Report - www.biblioteca.sicrediprogresso.com.br/

Report Overview

Submitted URL
www.biblioteca.sicrediprogresso.com.br/
IP
185.245.180.42
ASN
#47583 Hostinger International Limited
Submitted
2023-06-01 23:04:02
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.biblioteca.sicrediprogresso.com.br	unknown	2018-01-24	2022-04-18	2023-05-02	6.8 kB	156 kB	185.245.180.42
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-31	2.0 kB	4.2 kB	142.250.74.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-01	1.6 kB	26 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-31	513 B	9.4 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/
2023-06-01	medium	www.biblioteca.sicrediprogresso.com.br/

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.validate.js	49 kB	2023-05-03	2024-03-02
Pretty URL www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.validate.js IP 185.245.180.42 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-03 02:25:51 Last Seen2024-03-02 07:50:34 Times Seen24 Hash 777540dfaf6485b1b69cb11b476596c6 6b27a3a4e804870d36d2ee899d4cf9691457c963 2601f129ddcbdd25cf1b2ed92102bb795c57192f825ef4614916b908737d5640 Loading...

	www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/custom.js	8.2 kB	2023-03-11	2024-03-02
Pretty URL www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/custom.js IP 185.245.180.42 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:40:48 Last Seen2024-03-02 07:50:34 Times Seen68 Hash b1a5cdc47279076afff92b686a994960 68818645865811b56b40b3b3dda3c732bcd3bad2 c35355a763e74bbd9a72e94aa3775296ca065a4fb0c9a17d91bfeeeb7aed1df6 Loading...

	www.biblioteca.sicrediprogresso.com.br/	0 B	2023-03-07	2024-04-27
Pretty URL www.biblioteca.sicrediprogresso.com.br/ IP 185.245.180.42 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 04:41:29 Times Seen37111259 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.min.js	87 kB	2023-03-07	2024-04-27
Pretty URL www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.min.js IP 185.245.180.42 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-27 04:17:34 Times Seen106435 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/popper.min.js	19 kB	2023-03-07	2024-04-25
Pretty URL www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/popper.min.js IP 185.245.180.42 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:10 Last Seen2024-04-25 13:48:33 Times Seen674 Hash 135fa9e662ea1d3b1277246db64b8372 af20d218eb3097c5d752e22a0a5712c8df9c127c 5353f2b2a0fc4032834e44c622da9f519ca08b12252c849389fcf8fa60fe8c42 Loading...

	www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/bootstrap.min.js	49 kB	2023-03-07	2024-04-25
Pretty URL www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/bootstrap.min.js IP 185.245.180.42 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:55 Last Seen2024-04-25 08:42:08 Times Seen392 Hash fe1457ee36b1ce754d11d5708492c960 03efb6335562caf52cb91eb3e7c2f5f18c62fb96 65f97dab23e8383e4f9e5b07722014f704b9cb5dc820086014ec715c55e75e33 Loading...

	www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/plugins.js	81 kB	2023-03-11	2024-03-02
Pretty URL www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/plugins.js IP 185.245.180.42 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:40:48 Last Seen2024-03-02 07:50:34 Times Seen62 Hash 7e69d9cd5193824963c11aad7840191f 1184abb512d85588b5feb20fb3a9734b2452d406 2f0be7626fc56feccf3ea6e6250f4bdce5825e1bafced82bfe556460a20137ae Loading...

HTTP Transactions (22)

URL IP Response Size

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/css/bootstrap.min.css

185.245.180.42

200 OK

18 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/css/bootstrap.min.css
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
ASCII text, with very long lines (65325)
Size
18 kB (18213 bytes)
Hash
7952b62b3f59c69bd2e19c1e8de7b5d7
162e8c0ba749d132c182f233682c2070e15fa55b
2f8d728d935edbf2aeae36b6b3d96634885dbd474ddd1cc7d80711449109221b

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/css/bootstrap.min.css HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18213
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/css/style.css

185.245.180.42

200 OK

9.6 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/css/style.css
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
ASCII text, with very long lines (59327), with no line terminators
Size
9.6 kB (9611 bytes)
Hash
121b175e0cce89a3ed2943159b504985
e78a77017c290d9f2a40f0b24998a9b7fad68518
fd95dd0942752db7e0efa413793ac8612986eecaac5e70b6067da6aa6a156180

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/css/style.css HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9611
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:03:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:03:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/popper.min.js

185.245.180.42

200 OK

6.6 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/popper.min.js
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
ASCII text, with very long lines (19015)
Size
6.6 kB (6598 bytes)
Hash
135fa9e662ea1d3b1277246db64b8372
af20d218eb3097c5d752e22a0a5712c8df9c127c
5353f2b2a0fc4032834e44c622da9f519ca08b12252c849389fcf8fa60fe8c42

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/js/popper.min.js HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6598
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/images/site-view-options/logo-cor.png

185.245.180.42

200 OK

3.6 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/images/site-view-options/logo-cor.png
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
PNG image data, 157 x 39, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3598 bytes)
Hash
a8fab209b08f52fae904232ba583584f
214f7dde09155dc2efc9d4b854fc6c0e50230725
9d4df1426a4c7b7c42f31c4a804da017facb3377ecfb05555610f4cb8db80c30

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /images/site-view-options/logo-cor.png HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: image/png
last-modified: Thu, 27 May 2021 11:49:36 GMT
accept-ranges: bytes
content-length: 3598
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/bootstrap.min.js

185.245.180.42

200 OK

12 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/bootstrap.min.js
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
ASCII text, with very long lines (48664)
Size
12 kB (12401 bytes)
Hash
fe1457ee36b1ce754d11d5708492c960
03efb6335562caf52cb91eb3e7c2f5f18c62fb96
65f97dab23e8383e4f9e5b07722014f704b9cb5dc820086014ec715c55e75e33

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/js/bootstrap.min.js HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12401
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/css/plugins.css

185.245.180.42

200 OK

24 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/css/plugins.css
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
ASCII text, with very long lines (51483)
Size
24 kB (23455 bytes)
Hash
1065ff4085f0a4b1fc48cb5d93d961ea
62d74507556ed2f4278275d59ab62857174220d3
704653f76f28e2fa142345b97b08fe28aafe8791099933ecba1020924806889b

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/css/plugins.css HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23455
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.min.js

185.245.180.42

200 OK

30 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.min.js
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
ASCII text, with very long lines (65451)
Size
30 kB (29489 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/js/jquery.min.js HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29489
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/plugins.js

185.245.180.42

200 OK

22 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/plugins.js
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
Unicode text, UTF-8 text, with very long lines (24427)
Size
22 kB (22271 bytes)
Hash
7e69d9cd5193824963c11aad7840191f
1184abb512d85588b5feb20fb3a9734b2452d406
2f0be7626fc56feccf3ea6e6250f4bdce5825e1bafced82bfe556460a20137ae

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/js/plugins.js HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22271
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/custom.js

185.245.180.42

200 OK

1.8 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/custom.js
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
ASCII text
Size
1.8 kB (1755 bytes)
Hash
b1a5cdc47279076afff92b686a994960
68818645865811b56b40b3b3dda3c732bcd3bad2
c35355a763e74bbd9a72e94aa3775296ca065a4fb0c9a17d91bfeeeb7aed1df6

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/js/custom.js HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1755
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.validate.js

185.245.180.42

200 OK

12 kB

URL GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/themes/default/resources/js/jquery.validate.js
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
Unicode text, UTF-8 text, with very long lines (512)
Size
12 kB (12315 bytes)
Hash
cde3fd91a08d04f3974cc3ad4fdd59f3
068a7b930039e36a648f1fcfa34d409eaa5add78
29091b2c0ff7848dea58987066cf1640fcdcda2b3181b3f067098397fc7c50f1

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /themes/default/resources/js/jquery.validate.js HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Dec 2018 17:04:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12315
date: Thu, 01 Jun 2023 23:03:45 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biblioteca.sicrediprogresso.com.br
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 20:08:46 GMT
expires: Wed, 29 May 2024 20:08:46 GMT
cache-control: public, max-age=31536000
age: 183300
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biblioteca.sicrediprogresso.com.br
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:16:36 GMT
expires: Thu, 30 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
age: 168430
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat:300,400,400i,500,600,700|Poppins:300,400,400i,500,600,700

142.250.74.74

200 OK

8.8 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat:300,400,400i,500,600,700|Poppins:300,400,400i,500,600,700
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
gzip compressed data, max compression\012- data
Size
8.8 kB (8815 bytes)
Hash
14c0baee2269d300537f9f6a68efb98f
4679a14bc76bfb660988169aa16ba7d91577a11f
1843bcdf5ddcb2e2a0aee92ab0f0f946edc4983434209ba09272692765a96a8a

HTTP Headers

GET /css?family=Montserrat:300,400,400i,500,600,700|Poppins:300,400,400i,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Jun 2023 23:03:45 GMT
date: Thu, 01 Jun 2023 23:03:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.biblioteca.sicrediprogresso.com.br/images/site-view-options/favicon.png

185.245.180.42

200 OK

859 B

URL GET HTTP/3
www.biblioteca.sicrediprogresso.com.br/images/site-view-options/favicon.png
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
859 B (859 bytes)
Hash
93b5aa06629613877143ea285d690ffa
571050b4cf92c7a4274145218372ff58e6edcc7f
11719a0d0e0d76fd9a9063f197accb6c6bc4db25c636723f6bc684586ee2d6bb

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET /images/site-view-options/favicon.png HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.biblioteca.sicrediprogresso.com.br/
Cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; activeLanguage=pt_PT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Jun 2023 23:03:46 GMT
content-type: image/png
last-modified: Thu, 27 May 2021 11:50:57 GMT
accept-ranges: bytes
content-length: 859
date: Thu, 01 Jun 2023 23:03:46 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

www.biblioteca.sicrediprogresso.com.br/

185.245.180.42

200 OK

9.2 kB

URL User Request GET HTTP/2
www.biblioteca.sicrediprogresso.com.br/
IP
185.245.180.42:443
ASN
#47583 Hostinger International Limited

Certificate
IssuerLet's Encrypt
Subjectwww.live.sicrediprogresso.com.br
FingerprintE4:7D:1C:13:51:C5:7E:EC:F2:F2:80:69:FC:03:9D:8A:10:C1:B0:B4
ValidityWed, 19 Apr 2023 13:59:33 GMT - Tue, 18 Jul 2023 13:59:32 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9630), with no line terminators
Size
9.2 kB (9188 bytes)
Hash
7bac0079f44f2d33d4c233c0226ecc35
e362eaa6a16afdb7982dcfa1bff16988c445e2ae
db08cb8dc8cc78ef887564f0f7bc3867ba21b0d7350de2092c2618017294ea7b

Detections

Analyzer	Verdict	Alert
openphish	Sicredi

HTTP Headers

GET / HTTP/1.1
Host: www.biblioteca.sicrediprogresso.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=utf-8
set-cookie: PHPSESSID=c3qq2ogofsgnc5odulle0vbgp3; path=/; secure
activeLanguage=pt_PT; secure
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Jun 2023 23:03:44 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.biblioteca.sicrediprogresso.com.br/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biblioteca.sicrediprogresso.com.br
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:16:42 GMT
expires: Thu, 30 May 2024 00:16:42 GMT
cache-control: public, max-age=31536000
age: 168424
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (22)

URL GET HTTP/2

IP

ASN

Requested by