Report - groupbnp.sagradocorpo.com.br/

Report Overview

Submitted URL
groupbnp.sagradocorpo.com.br/
IP
192.185.209.178
ASN
#19871 NETWORK-SOLUTIONS-HOSTING
Submitted
2024-05-07 17:28:10
Access
public
Website Title
BNP Paribas | Ma banque en ligne
Final URL
groupbnp.sagradocorpo.com.br/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
104

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-05-07	451 B	61 kB	104.18.10.207
groupbnp.sagradocorpo.com.br	unknown	unknown	No data	No data	29 kB	1.9 MB	192.185.209.178
code.jquery.com	634	2005-12-10	2012-05-21	2024-05-07	418 B	84 kB	151.101.194.137
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-07	437 B	71 kB	142.250.74.168
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-05-06	520 B	15 kB	104.16.79.73

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas
2024-05-07	medium	groupbnp.sagradocorpo.com.br/	BNP Paribas

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	groupbnp.sagradocorpo.com.br/	1.4 kB	2024-05-07	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/ IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 19:28:18 Last Seen2024-05-14 09:34:24 Times Seen2 Hash b01134f07c6ca62f43295be15946713c e429a802e7ec0803ca834b19db81a8b7c3bedf48 68a651b8a0ac10023741ac130f1422a0063a9b4f929e7496511b17528d56a387 Loading...

	groupbnp.sagradocorpo.com.br/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-19
Pretty URL groupbnp.sagradocorpo.com.br/jquery-3.5.1.min.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-19 17:59:45 Times Seen145603 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	groupbnp.sagradocorpo.com.br/sixth.js	340 B	2024-05-07	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/sixth.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:28:18 Last Seen2024-05-14 09:34:24 Times Seen4 Hash 8bb9f8223834b0e230c68d15d9654bbe 21c9209d5ea57de9f4ecc7092ed257ac7af85cf5 eeef2b02ed936e59a2e36d9a245c8e237c60162e15ac0f2a66c37edc83216214 Loading...

	groupbnp.sagradocorpo.com.br/js/plugins.js	165 kB	2024-05-07	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/js/plugins.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:28:18 Last Seen2024-05-14 09:34:24 Times Seen2 Hash 45200edea8b7a16360866d9bf66ecba3 fb802ada469827c27a25f7f16190d1e734e4a243 19eaeb7668e38c5dc2298fb6443694ed80952c026b95a8781ccb7aeb93b84d22 Loading...

	groupbnp.sagradocorpo.com.br/	41 B	2023-03-07	2024-05-19
Pretty URL groupbnp.sagradocorpo.com.br/ IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:03 Last Seen2024-05-19 12:18:29 Times Seen7251 Hash 2ec370ca0eaf3069dce13df24243d863 64c1919bbb18a6d851d1b7772f830320b8ab5cc1 6a31a3a39783d09cc53dd9e9baeb4a4fa49be602eef90f6bbb9f78af02688064 Loading...

	www.googletagmanager.com/gtag/js?id=UA-23581568-13	195 kB	2024-05-07	2024-05-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-23581568-13 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:28:18 Last Seen2024-05-07 19:28:18 Times Seen2 Hash cd39d6e52a32c6d011db39ee3bb21823 9d5046925ee2c258ab3fc023b834f9e4e6b3ba47 c7c92f7d8dcdaddab0e40877f17ca944801dbcf1cfc41865952b0ff94f8ad083 Loading...

	groupbnp.sagradocorpo.com.br/js/pace.min.js	12 kB	2023-03-07	2024-05-17
Pretty URL groupbnp.sagradocorpo.com.br/js/pace.min.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:25 Last Seen2024-05-17 18:24:36 Times Seen521 Hash 874d8be9cd6d6b72f1d63a5435edf2c3 1d6f79b5757de7cc40dcfded7cfdb067a90810d3 579a10a2485055e988338be054f866cbe713c8510442130cbda0ce11ced6c49f Loading...

	groupbnp.sagradocorpo.com.br/assets/js/swal.js	41 kB	2024-05-07	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/assets/js/swal.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:28:18 Last Seen2024-05-14 09:34:24 Times Seen4 Hash 096da84526e742a22a69cb32862eae52 7297bfc70fc2ba22fd27f2aa44ce902263445ae7 84aa2e2327a6c0c49aef0fb3d24edbfc31e4110ff0da1986e4668ee99ce66431 Loading...

	groupbnp.sagradocorpo.com.br/	996 B	2023-04-07	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/ IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-07 14:44:51 Last Seen2024-05-14 09:34:24 Times Seen3 Hash 2c90461d01092ca852e014deafc5f24f d9d43561c5a079ca03ea67cf045c47390cd00eab 5f3c621dc99a22a197231b2198e25e13bf129dd28065313f5aebb0e476300111 Loading...

	groupbnp.sagradocorpo.com.br/js/main.js	11 kB	2023-12-24	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/js/main.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-24 21:47:21 Last Seen2024-05-14 09:34:24 Times Seen6 Hash 208dd5bac8a3421cc91d12dfaa36fcb7 b1ccaead9fdfe2a82d7616bc0bfd824fafb2dffe 79d9bef0ca0dccd73c8c0758ec6cb869289912cfa4418b62dce57230bfaf6ce1 Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js	60 kB	2023-03-07	2024-05-19
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:23 Last Seen2024-05-19 09:18:53 Times Seen8744 Hash 61f338f870fcd0ff46362ef109d28533 b3c116c65e6f053aaab45e5619a78ec00271a50f 5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-19
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-19 18:01:41 Times Seen350246 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	groupbnp.sagradocorpo.com.br/js/modernizr.js	8.4 kB	2023-03-07	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/js/modernizr.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:50 Last Seen2024-05-14 09:34:24 Times Seen35 Hash c6537b1adb7e309ed5da6b405191d3e9 a3d81ff7a2a28acef6b7e78ed62a809e5f586371 461a476f9db3123182ff2e0556a05c0bd7cd28b0d38976d94593df7e4275120a Loading...

	code.jquery.com/jquery-3.4.1.js	280 kB	2023-03-07	2024-05-18
Pretty URL code.jquery.com/jquery-3.4.1.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:49 Last Seen2024-05-18 20:34:10 Times Seen1516 Hash 11c05eb286ed576526bf4543760785b9 7faa15a054093f3b5d674e63b6567c835a6fa217 5a93a88493aa32aab228bf4571c01207d3b42b0002409a454d404b4d8395bd55 Loading...

	groupbnp.sagradocorpo.com.br/	159 B	2023-04-14	2024-05-14
Pretty URL groupbnp.sagradocorpo.com.br/ IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-14 11:23:37 Last Seen2024-05-14 09:34:24 Times Seen3 Hash 1daac4d5a7cdfb05ca45a0e93d48ec23 4d328d04cd7b0f4bbd8be257d2c607fa4cbe48f6 ac9aced44afba538ada3f171760dece02384a67ca49d162052787b45d5f28ed3 Loading...

	groupbnp.sagradocorpo.com.br/js/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-05-19
Pretty URL groupbnp.sagradocorpo.com.br/js/jquery-3.2.1.min.js IP 192.185.209.178 ASN #19871 NETWORK-SOLUTIONS-HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-19 17:47:38 Times Seen68036 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854	20 kB	2023-07-20	2024-05-14
Pretty URL static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-20 20:39:44 Last Seen2024-05-14 09:34:24 Times Seen14856 Hash efeb2542712dce8a2c51cf68396e4a05 ac9ce350c598644c7b7f6186aaf0368eb077d396 c235f21017bcc11fcaa31d7dfd9855aaebcbf5f6d7ee9bf9f2e98a910907c391 Loading...

	groupbnp.sagradocorpo.com.br/sandbox%20eval%20code	147 B	2023-04-11	2024-05-19
Pretty URL groupbnp.sagradocorpo.com.br/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-19 18:01:39 Times Seen350762 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

		Size	First Seen	Last Seen
	#1 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11	2024-05-19
Pretty Observations First Seen2023-03-11 11:15:57 Last Seen2024-05-19 17:24:43 Times Seen2408 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

HTTP Transactions (56)

URL IP Response Size

groupbnp.sagradocorpo.com.br/

192.185.209.178

200 OK

10 kB

URL User Request GET HTTP/2
groupbnp.sagradocorpo.com.br/
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (1503)
Size
10 kB (10249 bytes)
Hash
9edc461f9174cc69d7749962a3e7650c
505352270ffc7e50e8c6c794eea2ca1a83113a9b
1f993ef36a09c86ab9050218fdd3865a2dfb8b6cfebd71ae534e815c1d3fb636

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET / HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33; path=/
vary: Accept-Encoding
content-encoding: gzip
content-length: 10249
content-type: text/html; charset=UTF-8
date: Tue, 07 May 2024 17:27:41 GMT
server: Apache
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.4.1.js

151.101.194.137

200 OK

83 kB

URL GET HTTP/2
code.jquery.com/jquery-3.4.1.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
83 kB (82889 bytes)
Hash
11c05eb286ed576526bf4543760785b9
7faa15a054093f3b5d674e63b6567c835a6fa217
5a93a88493aa32aab228bf4571c01207d3b42b0002409a454d404b4d8395bd55

HTTP Headers

GET /jquery-3.4.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4472c"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 17:27:42 GMT
age: 20302112
x-served-by: cache-lga21923-LGA, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 72268
x-timer: S1715102862.384946,VS0,VE0
vary: Accept-Encoding
content-length: 82889
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/base.css

192.185.209.178

200 OK

3.0 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/base.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
3.0 kB (3046 bytes)
Hash
3b3e07b70d818e0d501163b8ce611c2e
3e971d8a0b471509f0e3982a42613fae877f00a9
a8feb096eb9bc83c97b2d20df1e5a68a699290c194cc86a923e98c1b852729b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/base.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3046
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/style.css

192.185.209.178

200 OK

2.0 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/style.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
2.0 kB (2007 bytes)
Hash
1247669685478aa6839c93e80eb79e82
c6883c019a7a79e8ac829e1d796653be9b0a5907
bd565dfe920209779262332d5d1e3a45da25d005fcd6ca8f415f9d54ca74c3dc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /style.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:05:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2007
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/style.css

192.185.209.178

200 OK

1.0 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/style.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
1.0 kB (1005 bytes)
Hash
ccedacd70468dba389eaaf927167cfc5
53c35d720e37280e955c556eae6eed12830a09b9
80a1eea1f0c4f49855973401d9ab15404942df1a3ebb0cfa088016616cb8f472

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/style.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1005
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/vendor.css

192.185.209.178

200 OK

6.2 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/vendor.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
6.2 kB (6215 bytes)
Hash
7c012f14c6130607ebe086dc132b4924
187b82cf844bcd05a0c05668e3cc38b271a6cf9a
950992126ff5f1df0cbdfbe3ab09458e761bd4585f14da7c4953388b78045e84

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/vendor.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6215
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/main.css

192.185.209.178

200 OK

16 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/main.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
16 kB (16367 bytes)
Hash
764569f934f8e2493c7c85ecc96910fb
4374a8c942e8b0c916739ef2c35f60636bf18026
44822586c491af1f6d058e491924a649278262f9a0a425d448cd53920402a871

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/main.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16367
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/js/pace.min.js

192.185.209.178

200 OK

5.1 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/js/pace.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JavaScript source, ASCII text, with very long lines (12345)
Size
5.1 kB (5078 bytes)
Hash
874d8be9cd6d6b72f1d63a5435edf2c3
1d6f79b5757de7cc40dcfded7cfdb067a90810d3
579a10a2485055e988338be054f866cbe713c8510442130cbda0ce11ced6c49f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /js/pace.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5078
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/js/modernizr.js

192.185.209.178

200 OK

3.8 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/js/modernizr.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JavaScript source, ASCII text, with very long lines (8121)
Size
3.8 kB (3803 bytes)
Hash
c6537b1adb7e309ed5da6b405191d3e9
a3d81ff7a2a28acef6b7e78ed62a809e5f586371
461a476f9db3123182ff2e0556a05c0bd7cd28b0d38976d94593df7e4275120a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /js/modernizr.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3803
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/assets/js/swal.js

192.185.209.178

200 OK

15 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/assets/js/swal.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JavaScript source, ASCII text, with very long lines (40796), with no line terminators
Size
15 kB (14856 bytes)
Hash
096da84526e742a22a69cb32862eae52
7297bfc70fc2ba22fd27f2aa44ce902263445ae7
84aa2e2327a6c0c49aef0fb3d24edbfc31e4110ff0da1986e4668ee99ce66431

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /assets/js/swal.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:10:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14856
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/Close-36.png

192.185.209.178

200 OK

706 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/Close-36.png
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
706 B (706 bytes)
Hash
6939fa8c027b1b38b38f36c780b7e13e
a8d5031dea122e0b9f6a539d507cece35d57539c
cd81c87709b2eb5e884aab63d8a4a6cb5e6f594c4a772ac7bcd8c2d0a054a005

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /Close-36.png HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:04:39 GMT
accept-ranges: bytes
content-length: 706
content-type: image/png
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-23581568-13

142.250.74.168

200 OK

71 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-23581568-13
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (1822)
Size
71 kB (70765 bytes)
Hash
cd39d6e52a32c6d011db39ee3bb21823
9d5046925ee2c258ab3fc023b834f9e4e6b3ba47
c7c92f7d8dcdaddab0e40877f17ca944801dbcf1cfc41865952b0ff94f8ad083

HTTP Headers

GET /gtag/js?id=UA-23581568-13 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 17:27:42 GMT
expires: Tue, 07 May 2024 17:27:42 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70765
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/UBA-logo-2.png

192.185.209.178

200 OK

121 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/UBA-logo-2.png
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
PNG image data, 5000 x 1300, 8-bit colormap, non-interlaced
Size
121 kB (121392 bytes)
Hash
d784dc2da659ad12571310f53f9498b2
7874c562984ff51ea17f7785013deb79d4130b72
9fef87220a537bb611828a7e8ca06a70ed2bd4bbc5dd50b53b16e447f7e5dfb2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/UBA-logo-2.png HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:09:13 GMT
accept-ranges: bytes
content-length: 121392
content-type: image/png
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/portfolio/lamp.jpg

192.185.209.178

200 OK

74 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/portfolio/lamp.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x625, components 3
Size
74 kB (74406 bytes)
Hash
43f93b0cec7bf048a5b981da523f46d9
59373c62e16cf08c041972e4246e238df1a6f8a3
eb9179e761c287ec37d74fbd8cd927ab4d2c9f0fec65f4b7258466d32b458b24

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/portfolio/lamp.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:14 GMT
accept-ranges: bytes
content-length: 74406
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/portfolio/salad.jpg

192.185.209.178

200 OK

82 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/portfolio/salad.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x501, components 3
Size
82 kB (81901 bytes)
Hash
cd55bfc0662110fbda230afb6a00f570
8d9fd7372bdd786aa8dd394133bde4b0ff48bbe5
f48fd0925b1ebacacfcf1598c2c38fe3ece837c8db9eefe4bb7e300e88aea057

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/portfolio/salad.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:19 GMT
accept-ranges: bytes
content-length: 81901
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/js/main.js

192.185.209.178

200 OK

3.5 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/js/main.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JavaScript source, ASCII text
Size
3.5 kB (3470 bytes)
Hash
208dd5bac8a3421cc91d12dfaa36fcb7
b1ccaead9fdfe2a82d7616bc0bfd824fafb2dffe
79d9bef0ca0dccd73c8c0758ec6cb869289912cfa4418b62dce57230bfaf6ce1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /js/main.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3470
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

192.185.209.178

404 Not Found

836 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/sixth.js

192.185.209.178

200 OK

186 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/sixth.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
186 B (186 bytes)
Hash
8bb9f8223834b0e230c68d15d9654bbe
21c9209d5ea57de9f4ecc7092ed257ac7af85cf5
eeef2b02ed936e59a2e36d9a245c8e237c60162e15ac0f2a66c37edc83216214

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /sixth.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:05:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 186
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/main.min.js

192.185.209.178

404 Not Found

836 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/main.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /main.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/portfolio/fuji.jpg

192.185.209.178

200 OK

16 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/portfolio/fuji.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3
Size
16 kB (15981 bytes)
Hash
90f605f2da6f88feff3f2c15c0d0a716
f792c068803ed377c40280ed329437e368fea4b6
b15bea392d25bf7e631c0e503834507b54f935c5ed5ee94e0f953404c2ac5e5e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/portfolio/fuji.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:12 GMT
accept-ranges: bytes
content-length: 15981
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/portfolio/woodcraft.jpg

192.185.209.178

200 OK

28 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/portfolio/woodcraft.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x625, components 3
Size
28 kB (28004 bytes)
Hash
c155452e42a082af39275ad745c9694a
7ee21d5adb798d961f21f6f71506eae2f653e14b
ab4dcc8c86f871f36af8646d156a3de0e5aa475c50562797fae015bb7bfa6899

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/portfolio/woodcraft.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:18 GMT
accept-ranges: bytes
content-length: 28004
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/avatars/user-01.jpg

192.185.209.178

200 OK

38 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/avatars/user-01.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3
Size
38 kB (37521 bytes)
Hash
3f8a3ae3661020fd51979d764b419847
d50ee554fafb378cf261516c7b917260b1d426f0
1fec3fcf718beaafc2e50ae6f7aab68b42d11ae1c7bcfa11fdd89c58ce24422a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/avatars/user-01.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:00 GMT
accept-ranges: bytes
content-length: 37521
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/avatars/user-02.jpg

192.185.209.178

200 OK

33 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/avatars/user-02.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3
Size
33 kB (33325 bytes)
Hash
735866d1489cde99d77e4bac4cbefa0f
80e7ef4c0c4bd272a03e1acd4c49c3caa9076886
2f25ec6bf41105ce4ea87a0de8bfafe830023feb206b805e013a5b1e56c30f78

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/avatars/user-02.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:10:59 GMT
accept-ranges: bytes
content-length: 33325
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/avatars/user-05.jpg

192.185.209.178

200 OK

46 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/avatars/user-05.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3
Size
46 kB (45985 bytes)
Hash
479f00d1f7522f5fcf168912c0a9ce22
7fd9cdb56b0b92ffb003490420d1305aec7f9036
06ef97625cc7878b9e7e297a77ec50d75b788562acdd50a87b7956f6cc636da1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/avatars/user-05.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:01 GMT
accept-ranges: bytes
content-length: 45985
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/portfolio/shutterbug.jpg

192.185.209.178

200 OK

78 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/portfolio/shutterbug.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x501, components 3
Size
78 kB (77763 bytes)
Hash
b4e72b7f9e16af61d652db130c7e63d7
57e3989be5f0d4f98bc46a2dedd6a147a14dee59
acb3f352dde9ed8d6f1a47e63abdb16aa9d34efeac49ea8c56104b78ba62d194

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/portfolio/shutterbug.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:17 GMT
accept-ranges: bytes
content-length: 77763
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/portfolio/liberty.jpg

192.185.209.178

200 OK

94 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/portfolio/liberty.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x625, components 3
Size
94 kB (94127 bytes)
Hash
7078bbc06f04fbaae6a914c6a536f899
026935ae87b4436d025398dba9c837fb41adba62
5a8da15453ac6c99ca3baa0c414ee46aec8bd9dd9eab67d1da3af4489a1559f3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/portfolio/liberty.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:15 GMT
accept-ranges: bytes
content-length: 94127
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/fonts.css

192.185.209.178

200 OK

508 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/fonts.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
508 B (508 bytes)
Hash
1473f7337df1105c5eb82bc96a805def
96a3842e9e3eafb851fd7341767f58bb8da92f79
6dda1e1eca4f745c484796a765282aba0be72a021760dfb79913685d9ebd2c0d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/fonts.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/base.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 508
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854

104.16.79.73

200 OK

15 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
JavaScript source, ASCII text, with very long lines (19981)
Size
15 kB (15005 bytes)
Hash
bf86c2ae13acf5a1888a62bba9c32618
e54cd478bbbd8a43a348b14fe6b3c1f5d747f2f3
e9198c85de26e460bc5b7f083d49d30806c30c197cd458467feecdb016c4ee46

HTTP Headers

GET /beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://groupbnp.sagradocorpo.com.br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:27:42 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.7.1"
last-modified: Mon, 06 May 2024 19:01:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8802ec19dcfa0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/micons/micons.css

192.185.209.178

200 OK

2.0 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/micons/micons.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text
Size
2.0 kB (2015 bytes)
Hash
4b3e17c16f306bf463c4c9ff9a213535
a702f6b266c8fe5d7b3721df14849bf69355d35e
fbff254833abe80bd36853a1fba0b6ec33eae05c83fdd615cc2b48fe2b898678

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/micons/micons.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/base.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:10:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2015
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/icons/icon-arrow-down.svg

192.185.209.178

200 OK

899 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/icons/icon-arrow-down.svg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
SVG Scalable Vector Graphics image
Size
899 B (899 bytes)
Hash
e0e2580380b7965c2a57fcfd026d6958
52ff536722a0562cf9c617d071c1a0bee6e829f9
4e9530a72448aa193dc94427edfa995d069db4d51fd20d2ce3325ce1aa6b40ca

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/icons/icon-arrow-down.svg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/main.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:11:05 GMT
accept-ranges: bytes
content-length: 899
content-type: image/svg+xml
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

192.185.209.178

404 Not Found

836 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/stats-bg.jpg

192.185.209.178

200 OK

168 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/stats-bg.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3000x1875, components 3
Size
168 kB (167636 bytes)
Hash
7005688733b0d2f596ac034523928add
db6cf2401e19c0c9663eebf4421af48212b06ea3
a027adc19c1825eb29d358e1bb9014e0de8ebf7fb1edbc444fdd7f2043705d77

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/stats-bg.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/main.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:09:10 GMT
accept-ranges: bytes
content-length: 167636
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/domine/domine-bold-webfont.woff2

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/domine/domine-bold-webfont.woff2
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/domine/domine-bold-webfont.woff2 HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-light-webfont.woff2

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-light-webfont.woff2
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-light-webfont.woff2 HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-regular-webfont.woff2

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-regular-webfont.woff2
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-regular-webfont.woff2 HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-semibold-webfont.woff2

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-semibold-webfont.woff2
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-semibold-webfont.woff2 HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/micons/fonts/icomoon4286.ttf?jo2z5t

192.185.209.178

200 OK

74 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/micons/fonts/icomoon4286.ttf?jo2z5t
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
74 kB (73452 bytes)
Hash
59809af617d58f5da50fb027f3c617ef
299ed66c2649fe0f0257347bae37641fa4d3afdb
1209b735a0a5a297d6379986d00fe88f6b537e9070ecf79455a3129302f56870

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/micons/fonts/icomoon4286.ttf?jo2z5t HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/micons/micons.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:15:42 GMT
accept-ranges: bytes
content-length: 73452
content-type: font/ttf
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/jquery-3.5.1.min.js

192.185.209.178

200 OK

41 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/jquery-3.5.1.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
gzip compressed data, from Unix
Size
41 kB (41431 bytes)
Hash
41b5704c9f0c006c49e147d376d9a25d
e8e1fd44afc41567a5b9ebf731ce743066d9f7dc
2c35a26fcef426c24caa11131851f1982db63d94db0a37f0ff400c3164a002d3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:05:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/font-awesome/webfonts/fa-brands-400.woff2

192.185.209.178

200 OK

54 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/font-awesome/webfonts/fa-brands-400.woff2
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
Web Open Font Format (Version 2), TrueType, length 54468, version 1.0
Size
54 kB (54468 bytes)
Hash
877700a37b705486d19bdce3f7586754
7108169d0cb50a3d15a5ebdf27904524e2732f40
abbcb43a4cf5b5c586d440527b87830cc4d6d069e2eabaeb7e0c433ca0edf8d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/font-awesome/css/fontawesome-all.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:15:07 GMT
accept-ranges: bytes
content-length: 54468
content-type: font/woff2
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/font-awesome/webfonts/fa-solid-900.woff2

192.185.209.178

200 OK

40 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/font-awesome/webfonts/fa-solid-900.woff2
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40244, version 1.0
Size
40 kB (40244 bytes)
Hash
64f88ebe25c54a12320f42f0b229961b
d819bead49948f3f349b64b5bb4322622ebdd9b2
ececd30b13956872441d17b03b9de4c032b5983f0932051e763a0a6d0250842b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/font-awesome/css/fontawesome-all.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:15:27 GMT
accept-ranges: bytes
content-length: 40244
content-type: font/woff2
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/main.min.js

