| ocsp.sectigo.com/ |  172.64.155.188 | | 472 B |
IP172.64.155.188:0
Hash41035de57d03043d5c0b2e079d21a611 0d780a6ffb55f5928f4909eb2837313f34d666f5 e2e7ad07380d1c8aede61ef0d50831b3a1ab3c5a2a886618745f866be99afc8b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 May 2023 23:32:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 15 May 2023 23:50:07 GMT
Expires: Mon, 22 May 2023 23:50:06 GMT
Etag: "0d780a6ffb55f5928f4909eb2837313f34d666f5"
Cache-Control: max-age=347239,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c97e706faf3b50f-OSL
|
|
| xn--napth-fsa.vn/images/logo.png | 172.67.130.253 | 200 OK | 5.2 kB |
URL GET HTTP/3xn--napth-fsa.vn/images/logo.png IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typePNG image data, 436 x 116, 8-bit colormap, non-interlaced\012- data Hash354ed116f25561b4e435946a16c22de2 8763e63fa09f70464fd18a829c567dc937c8568d 2b0c37cc261fda4df56b59985c7f620d201b621dffbd6f52f01be61d020e8ad5
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | |
GET /images/logo.png HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: image/png
content-length: 5162
cache-control: public, max-age=2629000
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p9HWbgvLORGIlERJSFi6DF7FvKXai%2F%2BLuOlDRkaaC1t6O8HcaqVk%2B3S2mmuN7Ic%2BJfyYi%2BRKoglEiSrfMwdf%2BiwboV8SDbq0xLkYfGyne7XEgJlpzKv%2FtdHwPmYMqwPFS40C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c97e7060c5db4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| ocsps.ssl.com/ | 52.6.97.148 | | 1.8 kB |
IP52.6.97.148:0
Hash846937f1b9fb48e528d9912199772dfc fd91fb0aee6d095b6fda2017ef8632794ba9cb2d f1aeed612588e192377b4548ff69f10b6e29211bc690bd2acfc234b6d4bbae9a
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 May 2023 23:32:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Thu, 25 May 2023 09:04:42 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "fd91fb0aee6d095b6fda2017ef8632794ba9cb2d"
Last-Modified: Thu, 18 May 2023 09:04:43 GMT
X-Proxy-Cache: HIT
|
|
| cdngarenanow-a.akamaihd.net/gop/app/0000/100/072/icon.png |  23.36.76.187 | | 12 kB |
URL GET cdngarenanow-a.akamaihd.net/gop/app/0000/100/072/icon.png IP23.36.76.187:0 ASN#20940 Akamai International B.V.
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hasha58ef4bec336f80c4d6d1e58e26f2fb7 7b4b5d9c33e509ae408b7853835ea6bc7822a596 02210273cd394a40ec9850a02dfafea17d058d04d1bd3d8687a4ae6178a4b2db
GET /gop/app/0000/100/072/icon.png HTTP/1.1
Host: cdngarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "a58ef4bec336f80c4d6d1e58e26f2fb7:1542179331.50711"
last-modified: Wed, 14 Nov 2018 07:08:51 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 12165
date: Thu, 18 May 2023 23:32:59 GMT
vary: Accept-Encoding
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdngarenanow-a.akamaihd.net/gop/app/0000/032/834/icon.png | 23.36.76.187 | | 53 kB |
URL GET cdngarenanow-a.akamaihd.net/gop/app/0000/032/834/icon.png IP23.36.76.187:0 ASN#20940 Akamai International B.V.
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash92f2987585b785d88aed9ecd039534cf 8d9cb36f66ed90ce88783a2d4717e2b181297b4d 4683513a85305378b605de1cf15e8140b6ec6341b6664404a2bde9af04a73caa
GET /gop/app/0000/032/834/icon.png HTTP/1.1
Host: cdngarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "92f2987585b785d88aed9ecd039534cf:1503629912"
last-modified: Fri, 25 Aug 2017 02:58:32 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 53269
date: Thu, 18 May 2023 23:32:59 GMT
vary: Accept-Encoding
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdngarenanow-a.akamaihd.net/gop/app/0000/032/837/icon.png | 23.36.76.187 | | 6.4 kB |
URL GET cdngarenanow-a.akamaihd.net/gop/app/0000/032/837/icon.png IP23.36.76.187:0 ASN#20940 Akamai International B.V.
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hashe36b7de9f03353fb9617300c072fd150 92482899011963bc323b90ad68d2f86da46d43cd 33e31fd4441010b4d2480d0e760dfc9af8138b6e2d71d57d9917a85890da0b75
GET /gop/app/0000/032/837/icon.png HTTP/1.1
Host: cdngarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "e36b7de9f03353fb9617300c072fd150:1529456455.786054"
last-modified: Wed, 20 Jun 2018 01:00:55 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 6424
date: Thu, 18 May 2023 23:32:59 GMT
vary: Accept-Encoding
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdngarenanow-a.akamaihd.net/gop/app/0000/100/054/icon.png | 23.36.76.187 | | 74 kB |
URL GET cdngarenanow-a.akamaihd.net/gop/app/0000/100/054/icon.png IP23.36.76.187:0 ASN#20940 Akamai International B.V.
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash5ed302fed9de61563070b6c9845ff2bf 6887ebc061e2ab337b524013eb0459ab95c1bf7b bb3a9d9ed98e02a9e0f740c05a20df1f7063872ae053c2e46acb0a481a774aa3
GET /gop/app/0000/100/054/icon.png HTTP/1.1
Host: cdngarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "5ed302fed9de61563070b6c9845ff2bf:1678953773.742484"
last-modified: Thu, 16 Mar 2023 08:02:53 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 73720
date: Thu, 18 May 2023 23:32:59 GMT
vary: Accept-Encoding
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdngarenanow-a.akamaihd.net/gop/app/0000/100/067/icon.png | 23.36.76.187 | | 70 kB |
URL GET cdngarenanow-a.akamaihd.net/gop/app/0000/100/067/icon.png IP23.36.76.187:0 ASN#20940 Akamai International B.V.
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash3b6afdcdc22bc913270e091dab48db3b b44f5b93d69c683fc78c38d51e49e5b1bad356f1 c4d12cbc5277e03492a166819b4413d39d0e299634e811f0c613a4a36c3fba00
GET /gop/app/0000/100/067/icon.png HTTP/1.1
Host: cdngarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "3b6afdcdc22bc913270e091dab48db3b:1679560791.583104"
last-modified: Thu, 23 Mar 2023 08:39:51 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 70257
date: Thu, 18 May 2023 23:32:59 GMT
vary: Accept-Encoding
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdngarenanow-a.akamaihd.net/gop/app/0000/010/090/icon.png | 23.36.76.187 | | 10 kB |
URL GET cdngarenanow-a.akamaihd.net/gop/app/0000/010/090/icon.png IP23.36.76.187:0 ASN#20940 Akamai International B.V.
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hashf766555b87e010a5ccfe4a8a79f8fb67 a0f8136ed31dd91ef95d96680a3e029f79ea51c2 7d38213aa937e3f5748bebebcb4c1a6e2900dcd8e8788126c06cb756f960efa4
GET /gop/app/0000/010/090/icon.png HTTP/1.1
Host: cdngarenanow-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "f766555b87e010a5ccfe4a8a79f8fb67:1490238457"
last-modified: Thu, 23 Mar 2017 03:07:32 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 10247
date: Thu, 18 May 2023 23:32:59 GMT
vary: Accept-Encoding
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ocsps.ssl.com/ | 52.6.97.148 | | 1.8 kB |
IP52.6.97.148:0
Hash2e37e6ce0e771fe92597f3d4c18dc2d1 33a192b642b069508270f301eccf86396ed2b913 263e09bc0e1dfeb03c2d7c14a619d31547b79f48a6ad1b941628f168997639fe
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 May 2023 23:32:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Thu, 25 May 2023 11:34:26 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "33a192b642b069508270f301eccf86396ed2b913"
Last-Modified: Thu, 18 May 2023 11:34:27 GMT
X-Proxy-Cache: HIT
|
