Report - uspsservicetrack.blogspot.co.il/

Report Overview

Visited public
2024-11-28 13:47:51
Tags
URL
uspsservicetrack.blogspot.co.il/
Finishing URL
uspsservicetrack.blogspot.com/
IP / ASN
142.250.74.65
#15169 GOOGLE
Title
uspsservicetrack

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
uspsservicetrack.blogspot.com	unknown	2000-07-31	2023-01-20	2024-11-28	1.9 kB	22 kB	172.217.21.161
www.blogger.com	8975	1999-06-22	2012-05-22	2024-11-28	910 B	56 kB	216.58.207.233
resources.blogblog.com	13274	2000-09-15	2017-01-30	2024-11-28	457 B	48 kB	216.58.207.233
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-11-27	1.1 kB	39 kB	142.250.74.67
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-11-27	448 B	4.2 kB	142.250.74.35
themes.googleusercontent.com	9661	2008-11-17	2012-05-24	2024-11-28	537 B	229 kB	142.250.74.33
uspsservicetrack.blogspot.co.il	unknown	unknown	2024-11-28	2024-11-28	486 B	701 B	172.217.21.161

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-11-28	medium	uspsservicetrack.blogspot.co.il/	United States Postal Service
2024-11-28	medium	uspsservicetrack.blogspot.com/	United States Postal Service
2024-11-28	medium	uspsservicetrack.blogspot.com/	United States Postal Service
2024-11-28	medium	uspsservicetrack.blogspot.com/	United States Postal Service
2024-11-28	medium	uspsservicetrack.blogspot.com/	United States Postal Service

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	uspsservicetrack.blogspot.com/	275 B	2023-03-07 01:02	2024-11-28 13:47
Pretty URL uspsservicetrack.blogspot.com/ IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2024-11-28 13:47 Times Seen29112 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	uspsservicetrack.blogspot.com/	798 B	2024-02-05 14:31	2024-11-28 13:47
Pretty URL uspsservicetrack.blogspot.com/ IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-05 14:31 Last Seen2024-11-28 13:47 Times Seen10390 Hash f488687f23b8b2ad6f1d05c2d07b2735 9fc276898b78f841cb27d76da4f17dbe8c77aefe 9153ade8a8e5db45d8092225fe85f04f6af83889149e2f735d1815268a1003c9 Loading...

	www.blogger.com/static/v1/widgets/984859869-widgets.js	147 kB	2024-11-15 12:11	2024-11-28 13:47
Pretty URL www.blogger.com/static/v1/widgets/984859869-widgets.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-15 12:11 Last Seen2024-11-28 13:47 Times Seen52 Hash 2a951b80caf40287497ddd3b99022a4d 26d08691f48183d1a82c99cbc6b33e51f4e6d1fc 57359a92f0b1c5eefc5e43e18844dd515d8402c9e8294b54b756fef1e98d9859 Loading...

	uspsservicetrack.blogspot.com/	7.0 kB	2024-11-28 13:45	2024-11-28 13:47
Pretty URL uspsservicetrack.blogspot.com/ IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-11-28 13:45 Last Seen2024-11-28 13:47 Times Seen2 Hash 2b4c5f8baa9db115f4d2e2dcedc85aa7 f551574d9eb0a3ffac171f2b2c3babf847df64d2 8df6b11fd4b100bad5ae5883af277d72d1ad1efce897dc4d95f63f931eccf2de Loading...

	uspsservicetrack.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07 01:02	2024-11-28 13:47
Pretty URL uspsservicetrack.blogspot.com/js/cookienotice.js IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2024-11-28 13:47 Times Seen34410 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	resources.blogblog.com/blogblog/data/res/3315978748-indie_compiled.js	140 kB	2024-11-15 12:11	2024-11-28 13:47
Pretty URL resources.blogblog.com/blogblog/data/res/3315978748-indie_compiled.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-15 12:11 Last Seen2024-11-28 13:47 Times Seen33 Hash a8a2c420b728da5ba0a7970c60c373a1 23fda9cea46a45d627b7903d225caecee7c68d26 0a75fa76fd28b38175d6b21eaaaf3160b6ea306d9a426414ab292df765a0a869 Loading...

	www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js	12 kB	2023-04-05 03:08	2024-11-28 13:47
Pretty URL www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 03:08 Last Seen2024-11-28 13:47 Times Seen7574 Hash a1a2e5bd3af1cf7d730f15dd7e308a1b 6ab91a37884d5f70808157c5cb6ed7345d8f537a d5ecc1fcccdbc32c37aa7e46793befad6d98ff1a85d1760d732d710faf49a08e Loading...

