/psf.portal.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/psf.portal.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.core.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.core.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.core.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

push.services.mozilla.com/

35.83.91.138

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.91.138:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GVdBDdUaGO3WuxAxOGxLxw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DteUijfXHCpoJnPqMc56hWG3OB8=

alhujielanmedical.com/index_files/jquery.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/jquery.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/jquery.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.draganddrop.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.draganddrop.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.draganddrop.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/es6-promise.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/es6-promise.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/es6-promise.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.userevents.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.userevents.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.userevents.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Loader.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Loader.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Loader.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Notification.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Notification.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Notification.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/ModalDialog.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/ModalDialog.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/ModalDialog.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.window.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.window.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.window.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/kendo.button.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/kendo.button.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/kendo.button.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/emotion.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/emotion.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/emotion.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Icon.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Icon.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Icon.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/classnames.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/classnames.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/classnames.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Modal.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Modal.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Modal.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/Button.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/Button.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/Button.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/polished.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/polished.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/polished.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/loginScript.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/loginScript.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/loginScript.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/loginLogic.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/loginLogic.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/loginLogic.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/getParameterByName.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/getParameterByName.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/getParameterByName.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/customLoginScript.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/customLoginScript.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/customLoginScript.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/portal/undefined/images/am/QGP-icon01.gif?991x=Ready&1664357533837

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/portal/undefined/images/am/QGP-icon01.gif?991x=Ready&1664357533837
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft

HTTP Headers

GET /portal/undefined/images/am/QGP-icon01.gif?991x=Ready&1664357533837 HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/loadingText.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/loadingText.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/loadingText.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

corporateportal.unicreditgroup.eu/portal/italy/images/favicon.ico

193.193.173.143

200 OK

15 kB

URL HTTP/1.1
corporateportal.unicreditgroup.eu/portal/italy/images/favicon.ico
IP
193.193.173.143:0
ASN
#12428 UniCredit Business Integrated Solutions S.C.p.A.

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15086 bytes)
Hash
497f795bb12165c07fc038b7e9b09d18
c383b24293bc745ccea942f2a04bce9bc70e58f5
80d359f5080b96f731a31e2b15fafc0d87723e9c24eb974a0f1319c7fde5c44b

HTTP Headers

GET /portal/italy/images/favicon.ico HTTP/1.1
Host: corporateportal.unicreditgroup.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alhujielanmedical.com/
Cookie: JSESSIONID=0000K-6QZ5FOfIK4TCw_TfmgioO:1e32rsdnu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:16 GMT
Strict-Transport-Security: max-age=31536000; preload
X-OneAgent-JS-Injection: true
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: no-transform, public, max-age=14400, no-cache=set-cookie
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Access-Control-Allow-Credentials: true
X-QGP-Client-OS: Linux
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.unicreditgroup.eu https://*.unicreditcorporate.it https://*.unicredit.it ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; upgrade-insecure-requests ; worker-src 'self' blob: ;
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval'; child-src 'self' blob: https://ebanking-at.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://api.digital-portal.hv.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://ebanking-it.unicreditgroup.eu https://onlineaggregator.unicredit.eu https://usf-e2e.api.intranet.unicreditgroup.eu https://uchedge.unicredit.eu ; frame-src 'self' https://online-smallbusiness.unicredit.it https://corporateportal.unicreditgroup.eu https://online.bankaustria.at https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://usf-e2e.api.unicreditgroup.eu https://qgp-e2e.intranet.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://ebanking-it.unicreditgroup.eu https://ebanking-ro.unicreditgroup.eu https://ebanking-ae.unicreditgroup.eu https://ebanking-hu.unicreditgroup.eu https://ebanking-hr.unicreditgroup.eu https://ebanking-si.unicreditgroup.eu https://ebanking-cz.unicreditgroup.eu https://ebanking-sk.unicreditgroup.eu https://ebanking-sg.unicreditgroup.eu https://ebanking-cn.unicreditgroup.eu https://ebanking-us.unicreditgroup.eu https://ebanking-at.unicreditgroup.eu https://ebanking-hk.unicreditgroup.eu https://ebanking-uk.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://hv-wks-prd.prod-de.ocp.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://uchedge.unicredit.eu https://payfx.unicredit.eu ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; worker-src 'self' blob: ; report-uri https://a8f9bbf95aafc2df060399368dd98bb7.report-uri.com/r/d/csp/reportOnly;
X-Client-Network: internet
Server-Timing: dtSInfo;desc="1"
Set-Cookie: browserPreferredLanguage=en;Path=/;Secure;Version=1
dtCookie=v_4_srv_4_sn_D3B852D6457641B0FC6CA1AA33152413_perc_100000_ol_0_mul_1_app-3A270abc028968e80d_1; Path=/; Domain=.unicreditgroup.eu
TS0102ee36=01357f8a0323643f5a4041dfca248a7b7428af94710abed6828e45d73cac1d366cafbc33f5b481b5f2ebdd4f1612dca6d8ba446644; Path=/; Secure; HTTPOnly
TS013beec5=01357f8a0323643f5a4041dfca248a7b7428af94710abed6828e45d73cac1d366cafbc33f5b481b5f2ebdd4f1612dca6d8ba446644; path=/; domain=.unicreditgroup.eu; HTTPonly; Secure
Keep-Alive: timeout=10, max=96
Connection: Keep-Alive
Content-Type: image/x-icon
Content-Language: en-US
Transfer-Encoding: chunked

alhujielanmedical.com/index_files/login.html

198.12.252.76

200 OK

311 kB

URL HTTP/1.1
alhujielanmedical.com/index_files/login.html
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6348)
Size
311 kB (311007 bytes)
Hash
7e60f8211c45d73208df975d8081775e
edbcc0d7cb92d625eb6ab3e9efa152ba7d053fdf
975c05fdeaf6732c79a9e6f06ffa035f0437a3814009ec3986e7e2ffa6097a2b

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/login.html HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:16 GMT
Server: Apache
Last-Modified: Tue, 27 Sep 2022 14:01:25 GMT
Accept-Ranges: bytes
Content-Length: 311007
Keep-Alive: timeout=10
Connection: Keep-Alive
Content-Type: text/html

alhujielanmedical.com/portal/login.html/images/am/QGP-icon01.gif?991x=Ready&1664357534718

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/portal/login.html/images/am/QGP-icon01.gif?991x=Ready&1664357534718
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft

HTTP Headers

GET /portal/login.html/images/am/QGP-icon01.gif?991x=Ready&1664357534718 HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/index_files/login.html

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:17 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7942
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 09:32:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7942
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 09:32:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7942
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 09:32:17 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8500 bytes)
Hash
6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
age: 42199
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9733 bytes)
Hash
f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: L2Of12XTKmTF2EPL4MHpJvBW7GNS8gSRs3FuUMB-RUpTZaY8ew_o_w==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:26:00 GMT
age: 14777
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11314 bytes)
Hash
ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 0ceafc65-764c-4367-b031-257061eb65d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF00oAMFUpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-0d46481b7394081b14a81131;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ve8l6PxpMuBLt5BxwywNpqM2ISt0zy2r_gweYnVw4X65PBEhpMbckg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:00 GMT
age: 42377
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7359 bytes)
Hash
46dc8f1499f4de5f03bd87a68c3c6c7b
0cd28a243f9704140ccb9eb1415a77fcccc7cf87
3d7a5cdc0812857efabd7ab941aea6d6582790b86a9587809d222c0a8546262b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7359
x-amzn-requestid: 6e3123b2-ea7e-4e3e-8399-19a66d27923f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34CEYtIAMF01w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d00-5995316c70da7a0c460ac432;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t_uz9vKifWkMj014gCS83STU-fnM39a49_LB5By3j9NqLpqfl8tKSA==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:38 GMT
age: 41679
etag: "0cd28a243f9704140ccb9eb1415a77fcccc7cf87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13299 bytes)
Hash
ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
age: 42133
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12016 bytes)
Hash
4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 42219
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

alhujielanmedical.com/index_files/itasec-bundle.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/itasec-bundle.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/itasec-bundle.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/index_files/login.html

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:17 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

alhujielanmedical.com/index_files/psf.screen.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/psf.screen.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/psf.screen.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/index_files/login.html

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:17 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

corporateportal.unicreditgroup.eu/portal/italy/images/login/banner.jpg

193.193.173.143

200 OK

321 kB

URL HTTP/1.1
corporateportal.unicreditgroup.eu/portal/italy/images/login/banner.jpg
IP
193.193.173.143:0
ASN
#12428 UniCredit Business Integrated Solutions S.C.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size
321 kB (320597 bytes)
Hash
4f89e101f7abcdc9839a25611375e750
5915cdeeb75809d4d6c4bae27506943a084cee78
422b411841681bd62096dd81c265aa095ff1ef0d8ce8351e79f40b1fbfa86f27

HTTP Headers

GET /portal/italy/images/login/banner.jpg HTTP/1.1
Host: corporateportal.unicreditgroup.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://corporateportal.unicreditgroup.eu/portal/italy/styles/login.min.css
Connection: keep-alive
Cookie: JSESSIONID=0000K-6QZ5FOfIK4TCw_TfmgioO:1e32rsdnu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 09:32:16 GMT
Strict-Transport-Security: max-age=31536000; preload
X-OneAgent-JS-Injection: true
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: no-transform, public, max-age=14400, no-cache=set-cookie
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Access-Control-Allow-Credentials: true
X-QGP-Client-OS: Linux
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.unicreditgroup.eu https://*.unicreditcorporate.it https://*.unicredit.it ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; upgrade-insecure-requests ; worker-src 'self' blob: ;
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval'; child-src 'self' blob: https://ebanking-at.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://api.digital-portal.hv.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://ebanking-it.unicreditgroup.eu https://onlineaggregator.unicredit.eu https://usf-e2e.api.intranet.unicreditgroup.eu https://uchedge.unicredit.eu ; frame-src 'self' https://online-smallbusiness.unicredit.it https://corporateportal.unicreditgroup.eu https://online.bankaustria.at https://online.unicreditcorporate.it https://unigeb.unicreditcorporate.it https://usf-e2e.api.unicreditgroup.eu https://qgp-e2e.intranet.unicreditgroup.eu https://ebanking-de.unicreditgroup.eu https://ebanking-it.unicreditgroup.eu https://ebanking-ro.unicreditgroup.eu https://ebanking-ae.unicreditgroup.eu https://ebanking-hu.unicreditgroup.eu https://ebanking-hr.unicreditgroup.eu https://ebanking-si.unicreditgroup.eu https://ebanking-cz.unicreditgroup.eu https://ebanking-sk.unicreditgroup.eu https://ebanking-sg.unicreditgroup.eu https://ebanking-cn.unicreditgroup.eu https://ebanking-us.unicreditgroup.eu https://ebanking-at.unicreditgroup.eu https://ebanking-hk.unicreditgroup.eu https://ebanking-uk.unicreditgroup.eu https://api.communication-suite.hv.unicreditgroup.eu https://hv-wks-prd.prod-de.ocp.unicreditgroup.eu https://digital-portal.hv.unicreditgroup.eu https://uchedge.unicredit.eu https://payfx.unicredit.eu ; frame-ancestors 'self' https://corporateportal.unicreditgroup.eu https://online.unicreditcorporate.it https://api.communication-suite.hv.unicreditgroup.eu https://online.bankaustria.at https://unico-wp95.bankaustria.it https://usf-e2e.api.unicreditgroup.eu https://uctradefinancegate-1.unicredit.eu https://v-accounting.bankaustria.at https://v-accounting.unicreditgroup.eu https://uctrader.unicreditgroup.eu https://uctradefinancegate-hv-1.unicredit.eu https://unicreditbankag.we-trade.com https://unicredit.we-trade.com https://unigeb.unicreditcorporate.it https://geb.unicredit.it https://online-smallbusiness.unicredit.it https://unigeb.usinet.it https://corporateportal.unicreditgroup.cn https://smartfactor.ucf.it ; worker-src 'self' blob: ; report-uri https://a8f9bbf95aafc2df060399368dd98bb7.report-uri.com/r/d/csp/reportOnly;
X-Client-Network: internet
Server-Timing: dtSInfo;desc="1"
Set-Cookie: browserPreferredLanguage=en;Path=/;Secure;Version=1
dtCookie=v_4_srv_14_sn_B1487EE7CBB02F91077727D7537CF562_perc_100000_ol_0_mul_1_app-3A270abc028968e80d_1; Path=/; Domain=.unicreditgroup.eu
TS0102ee36=01357f8a031f07df3f50cc921379569a358ad96ece2b75c54c4b224b906a17ceaa7f2e9d125c32a4638e6466f7313c2ff602777028; Path=/; Secure; HTTPOnly
TS013beec5=01357f8a031f07df3f50cc921379569a358ad96ece2b75c54c4b224b906a17ceaa7f2e9d125c32a4638e6466f7313c2ff602777028; path=/; domain=.unicreditgroup.eu; HTTPonly; Secure
Keep-Alive: timeout=10, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
Content-Language: en-US
Transfer-Encoding: chunked

alhujielanmedical.com/index_files/itasec-bundle.js.download

198.12.252.76

404 Not Found

36 B

URL HTTP/1.1
alhujielanmedical.com/index_files/itasec-bundle.js.download
IP
198.12.252.76:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
36 B (36 bytes)
Hash
6a83fd075b3bf9a252aec307795c05b4
993d53f565edcb12f46eaa6a9e8b4c1639ef7185
4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Detections

Analyzer	Verdict	Alert
openphish	UniCredit Bank Aktiengesellschaft
fortinet	Phishing

HTTP Headers

GET /index_files/itasec-bundle.js.download HTTP/1.1
Host: alhujielanmedical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alhujielanmedical.com/index_files/login.html

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 09:32:17 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=10
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (97)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type