|
| cdn.vn.garenanow.com/web/napthevn/sp_pc_15092022.jpg |  203.162.56.72 | 200 OK | 55 kB |
URL GET HTTP/1.1cdn.vn.garenanow.com/web/napthevn/sp_pc_15092022.jpg IP203.162.56.72:443 ASN#7643 Vietnam Posts and Telecommunications VNPT
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerSSL Corporation Subjectcdn.vn.garenanow.com Fingerprint4D:25:AB:22:6C:32:4E:35:93:76:95:B9:69:85:72:12:53:DD:67:EC ValidityThu, 17 Nov 2022 02:54:32 GMT - Fri, 17 Nov 2023 02:54:32 GMT
File typeJPEG image data, progressive, precision 8, 900x100, components 3\012- data Hash838dd26f091aa816a3b05600ec88bd6f 82a26d8ad89767d47b1b194e6776413dfa10184e 5df88ec3e4a298c1006832cbf2b510786b4b66192339f5f10fe239e00ab27b0b
GET /web/napthevn/sp_pc_15092022.jpg HTTP/1.1
Host: cdn.vn.garenanow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 May 2023 23:32:59 GMT
Content-Type: image/jpeg
Content-Length: 54724
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 09:20:21 GMT
ETag: "63243fd5-d5c4"
X-Cache-Status: HIT
X-Handled-By: cdn-master
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| cdn-gop.garenanow.com/gop/app/0000/100/137/icon.png |  27.126.192.213 | 200 OK | 75 kB |
URL GET HTTP/1.1cdn-gop.garenanow.com/gop/app/0000/100/137/icon.png IP27.126.192.213:443 ASN#45474 NEXUSGUARD LIMITED
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerSSL Corporation Subjectcdn-gop.garenanow.com Fingerprint0C:C7:DD:A0:87:28:4A:35:4F:6C:DA:85:07:CF:8E:6B:E2:1C:EE:8A ValidityWed, 15 Mar 2023 03:29:59 GMT - Thu, 14 Mar 2024 03:29:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash0d1b65b3079f4492e80e8ed8d2bb2d75 4acbb1d95a69ea64d2e6d48c7aad5400efa3611b cf684a15363b57bc1951fd8fd9d77a9bb5f255f48ca703e894a87b584a1dd2e4
GET /gop/app/0000/100/137/icon.png HTTP/1.1
Host: cdn-gop.garenanow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: OBS
x-obs-request-id: 000001883135AB3D994772B85B06109D
x-reserved-indicator: 372
Accept-Ranges: bytes
ETag: "0d1b65b3079f4492e80e8ed8d2bb2d75"
Last-Modified: Mon, 09 Jan 2023 07:39:12 GMT
Content-Type: image/png
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSRfO5KJtvqjF6c/CzXvs+uE3fQftTBy
Date: Thu, 18 May 2023 23:33:01 GMT
Content-Length: 74636
Access-Control-Allow-Origin: *
|
|
| xn--napth-fsa.vn/css/style.css | 172.67.130.253 | 200 OK | 5.3 kB |
URL GET HTTP/3xn--napth-fsa.vn/css/style.css IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (5658), with no line terminators Hashb210240980fa2c1d3b6ec6b2012f205f 9d223550718b9dc4159cff525b43335f987667f7 c992b5b88810d0b64b71632a512e010c5199c31cfcd32f078ed80d541e537911
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | |
GET /css/style.css HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: text/css
cache-control: public, max-age=3600
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MAFJmLHYZQ9kuzbnR90EUNq948DAbFFwdAIfgo%2BdQEaTQgB7YsTqSPOOPHDrc318psbUgsRnuiavzMU3lcoRoftZIXOqk7zgnTP63qAAT17XZVkzetnJryqzdCnHndjbvOKb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e705fc56b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| xn--napth-fsa.vn/js/jquery-3.2.1.min.js | 172.67.130.253 | 200 OK | 87 kB |
URL GET HTTP/3xn--napth-fsa.vn/js/jquery-3.2.1.min.js IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (32058), with CRLF line terminators Hash27a8f25e65bfe1872ebd62e021a0c6ca 9f835084914c0f4403a080fb7de4abe0d210adf8 d3a518dea876de39f9e5dc1ffcdeb6c661aee25d8a62474386b664ef3bf1b40f
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | | | fortinet | Phishing | |
GET /js/jquery-3.2.1.min.js HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: application/javascript
cache-control: public, max-age=3600
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=78MBpUyLAbyE%2F8dUcBYMtLPBpmJ8s4KrDHnS%2F%2FlLu3sNLIxrvXjTpZnxpegii%2Bjmcxa9o6yCqEVuZi0879SPaoOsb7pA4okl9DOvRIDmdcGanOQGnVOdUMvNVhRRhw1aGV%2By"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e705fc57b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| xn--napth-fsa.vn/js/custom1.js | 172.67.130.253 | 200 OK | 268 B |
URL GET HTTP/3xn--napth-fsa.vn/js/custom1.js IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash39a2f96030c5fa13ef9161348d905709 c39f9067d98b90278c45fb28564b543f161b70c5 11f8994c46b7f014551ab310acbe2497571d05de5ceffcb42a03aec4f7de3d5e
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | | | fortinet | Phishing | |
GET /js/custom1.js HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: application/javascript
cache-control: public, max-age=3600
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6VszRm7jMPAisjbx5PcIz9MAmgk34MSYtmePTceFhipwbvqoyXpvkY%2Bux63elNUBpRrDE3ykmheo1YCVJKZFWdo9nBlEeLAVaYPGkGCBKlALGOoZq8FWDEsnmH96ScDW1Cgv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e7060c5ab4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| xn--napth-fsa.vn/images/favicon.ico | 172.67.130.253 | 200 OK | 4.5 kB |
URL GET HTTP/3xn--napth-fsa.vn/images/favicon.ico IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typePNG image data, 70 x 70, 8-bit/color RGB, non-interlaced\012- data Hash5fe97698c227d02ccb2284389b884175 b44c10d4a58ece5d6255775d85012f7c75ac6b2f 22a8e20cec6c4cd83c7446bfad7377d371a8a5b8d89bbdb74daa0dea2bcea549
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | |
GET /images/favicon.ico HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:59 GMT
content-type: image/x-icon
cache-control: public, max-age=2629000
expires: Thu, 25 May 2023 23:32:59 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EPnmtGKVWzQs9hlSfJBgyATy8VnFyYhQ5iBwQ3kw9L9BZogdCzVbcWP6JeLS%2FsXKDyFb9kvXqawpF1jnro43sEYZ3i2tuGJpJiNSmoCQYakRcQ7P6wvUwHHxXwLLG%2Fo2Uv72"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e70f0c0ab4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| xn--napth-fsa.vn/js/bootstrap.min.js | 172.67.130.253 | 200 OK | 37 kB |
URL GET HTTP/3xn--napth-fsa.vn/js/bootstrap.min.js IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (32039), with CRLF line terminators Hash35e78bb2df69fc12053f9778e2ff2a93 ae8c8a930fd890ee61a9c82a7e85dd22918db7a6 9c7467cb2e579a31a8c0ab41c8557559bf538340fbb8632f6aa2b977aa22bf0a
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | | | fortinet | Phishing | |
GET /js/bootstrap.min.js HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: application/javascript
cache-control: public, max-age=3600
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YK4H2SMq%2Fy498NeKelOr2%2BlTxvnv19j%2F4%2FJsJStPYrvE5YQD4F3L23D8IhO1vdqCUzdvoXeL2qDXvvnhU4JtKl9cHZFKSF9jNXzmZ0c1WNVRz6UZyg0TyvsZpQk8m646z2Ej"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e7060c59b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/sweetalert2@11 |  185.244.209.62 | 200 OK | 64 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/sweetalert2@11 IP185.244.209.62:443 ASN#58286 Electric-IT Business S.R.L.
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerSectigo Limited Subjectcdn.jsdelivr.net Fingerprint95:B3:FD:0C:F5:9E:0C:6C:F5:81:AB:DD:5D:6D:67:BF:FF:4A:FD:CC ValiditySat, 01 Oct 2022 00:00:00 GMT - Fri, 20 Oct 2023 23:59:59 GMT
File typeASCII text, with very long lines (43289) Hashc10306ea9c7731da5e8282aad988d42a 2f051222a227533c602d931af52fc78649fe0689 f40b487eeb315e2d23e335dd4b14626459f4836d8e05d9533b805db1cdb3fed6
GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 May 2023 23:32:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 11.7.5
x-jsd-version-type: version
etag: W/"fa8a-LwUSIqInUzxgLZMa9S/Hhkn+Bok"
age: 1867
x-served-by: cache-fra-eddf8230029-FRA, cache-ams21057-AMS
x-cache: HIT, HIT
vary: Accept-Encoding, Accept-Encoding
content-encoding: br
cache: HIT, HIT
x-cached-since: 2023-05-05T12:24:56+00:00, 2023-05-18T14:24:02+00:00
x-id: am3-up-gc89, osix-up-gc4
x-nginx: nginx-be, nginx-be
X-Firefox-Spdy: h2
|
|
| xn--napth-fsa.vn/css/bootstrap.min.css | 172.67.130.253 | 200 OK | 150 kB |
URL GET HTTP/3xn--napth-fsa.vn/css/bootstrap.min.css IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (399) Size150 kB (149830 bytes) Hash1fa2640288b4602af26f8beacaef55c1 5702361c035dfc572d953fe343e9649c38a89c9c 90aeafaae0b8e4ca9a3bca40b981950c2183102721b41a3e89045f32264b2299
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | |
GET /css/bootstrap.min.css HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: text/css
cache-control: public, max-age=3600
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DbO0Hx6z2aWe2Iwk17yWZ4ucKnLf1SIF2XwZbSf6uN1jUi%2FIBNa%2FSq8Up6McqZ%2B5p9cSwnjUq49NFK3QjDNoGmlxyTSEftwza%2Fph4gvXMPO5ryUnwDjVwMbIV%2FbfHV4K%2B12W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e705fc52b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| xn--napth-fsa.vn/js/kensine.js | 172.67.130.253 | 200 OK | 101 kB |
URL GET HTTP/3xn--napth-fsa.vn/js/kensine.js IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size101 kB (101004 bytes) Hash08e463af2e6c57ce1f3e897d41886f30 3aab4b4023019ee6f4df0b804afa76efad8e7f1d fd64d6b99d7adb77f3670043ff1db3729d758130e130c25702d74eccb67c5eb0
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | | | fortinet | Phishing | |
GET /js/kensine.js HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: application/javascript
cache-control: public, max-age=3600
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7UguoeQpYiyLPT6MpkdEyUmtKz7MHwaGKcJmnWESLXIobG99gUemMPex0t47yRLHZPplYuakV3o%2Bur1f8UcmSTtVcQLK1vmobzzKph%2B9jaqtaubKDUVZBZjXJMVMUS%2BX7e2W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e7060c5cb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| | 172.67.130.253 | 200 OK | 14 kB |
URL User Request GET HTTP/2IP172.67.130.253:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | | | fortinet | Phishing | |
GET / HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 May 2023 23:32:57 GMT
content-type: text/html
x-powered-by: PHP/5.4.45
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6L9iDsYzjT2hNByyUYI3OvwabUSQak5WGT0u%2F52gWa3Nct50SoDyy9ZqDphbfv278mGjImZJp%2BUtI4X6chOZHqnh5C49n%2BnWzrue9Ra96exIOtjn1aMqvM4kA785yhD2K1d6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e7019d51b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| xn--napth-fsa.vn/css/napthe1.css | 172.67.130.253 | 200 OK | 420 B |
URL GET HTTP/3xn--napth-fsa.vn/css/napthe1.css IP172.67.130.253:443
Requested byhttps://xn--napth-fsa.vn/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1A:9D:31:74:12:88:0E:F8:DB:CA:7A:FD:7C:4E:27:8A:AC:30:D3:86 ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 30 Jan 2024 23:59:59 GMT
File typeASCII text, with very long lines (494), with no line terminators Hash851f393a07c2b9cec30b27d933bbc50f 753b200e5bc599f4cbedfcd0b0a7e09880174b28 6d20e0a4d1e0a3d77d539c680ae2a5f4fb1ddf7921367cb3d98a56dd8116250a
| Analyzer | Verdict | Alert |
|---|
| openphish | Garena | | | phishtank | Other | |
GET /css/napthe1.css HTTP/1.1
Host: xn--napth-fsa.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xn--napth-fsa.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 May 2023 23:32:58 GMT
content-type: text/css
cache-control: public, max-age=3600
expires: Thu, 25 May 2023 23:32:58 GMT
last-modified: Tue, 31 Jan 2023 09:47:18 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gXq7u5N%2BC%2FnnEpPBoL3zD1bI8J1XEa8WS%2Fx7Kp59r%2FmbET0zXLQVEEhNbeZZgWl%2FkUCYxns6GSwmL9GkCmFd5DB3L%2Fqjv%2FpflIEjQeKaEmFvDrhsR5jQhHRvJ3s66YIwC1WA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c97e705fc53b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
104.21.9.183