HTTP Transactions (12)

URL IP Response Size

uspsservicetrack.blogspot.co.il/

172.217.21.161

302 Found

202 B

URL User Request GET HTTP/2
uspsservicetrack.blogspot.co.il/
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15
ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT

File type
HTML document, ASCII text
Size
202 B (202 bytes)
Hash
f2788644b2d3d1c48e325bd1a14ddc5a
76028ae933a4ec3cf3c5bda65848f51cc774e294
666f4c66a112c802db8b077a4cd2222cbfae15dc20423db9166d97959b665c97

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET / HTTP/1.1
Host: uspsservicetrack.blogspot.co.il
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://uspsservicetrack.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Thu, 28 Nov 2024 13:47:25 GMT
expires: Thu, 28 Nov 2024 13:47:25 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 202
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uspsservicetrack.blogspot.com/

172.217.21.161

200 OK

15 kB

URL User Request GET HTTP/2
uspsservicetrack.blogspot.com/
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15
ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT

File type
HTML document, ASCII text, with very long lines (6012)
Size
15 kB (14784 bytes)
Hash
9a6d7076d009b7ae26cc72fdda1b845f
8e06736860fd4ed94446399fab55b84f1e4e0c3b
5e6806b7130bd04a30a45e31a371c977347f946e9f20371ee9c36cda3ea97c36

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET / HTTP/1.1
Host: uspsservicetrack.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 28 Nov 2024 13:47:26 GMT
date: Thu, 28 Nov 2024 13:47:26 GMT
cache-control: private, max-age=0
last-modified: Mon, 16 Sep 2024 07:57:39 GMT
etag: W/"cf3c01870f7b1ec7d2c9091c4ec8d1987ea1afe35cce97ff8ebc3573b5656c4a"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 14784
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uspsservicetrack.blogspot.com/js/cookienotice.js

172.217.21.161

200 OK

2.0 kB

URL GET HTTP/3
uspsservicetrack.blogspot.com/js/cookienotice.js
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15
ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT

File type
JavaScript source, ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: uspsservicetrack.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Thu, 28 Nov 2024 13:47:26 GMT
expires: Thu, 05 Dec 2024 13:47:26 GMT
cache-control: public, max-age=604800
last-modified: Thu, 28 Nov 2024 07:54:48 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uspsservicetrack.blogspot.com/responsive/sprite_v1_6.css.svg

172.217.21.161

200 OK

2.2 kB

URL GET HTTP/3
uspsservicetrack.blogspot.com/responsive/sprite_v1_6.css.svg
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15
ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2244 bytes)
Hash
d4dcfc8144f556815c7a1d84ed4e959e
22088bd6cdf970dcf7bfab9a74a4768548ca8890
73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: uspsservicetrack.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: image/svg+xml
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
date: Thu, 28 Nov 2024 13:47:26 GMT
expires: Thu, 05 Dec 2024 13:47:26 GMT
cache-control: public, max-age=604800
last-modified: Wed, 27 Nov 2024 18:56:15 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/widgets/984859869-widgets.js

216.58.207.233

200 OK

52 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/984859869-widgets.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subject*.blogger.com
Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08
ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT

File type
JavaScript source, ASCII text, with very long lines (4137)
Size
52 kB (51859 bytes)
Hash
2a951b80caf40287497ddd3b99022a4d
26d08691f48183d1a82c99cbc6b33e51f4e6d1fc
57359a92f0b1c5eefc5e43e18844dd515d8402c9e8294b54b756fef1e98d9859

HTTP Headers

GET /static/v1/widgets/984859869-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Nov 2024 11:41:19 GMT
expires: Sat, 22 Nov 2025 11:41:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Nov 2024 14:55:21 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 525967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

resources.blogblog.com/blogblog/data/res/3315978748-indie_compiled.js

216.58.207.233

200 OK

48 kB

URL GET HTTP/2
resources.blogblog.com/blogblog/data/res/3315978748-indie_compiled.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subject*.blogger.com
Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08
ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT

File type
JavaScript source, ASCII text, with very long lines (2005)
Size
48 kB (47800 bytes)
Hash
a8a2c420b728da5ba0a7970c60c373a1
23fda9cea46a45d627b7903d225caecee7c68d26
0a75fa76fd28b38175d6b21eaaaf3160b6ea306d9a426414ab292df765a0a869

HTTP Headers

GET /blogblog/data/res/3315978748-indie_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 47800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Nov 2024 23:51:15 GMT
expires: Fri, 29 Nov 2024 23:51:15 GMT
cache-control: public, max-age=604800
last-modified: Fri, 22 Nov 2024 17:56:58 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 482171
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.67

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52
ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
Size
18 kB (18536 bytes)
Hash
8eff0b8045fd1959e117f85654ae7770
227fee13ceb7c410b5c0bb8000258b6643cb6255
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

HTTP Headers

GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uspsservicetrack.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Nov 2024 19:08:18 GMT
expires: Sat, 22 Nov 2025 19:08:18 GMT
cache-control: public, max-age=31536000
age: 499148
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js

142.250.74.35

200 OK

3.5 kB

URL GET HTTP/2
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52
ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (10473)
Size
3.5 kB (3475 bytes)
Hash
158013acb7e269a3dbe18de855656c97
08fa355584fc849539b3f04589ae6f61eb4a7d98
92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94

HTTP Headers

GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Nov 2024 13:47:26 GMT
expires: Thu, 28 Nov 2024 13:47:26 GMT
cache-control: public, max-age=0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.67

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52
ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18596, version 1.0
Size
19 kB (18596 bytes)
Hash
c83e4437a53d7f849f9d32df3d6b68f3
fabea5ad92ed3e2431659b02e7624df30d0c6bbc
d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb

HTTP Headers

GET /s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uspsservicetrack.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Nov 2024 19:03:05 GMT
expires: Sat, 22 Nov 2025 19:03:05 GMT
cache-control: public, max-age=31536000
age: 499461
last-modified: Thu, 01 Aug 2024 20:41:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600

142.250.74.33

200 OK

228 kB

URL GET HTTP/2
themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint1E:EC:6F:A8:CB:AA:F1:D0:22:B4:B9:38:61:D0:49:58:42:5C:6A:6F
ValidityMon, 21 Oct 2024 08:37:53 GMT - Mon, 13 Jan 2025 08:37:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Sunset afterglow and twlight dunes in White Sands National Monument, software=Picasa], baseline, precision 8, 1600x1067, components 3
Size
228 kB (228521 bytes)
Hash
e66ef1f4c654be20558150214aa2b85a
ad1dfbefad9a21e48aeeac1bae9f8a5b8ea1ef3c
6a5482e0dc4e77a6be20281b13d7ef4d8b67521e73b66bc633ea4e4242934be9

HTTP Headers

GET /image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 29 Nov 2024 13:47:26 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Thu, 28 Nov 2024 13:47:26 GMT
server: fife
content-length: 228521
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/img/blogger_logo_round_35.png

216.58.207.233

200 OK

2.5 kB

URL GET HTTP/3
www.blogger.com/img/blogger_logo_round_35.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subject*.blogger.com
Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08
ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT

File type
PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced
Size
2.5 kB (2531 bytes)
Hash
838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a

HTTP Headers

GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Nov 2024 13:33:31 GMT
expires: Fri, 29 Nov 2024 13:33:31 GMT
cache-control: public, max-age=604800
last-modified: Fri, 22 Nov 2024 06:55:00 GMT
content-type: image/png
age: 519236
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uspsservicetrack.blogspot.com/favicon.ico

172.217.21.161

200 OK

412 B

URL GET HTTP/3
uspsservicetrack.blogspot.com/favicon.ico
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Requested by
https://uspsservicetrack.blogspot.com/
Certificate
IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15
ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel
Size
412 B (412 bytes)
Hash
59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	United States Postal Service

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: uspsservicetrack.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsservicetrack.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/x-icon
expires: Thu, 28 Nov 2024 13:47:27 GMT
date: Thu, 28 Nov 2024 13:47:27 GMT
cache-control: private, max-age=86400
last-modified: Mon, 16 Sep 2024 07:57:39 GMT
etag: W/"cf3c01870f7b1ec7d2c9091c4ec8d1987ea1afe35cce97ff8ebc3573b5656c4a"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections