Report Overview
URL
trip2health.azurewebsites.net
Finishing URL
trip2health.azurewebsites.net/
IP / ASN
20.119.16.56
Title
Sign in to your account
Phishing - Microsoft
Phishing - Microsoft Outlook
Detections
urlquery
3
Network Intrusion Detection
1
Threat Detection Systems
2
Host Summary
| Host | Rank | Registered | First Seen | Last Seen | Sent | Received | IP | Fingerprints |
|---|---|---|---|---|---|---|---|---|
aadcdn.msauth.net | 5248 | 2018-10-25 | 2018-11-19 | 2026-04-08 | 5.2 kB | 1.4 MB | 13.107.246.53 |  |
trip2health.azurewebsites.net 4 alert(s) on this Host | unknown | unknown | No data | No data | 498 B | 51 kB | 20.119.16.56 |   |
browser.events.data.microsoft.com | 380 | 1991-05-02 | 2018-05-25 | 2026-04-08 | 1.6 kB | 1.1 kB | 20.189.173.24 |  |
login.live.com | 179 | 1994-12-28 | 2012-05-21 | 2026-04-08 | 983 B | 4.2 kB |  20.190.147.12 |
Azure (PaaS)
Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.Azure Front Door (Load balancers)
Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.Kestrel (Web servers)
Microsoft ASP.NET (Web frameworks)
ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.Microsoft HTTPAPI:2.0 (Web servers)
Microsoft HTTPAPI is a kernel-mode HTTP driver in the Windows operating system responsible for handling HTTP requests and responses with efficiency, scalability, and security.Related reports
Network Intrusion Detection Systems
Suricata /w Emerging Threats Pro
| Timestamp | Severity | Source IP | Destination IP | Alert |
|---|---|---|---|---|
| low | Client IP | 20.119.16.56 | ET INFO Abused Hosting Domain (azurewebsites .net) in TLS SNI |
Threat Detection Systems
| Detection System | Indicator | Verdict | Alert |
|---|---|---|---|
| OpenDNS | trip2health.azurewebsites.net | phishing | Phishing Block |
| DNS4EU | trip2health.azurewebsites.net | malicious | Sinkholed |
JavaScript (184)
No JavaScripts
HTTP Transactions (15)
| URL | IP | Response | Size |
|---|