192.185.209.178

404 Not Found

836 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/main.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /main.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/domine/domine-bold-webfont.woff

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/domine/domine-bold-webfont.woff
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/domine/domine-bold-webfont.woff HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-light-webfont.woff

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-light-webfont.woff
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-light-webfont.woff HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/js/jquery-3.2.1.min.js

192.185.209.178

200 OK

40 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/js/jquery-3.2.1.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
gzip compressed data, from Unix
Size
40 kB (40379 bytes)
Hash
6905d045d29501f430967c5848b810dd
1809f3c4b9c036d509dae21539353b63c1900758
1ae124116dc34814d6f662af8d9709a5abdc7aa5881e731ae34d7be2867bcd78

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /js/jquery-3.2.1.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-semibold-webfont.woff

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-semibold-webfont.woff
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-semibold-webfont.woff HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-bold-webfont.woff

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-bold-webfont.woff
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.4 kB (2361 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-bold-webfont.woff HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/main.min.js

192.185.209.178

404 Not Found

836 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/main.min.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /main.min.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/12.png

192.185.209.178

200 OK

1.6 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/12.png
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
Size
1.6 kB (1595 bytes)
Hash
01a526017808061f40520d2c49567146
345a56ccfd8d9b7a57acb911b157f5fc6d2ade8a
431ece736c5686a74829306924bc25fc57db3cd441be4b27185dd1300f5bea53

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/12.png HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:37 GMT
accept-ranges: bytes
content-length: 1595
content-type: image/png
date: Tue, 07 May 2024 17:27:44 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/cdn-cgi/zaraz/sd0d9.js?z=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

192.185.209.178

404 Not Found

836 B

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/cdn-cgi/zaraz/sd0d9.js?z=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
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /cdn-cgi/zaraz/sd0d9.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQk5QJTIwUGFyaWJhcyUyMCU3QyUyME1hJTIwYmFucXVlJTIwZW4lMjBsaWduZSUyMiUyQyUyMnglMjIlM0EwLjU5MTIyNjI1OTY3MzY5MTclMkMlMjJ3JTIyJTNBMTI4MCUyQyUyMmglMjIlM0ExMDI0JTJDJTIyaiUyMiUzQTEwMjQlMkMlMjJlJTIyJTNBMTI4MCUyQyUyMmwlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmdyb3VwYm5wLnNhZ3JhZG9jb3Jwby5jb20uYnIlMkYlMjIlMkMlMjJyJTIyJTNBJTIyJTIyJTJDJTIyayUyMiUzQTI0JTJDJTIybiUyMiUzQSUyMlVURi04JTIyJTJDJTIybyUyMiUzQTAlMkMlMjJxJTIyJTNBJTVCJTdCJTIybSUyMiUzQSUyMnNldCUyMiUyQyUyMmElMjIlM0ElNUIlMjIwJTIyJTJDJTIyY29uZmlnJTIyJTJDJTdCJTIyc2NvcGUlMjIlM0ElMjJwYWdlJTIyJTdEJTVEJTdEJTJDJTdCJTIybSUyMiUzQSUyMnNldCUyMiUyQyUyMmElMjIlM0ElNUIlMjIxJTIyJTJDJTIyVUEtMjM1ODE1NjgtMTMlMjIlMkMlN0IlMjJzY29wZSUyMiUzQSUyMnBhZ2UlMjIlN0QlNUQlN0QlNUQlN0Q= HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://groupbnp.sagradocorpo.com.br/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Tue, 07 May 2024 17:27:44 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/js/plugins.js

192.185.209.178

200 OK

368 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/js/plugins.js
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
gzip compressed data, from Unix
Size
368 kB (367471 bytes)
Hash
0fcbbe7cd73376946fd2bf172d6f49e1
587d5c37daac51219b37974ed3905bb88f208322
277a29342ff464062010a1d9b654ea007fe620b34989e2324d065ef5366ddebe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /js/plugins.js HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/cdn-cgi/rum?

192.185.209.178

404 Not Found

836 B

URL POST HTTP/2
groupbnp.sagradocorpo.com.br/cdn-cgi/rum?
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
11a0bbc52834cf74da795d5815b7dc63
5d401cf953df570210427a92d27e00ddf403f4b7
c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 15451
Origin: https://groupbnp.sagradocorpo.com.br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Tue, 07 May 2024 17:27:44 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/css/font-awesome/css/fontawesome-all.css

192.185.209.178

200 OK

44 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/css/font-awesome/css/fontawesome-all.css
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
ASCII text, with very long lines (321)
Size
44 kB (44019 bytes)
Hash
996240a07c72bacf69a101f7eb6bb23f
99029a703a9374f1dc39132173fd8675c0ddd64f
f345b12a5ae66c67312accb82700da409e7b3483087246dad246ed3a543a5482

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /css/font-awesome/css/fontawesome-all.css HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/base.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:15:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8149
content-type: text/css
date: Tue, 07 May 2024 17:27:42 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-regular-webfont.woff

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-regular-webfont.woff
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2553), with no line terminators
Size
2.4 kB (2361 bytes)
Hash
f6117cde11582c69d15926f6eaa2c01e
e364986bfd9ca8d3e6636fa60eabe97ec10f2456
e32e774da87306c618ca633fd1d1ce9c05cd85c9b33e1645255a58380d87652c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-regular-webfont.woff HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-bold-webfont.woff2

192.185.209.178

404 Not Found

2.4 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/fonts/metropolis/metropolis-bold-webfont.woff2
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2553), with no line terminators
Size
2.4 kB (2361 bytes)
Hash
f6117cde11582c69d15926f6eaa2c01e
e364986bfd9ca8d3e6636fa60eabe97ec10f2456
e32e774da87306c618ca633fd1d1ce9c05cd85c9b33e1645255a58380d87652c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /fonts/metropolis/metropolis-bold-webfont.woff2 HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/css/fonts.css
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
last-modified: Wed, 12 Oct 2022 20:24:00 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Tue, 07 May 2024 17:27:43 GMT
server: Apache
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js

104.18.10.207

200 OK

60 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (59729)
Size
60 kB (60010 bytes)
Hash
61f338f870fcd0ff46362ef109d28533
b3c116c65e6f053aaab45e5619a78ec00271a50f
5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548

HTTP Headers

GET /bootstrap/4.4.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:27:42 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"61f338f870fcd0ff46362ef109d28533"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 01/04/2023 07:40:19
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1075
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: d54c889a2f06fc94f79048ab57eb8249
cdn-cache: HIT
cf-cache-status: HIT
age: 600499
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8802ec19db5056b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

groupbnp.sagradocorpo.com.br/images/05.jpg

192.185.209.178

200 OK

301 kB

URL GET HTTP/2
groupbnp.sagradocorpo.com.br/images/05.jpg
IP
192.185.209.178:443
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

Requested by
https://groupbnp.sagradocorpo.com.br/
Certificate
IssuerLet's Encrypt
Subjectgroupbnp.sagradocorpo.com.br
Fingerprint48:F7:6B:30:51:A3:83:11:E8:1F:E5:30:B9:F2:48:CB:48:15:84:6E
ValidityTue, 02 Apr 2024 14:11:44 GMT - Mon, 01 Jul 2024 14:11:43 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1815, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=3960], baseline, precision 8, 1600x1220, components 3
Size
301 kB (300878 bytes)
Hash
6251836b880a4671ca9c045a1885c9d3
ddce5f81e93b5a73d3cfd00f720b076b284b8f58
4efe83578694a29e42606e9dbd4b0b7892b661042dd194e0e5a4dae75b3a3a7a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	BNP Paribas

HTTP Headers

GET /images/05.jpg HTTP/1.1
Host: groupbnp.sagradocorpo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://groupbnp.sagradocorpo.com.br/
Cookie: PHPSESSID=5f2e51afd005eaf932c9bd44d6b59a33
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 02 Apr 2024 17:08:34 GMT
accept-ranges: bytes
content-length: 300878
content-type: image/jpeg
date: Tue, 07 May 2024 17:27:44 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML