Report - global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/

Report Overview

Submitted URL
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
IP
172.67.186.224
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-10 21:39:01
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
100

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.160.97.225
securej.chase.com	11202	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	600 B	712 B	159.53.117.80
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	21 kB	596 kB	172.67.186.224
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	7.8 kB	23.13.44.131
static.chasecdn.com	8638	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	96 kB	104.84.152.51
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.33.119.27

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking
2022-09-10	medium	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	Chase Personal Banking

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	187 kB	2023-03-07	2023-03-07
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2023-03-07 18:18:28 Times Seen1 Hash 5dc9265b8cb067f930a8566f81890b29 6d950f66758b04587513c03a1440231d2f8bbe63 1475dba9dc3ea1337e022c3444d82411acff1f3e1e1bbaea10a421b38267b624 Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	263 B	2023-03-07	2024-02-12
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2024-02-12 12:13:37 Times Seen18 Hash 124f3122738ccc5d32347ed5182fb4f7 d05e89cf1a7a3e162a5da538569fdca2b91f6c0f 2d60291c716b81862990b7e32c5dce584844d127417f7b1c24876e400ff204f1 Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	88 kB	2023-03-07	2023-03-07
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2023-03-07 18:18:28 Times Seen1 Hash dbc840bd38f0db91a0aa75ada3242bda f9cc8c1132b9938a7501a66614d971e821f78c5f 9120b7ddf447946c86038cfc97f18bfc21a6b7b08ababcf50bc1cbab18d23952 Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	5.4 kB	2023-03-07	2024-02-12
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2024-02-12 12:13:37 Times Seen14 Hash 0e41513c9e0cd76e5c56702892c8240a f040661005b8a79106360564364a6e40dc99eede aa7479cac99da7a70f4bc860a244872454bb8695916b116f07ced0a50aab1108 Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	103 kB	2023-03-07	2024-02-12
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2024-02-12 12:13:38 Times Seen16 Hash e6a9f166ed6b16c555bd020782780db5 5ffb80eedb665ce2dd49dc6eeb18d00bd03494a2 49f641ec39110562cde65c9dc40e35d486d46e7a6d8903dc8c594d1463d5ec6a Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	85 kB	2023-03-07	2023-11-27
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2023-11-27 15:11:31 Times Seen24 Hash 6c09d00b29512d1e59884692e58f4b35 9bb0124145a92e821eae1b7e878fc60669310b8f 33e51de8d8e1ff4c94a55ca4e38e7170a72220946442e11bb8b8898e31b6a99c Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	87 kB	2023-03-07	2023-11-27
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2023-11-27 15:11:31 Times Seen21 Hash 4377c939ec36016f9c1c3d418d8b3e50 307dd9ff0db9f6bec1defe9d7609ee9a4c24d82f 21bcf3e819945d698ff9569d5280ea8052d9d4a2e9e0ade58e204b61c9574bcd Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	23 kB	2023-03-07	2023-03-17
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2023-03-17 10:30:58 Times Seen1 Hash a4e8b73386df0bed5c16b7c75f6ee832 195ab3ebde348da2b1c4dc96d7d1dd43eaef4791 00d820837f629a9759b4376378417d05bf633c267ab75d2d92c238117ac4017c Loading...

	global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/	938 B	2023-03-07	2024-04-26
Pretty URL global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ IP 172.67.186.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:29 Last Seen2024-04-26 02:03:54 Times Seen55 Hash 8af5f1900788253d8384715a01425ab7 a3b1b9b3003d85fc4f54653e01444cb06c41e027 ff4460fccd65e471cf1af46da8c20b5d14e88cce41a1199cf6932dcc0faf6354 Loading...

HTTP Transactions (79)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 21:07:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qgtLkUZslXaUm0gRZYOUctdexcaktP3XUCWC32jJIldYl0HEndDhrw==
Age: 1908

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9170
Expires: Sun, 11 Sep 2022 00:11:40 GMT
Date: Sat, 10 Sep 2022 21:38:50 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o_QrGsTQA_Xg71jCF-03xqZM4VkpTbY5ZyYcPJ9iHh0y5b6QaLH5Jg==
age: 51698
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 21:38:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 10 Sep 2022 20:56:07 GMT
Expires: Sat, 10 Sep 2022 21:11:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3qxT8aWClKUc_M-cceX_WZ7vot5U4tRrEjAI0awjGT3_kR8EL1O3WA==
Age: 2564

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/

172.67.186.224

200 OK

253 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (59259)
Size
253 kB (253263 bytes)
Hash
5f9106328115dd998c09bb9f4bfe3e11
d42e64007916007bcf8cad960431d89ad899a2f1
2e347567f10bc351f09e7e95cf15c03225289bccfe8d8c564853f42d90d8c210

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET / HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"index.1ee2beb72e.html"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rUlzx3DvU4bcZnpITNsLF3orBBxRU1oYNpFm4nRvtaJ42mRoRFxmG%2FOu3oJFMuXJamWrKgW6IzvLYVK70Mu2GOyfPAok%2FPZFaW9kf2mYn7wuCn7SgZNTveHNTkYDAMCBZ%2Btp7MlKa7J4PzWS%2F1GIa3Fdy%2Fl0gePNrC2F9W57K0A9w8bApUi4vho2RhYbYy2fuXpJOLUqCcigo1NH2DAxSelF4fwU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5019dfe4b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2660
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:38:51 GMT
Last-Modified: Sat, 10 Sep 2022 20:54:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main-ver.js.download

172.67.186.224

200 OK

15 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main-ver.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (33220), with LF, NEL line terminators
Size
15 kB (14885 bytes)
Hash
1d9e895a577829b49e67f5eb8dbe68cd
1cca3cf895fa1852098adf9779d78bb8c025f1ed
aa8009ba839c5293eb5385c1e72c9369430a4951479f16fefba7aa08f61746c6

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main-ver.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main-ver.js.713ba4057f.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QI1duv8SR7PEyvxYNG0Q2nv2lMvFSplimYJPxvJmAqfvGTk74lv9PFwOjJrXlYaINOLYZcdj7wDzZqAKZF2Fa968kW5xpYM9sP3VRhm%2FtfRHMD9LX9UbvGmRjTmbTXWxEBa1ESp3U3IVY%2BBZIWD0QFIZTmH%2F%2BzTWGgF2ygBMlImHLoz6jEWRKcxPfDEuESdz1FMv9Egf6wZORO6VFuGB3%2BZPQxpc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501e8a85b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ruxitagentjs_ICA2fhqru_10173190807103944.js.download

172.67.186.224

200 OK

47 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ruxitagentjs_ICA2fhqru_10173190807103944.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2032)
Size
47 kB (47071 bytes)
Hash
91e9f9510cc9e95273f8899c581c6c29
da963d324ba352f5ccd48e713c436d5f47a0bd24
9406afdab252075d78c780048d32fc345723bfb9c6813d467ca7083e0f5d93d8

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /ruxitagentjs_ICA2fhqru_10173190807103944.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"ruxitagentjs_ICA2fhqru_10173190807103944.js.532cad2bef.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=idZ1fLcX7%2BGR5tsMqEcY3%2F2p0TGtt%2Fa12OJ4a3MkikWBSQCAJ6VM3F3PoI6QDDxqTi7sCa6HYS9%2Bxere8FfXInMh8sXJmKSyGWnrb8GjtgBRVsyKNBXX%2Bq2oUs79ZpChqCouFlCX3CZsLUwiUywHqDMJa4J0ZXa%2FicM0%2BDX4Glnk1S%2FocQpF0m0BhbxbUk2VBj71z0FQrpbTEWsLiRANixSY8bax"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501e7d31b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/appConfig.js(1).download

172.67.186.224

200 OK

5.4 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/appConfig.js(1).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (19582), with no line terminators
Size
5.4 kB (5418 bytes)
Hash
42d9dcc607988f47a0c4e2e65eebf1f9
5125ec7663d817646a332bb478a19482f69ffad1
bb3e26268add4e24cf647102af4233e860fda5345123b24d56ba954beee91745

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /appConfig.js(1).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"appConfig.js(1).99575fa07e.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bAnQ%2FrF1hdESMoT4FRlO61XLgR9OJvqcahtqe65gQ%2FvoOB16AJYAh5JGdpgEwqwf1cND8v325PjtgZBKkdS%2Buof6dCrr%2FQiNdsfpABYk5eB77DGg4HIuV1vB%2BCoE1%2FeN%2BXFVzY1pHTEm0W%2BkMrA8r9OlArIriEQsD1j4vhOloz4clB2fz94%2B7O1u39IDlQHLsQHyTGt%2FqQoTNHa%2BkN26sLgYyZPl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501e8fc8b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/logon.css

172.67.186.224

200 OK

26 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/logon.css
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
26 kB (25519 bytes)
Hash
b82eea8edc3c678e3a6f66f0f651dea3
5c3e45b1349abed3912dbd79f5f2cc95293e3fce
75f2cf7359668a887271048df933448721961b3e6cee18e8aa26250c34709fc4

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /logon.css HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"logon.49f1a97247.css"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2xMMhaEAJ4EdQfQwZ80CC2WJtLXdFwZAxwjCl7caCZW1nBhwYegFeHYReB7Po3zIq2SXe%2BR54sHOpZv%2BU4Q%2Bfhzt4krQHMT4uDh%2FfaSzfNykGHWp1pTB1Hx5WrHK1mW665tna7pn0Dswgn8WGpyzFiq0geqE2P3UdpYzrrmmQmwWZa2t3ZZBHyBD%2BljiYdEtM6kkuds%2B%2Fn8v8LgV%2BsuYn0eAGMIq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501e8c3bb4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/apptel.collector.min.js.download

172.67.186.224

200 OK

5.4 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/apptel.collector.min.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (17847)
Size
5.4 kB (5375 bytes)
Hash
07284ba76fd35c0d6bbc27286461050b
00542f02c50a92667738acf2e4fe4ba2d1814a8e
0dfc73fde5bef4f20a033eaae19867f643a2e8627e025df4aa950d5660758fbf

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /apptel.collector.min.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"apptel.collector.min.js.5d3741e563.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p33lbYro8EOdZjPNm7ZiRsn0Mk01rCkIsmbWdxhXsAnsA43%2Fci1bsFLMiXk4kM8pOJpy71FlK5VgXQL1lWezxrpK7tOqGmQsxHRXeYjI0kWyS0ddnVK%2BZ0oAswr6sm5WQvpq4PUJiNV6%2B6GzgugtEqTdDOybFDsxMW87I6rigC3V29Uq%2BjKGtMs63O0VBVbdkZWOF7xZ8UnDhws8fDq%2FtQyuEkL0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501e7cecb512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/blue-ui.css

172.67.186.224

200 OK

59 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/blue-ui.css
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
59 kB (59422 bytes)
Hash
1cde1071cdd26c7349448ea65f01aa3e
e6b571653b574ffe3f2bf10b8529be2287de9523
d7d3ca29b6ab5b785cec1b6f33ae1de0dbbb685cb64cca041661adf11e5aff95

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /blue-ui.css HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"blue-ui.abcee5ad6b.css"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V4ohEz1%2BU2LWXQboXiGwKurT1pFxPuMQIAiNtzzizH2Q%2BxcixagtVPhqILLlFGObOTy7f2cv2z93H9mvYIO97IvRtOtv3wNYmGW31egS7AhQO3sHxa5gPHDr0D31xfQQ%2BPuoB8Fu4aUZo8oG3gzFTSuqZHyTZfG5VQJBmZhNvSSULGfaAXv%2B%2Blc4%2Fh4CpECEriNGOFucl26B8cvNqJ4czrAnP8Ry"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501e8b530b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/settings.js.download

172.67.186.224

200 OK

99 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/settings.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
99 B (99 bytes)
Hash
70f3fb4c6c8c986f8760d5d8ff49524e
fb9afda2708461c2fd1a1700177aeaf0c148d917
f61218bb753e16fd70c4cd0087ff5fd924de7e53375b81578c4f3fcbba7f90a9

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /settings.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"settings.js.ae4184fd31.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZ7GD6Gw5%2BvcEg781QCRo4JxCB3Vxjs3xnQOG3v06oRwNuYKeZe2YUzOpVDj8Ur2JHhZ4ZPIhjFo8MsRBhfVidfJsGTOqvUcNeYcYL3x%2F%2FnYAfJGvkdINdiZevkf%2BoQ867MBCvnA%2BAJM6Ya9gY5pyPtLYD4iv2VXpm%2FsbhSvbIWEGWUaAggquLLdo0%2BH3ckrtHjWMEl2G7HPG3RFdQSSg6SAg8ew"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501f9becb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/bridge.js.download

172.67.186.224

200 OK

3.7 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/bridge.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (10581), with no line terminators
Size
3.7 kB (3675 bytes)
Hash
d558906c1d351efe3abc00c94cd2203f
47d6f92e9438db21ad47a1b3787fdc5f78f12776
4ed0cd095c0bf34dd046845a6c17ff5feb4d560ac3f5148968ec93146f7f9ed9

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /bridge.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"bridge.js.e54397d96f.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3p6j3iAtvR0Rh3lDrbgoLcazoM%2FuwscfoEMRYcRxMeE1h2p4AhjNylkRBx0NsWXpxZKV3FSZfzakBGm8sMk2HYATbv%2FVr1VyCztVhoD4smhleUHQSOkYxoA91l4RYV4QBDiIwpHeLmF%2F6EyinwOSzzEuYzoxzmHy%2FY7ZWAKOkCzmJxzvb5oHo2%2F1vVYHJfXePcJ%2F%2FdVeX5CG4%2BaZxdE89JQaPr7m"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501fdc7d0b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

push.services.mozilla.com/

35.160.97.225

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.97.225:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fcKCCkWwyMkr+8Jlt3qhAA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: u0bda+LN/ylHpoFlZ1//WHm812o=

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ZIP_CODE_REGEX.js.download

172.67.186.224

200 OK

88 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ZIP_CODE_REGEX.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
88 B (88 bytes)
Hash
5b51ea512287a80d56639933c80c0ad8
0c574938cea2b582b5007e7fccc5aaf23facb601
b57ce409c1231db67351f22599430d50caa1fb681162fea3fc7fa207d20f00a2

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /ZIP_CODE_REGEX.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"ZIP_CODE_REGEX.js.82b20dc4f2.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55YnbqC2RylkAdiFubAtwzqsthaIoBa4gxokxan9iQ3PQ55z3phLEexooNMU8dzqEo4YsEIIjTo4FhLpq7mN5n37Cz7aBp23rvHzwfsH7Ri%2BgPPDoOZ3WtZK4NJXqGlmJ3khGaxnn0xQfCP9%2BOazMsmkC79H1CkgfzYFfirA50izbOb%2BVsqDRRWoPKTIdT4tWsxfsFYsOGJlEYTYoQb0i07Jm4OH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501fabf1b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/web.js.download

172.67.186.224

200 OK

4.7 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/web.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (13522), with no line terminators
Size
4.7 kB (4744 bytes)
Hash
88c91f05372d647fc95fe44d28fe78f6
6eddb01b485709d1b1419888d8471e755d83f090
3db222999aca706070fca7764eee7d5a9b740ebb06271db79862cc000e81f0a6

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /web.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"web.js.a76ae8db31.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hWG%2BYQX89FGC6KqKoTJ4pzQI3uQVxC%2BhTPbPR7W%2Bcu9XXRqOH%2BYLz1pt7XyBvGF0rVxYysoCPM90XlGNlHATRhfU3TSs81WuWdAc38AnMpcobkNFWLPLzRt19ehESBjWcH%2FnecUsOxI5dnrJieX%2B3DCjnOwpCWlQFuP5eZmy3khOEXXBOpwSLsNHy%2B%2FeQIUBluKdxMP7SW4dlwPg7UH%2FCysgBhlw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501fbc8fb51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/locationAPI.js.download

172.67.186.224

200 OK

458 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/locationAPI.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1115), with no line terminators
Size
458 B (458 bytes)
Hash
6026be73caee796d669e0ceb12e86207
0a94d51aaa0e0a19c1d1934cf88979bc8773b6de
b4e57e3412bbf267fefe696c7fff2ba2a5768be3f83d7cd6bcdb9f6cccd35f26

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /locationAPI.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"locationAPI.js.821c28783b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m%2BbhsXbvjA9%2FGhYt9vgnU9WMkNoOiRb6AUQl64q14DcY%2Ft%2BLRiQE68jCwZW65K1BqIe4WCkcmmBFo9ozrSSNigdNDr2WkOIxd%2FdFpM94moXU7zgvQDqgdRh3AZTDeGVMTOKo7DRfm3ummD4K70R6IBVHtGhkEiiDSDDyE2iEXa7EoJbQCuxYmtyZVNuZ08XkOB9hdsq4xuV5mVs6OmicI34XdA3Z"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501f8d74b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/cav.js.download

172.67.186.224

200 OK

1.5 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/cav.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (4340), with no line terminators
Size
1.5 kB (1488 bytes)
Hash
93a96831b8d22eb558267aa3d62ca045
aa51b30d36ac8cff3716d86cd90a2ba1b6b3a427
d4a04c56ab878f33f705cbdd6f8b72df417b89a035820fa8d7a29aade1f28b9c

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /cav.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"cav.js.ee0c6d1084.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MM9%2Fkcyg%2FCekyiuZdz6g74JSVssR0sNp7E69PJvodUlCaPpDR27Gfv4ORpKETCnthFwWaf4zn5oKONrIFpancBht2EH9CHUNgCpOO2Q6rKCzculhxUo4ZnBCnUqjhvO3KO7DvREZS9pQ8SnbLMfAzwZxPhqP%2BrqQVm%2FTYFYYf2%2FwhhzGCA21k78blXkYi01MDliSdTH80ByMt2NxfHdwyOfOSlqr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5020ba131c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/nodeDictionary.js.download

172.67.186.224

200 OK

1.1 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/nodeDictionary.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3135), with no line terminators
Size
1.1 kB (1090 bytes)
Hash
e444dab8feb5a7223df06262d47c6c5f
52ccfa470c70cfe46d7d63ef7e26c41bab5757b5
390ae1e5c9787b5522d88cff876e08b4407ffa59c133f2b0fd443c2ab6bfb948

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /nodeDictionary.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"nodeDictionary.js.f4f7c12320.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SjeRUSLlDFW95IXtbZvMnw2N8u5tJBg3c%2Fc3M6QLlntW8oWB4SeshY81Y4Eh1WO%2FjefMUk0MGsYdyIpVffenWSaGb0lpjvIGfgQYN%2F4qj5m6GrvXCadaZmgojU9xHU3IfohcLNuyMPkGxt1QiFQcUG2AMlSbw5PW0T5wb4tesMN9RPF3tMJKHGf5WStZ%2Blo30venwCzlOo8VSOsU4c6%2BcWXaSWjB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5020ea5b0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/apptel.collector.min.js.download

172.67.186.224

200 OK

5.4 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/apptel.collector.min.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (17847)
Size
5.4 kB (5375 bytes)
Hash
07284ba76fd35c0d6bbc27286461050b
00542f02c50a92667738acf2e4fe4ba2d1814a8e
0dfc73fde5bef4f20a033eaae19867f643a2e8627e025df4aa950d5660758fbf

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /apptel.collector.min.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"apptel.collector.min.js.5d3741e563.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FC69VisqwIcgGXi%2Bha9dlIFus6I%2FXrh3Cu4GU2gBqG5TkTpQZpY27qa4u29s8kNNQmw9ynZkorhKOm%2Fwy7CcvY6qkIOLs0LGvCFlDDndPHmes0xkOUrlyURx2jXdbV3O6pGdFSQEdgsD4riunYZds9%2FMkfRJEIj%2BH7YGg8ke6u2agXCDy0%2BqrIomu%2BFP%2Bmz8fZt9lfR4oj3T6wxmLawamDLEts%2Bc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5021ae62b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/load.js.download

172.67.186.224

200 OK

246 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/load.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (376), with no line terminators
Size
246 B (246 bytes)
Hash
6acf3042aa6c45d800d1de0e9f82bc2c
0fcfb34cd5df475a915c0b39671e1ecfe846e39b
a207cfc5370fe665ca6fdecac0e93e582682bc8a605ef336f9375eee5d57a782

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /load.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"load.js.6b3635ba7b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PGxlLcZ%2BtArF6CCKjsd5QMWOsM9x4iR7lJI%2FlFobcBBa15XJ8piswijFQAjpECTPe8YZRPQoq4gu5XWlEdq6uT2p%2BVm1teYGvzXiDRVpKIFR17kq7zsAhAC81O686GMU9erGNPJZn6dsUQ5VeY%2BgbDtCyRa1%2BlhRfLkucVyRbKP1Ql8eDdq3p296K0LiBnV%2Bg%2B5yb4YeNQY%2FPLmBx9Kx3DqeBcGl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5020bed9b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/manifest.js(5).download

172.67.186.224

200 OK

199 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/manifest.js(5).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
199 B (199 bytes)
Hash
b2bb2f90ea2b1ff4434e94b331e96362
a3350adab980f75fc50edb6b58732e054cd2da8e
ed6ba804a9a6252e71898bd5f6826bbe629797870a66a1cc2f0c54409005b514

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /manifest.js(5).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"manifest.js(5).e3ba2b869b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vnh%2BsZvdXGvg78xzgwVzBH3dPfP8cPUODPOv8RJemL3wjh4W110rmT9d1uBXfd9t8G4AivA1MbwZ%2Byau2fHTXaYAuzYG4my20HEv9f54G9rixTgTPEKfhHOwg%2FkOVNiA5ZVhf9%2BKZZMS%2FBA3CV%2BZzjBUh8N%2BCZoyclzDoRDzYAm3LCuPXdbE1R794DGDp7NiSbqBiPn7hQsXml5oZ8sAb5Rx569r"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50214a9b1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/appConfig.js(1).download

172.67.186.224

200 OK

5.4 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/appConfig.js(1).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (19582), with no line terminators
Size
5.4 kB (5413 bytes)
Hash
042bba20d019a61832db9d30a5c8010e
350980e737318961dc3059f7a253db7971edb4a2
ce78ce00ad371133d6424d368929ff890ce9f715cc060de963b03ada51dfbfe6

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /appConfig.js(1).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"appConfig.js(1).99575fa07e.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cis6LwpKdQKA65BBwWe3SFgpgAHh1yf7b7CPU2qzikZhVd5aUy1qgiaPVv01sYZUkIFWLLCsLiTg0gwSMsHqacDI%2BREzTvDAp9pgoh4BK2edMsDTDvAqsZNtSp9Dn6zjKCeFimi1wvbDQRqbw0EOLaRA5XZH5oSNPlXlpKPTu6IbTxDQNs3D2r8JEgCg0KYLEc9202XrYu%2B9nCHvak%2BaKnVGA6di"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50222ed9b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ZIP_CODE_REGEX.js.download

172.67.186.224

200 OK

88 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/ZIP_CODE_REGEX.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
88 B (88 bytes)
Hash
5b51ea512287a80d56639933c80c0ad8
0c574938cea2b582b5007e7fccc5aaf23facb601
b57ce409c1231db67351f22599430d50caa1fb681162fea3fc7fa207d20f00a2

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /ZIP_CODE_REGEX.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"ZIP_CODE_REGEX.js.82b20dc4f2.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HmA%2BjqkFPDfNoySwCo5JE90Nwlb11DikCcqCiZx%2FOzwDUa52ikC425iyfn7bI4Ue0I5GOM%2Bik%2FZR9vkPT%2F6gNDs9hTDY4TpyLF2Ys7ExFoQe3im1JgUUjwpdh6RLsdV6DkDCvD6DuPbg9UyZyg4rwZ3s%2FrXo82PBhvB%2FW3BWcOhwUmL%2BeksPGaDWts%2Bpxed1IIu7hY6wHewPOWa6Fh0Dlga0eXTo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5022f8701c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main_ef5e84ec2aaba1ff0b3292bebd0aea74.js.download

172.67.186.224

200 OK

11 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main_ef5e84ec2aaba1ff0b3292bebd0aea74.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
11 kB (11288 bytes)
Hash
da183b7b82b2241ddfd14f1110fc0728
cb61a100c50bf78188c09d3a99e9f8ba528d135e
9e6834a261d9c2d622ce7e53957204d7c6789e45dc7d11bca986a7a125a2ec2a

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main_ef5e84ec2aaba1ff0b3292bebd0aea74.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main_ef5e84ec2aaba1ff0b3292bebd0aea74.js.4dc0ff9c15.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=THq2rEFz7ZSksk6lqm7HetFVKOZOftTmdRZzoJar9qd6%2FvZT9Nt6RNnOoa4da53urqjDimDR%2BaqWYm2bnonbKApnIWTq%2FK8sGD1xZvV8idO5CEsB8k41sW3Y7SujIw9%2FOv0t2gG8J3eCTQk5Y8lqaEJm0VCiPP%2FtIfg0tgv6jWybDGFuYN4W4ok90hNvF8Wxe4S7R3o63D1cC948DXbst5INMsx0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501f1dd9b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/locationAPI.js.download

172.67.186.224

200 OK

458 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/locationAPI.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1115), with no line terminators
Size
458 B (458 bytes)
Hash
6026be73caee796d669e0ceb12e86207
0a94d51aaa0e0a19c1d1934cf88979bc8773b6de
b4e57e3412bbf267fefe696c7fff2ba2a5768be3f83d7cd6bcdb9f6cccd35f26

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /locationAPI.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"locationAPI.js.821c28783b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2BjNFeIAsv3bbr4IqfqokQLsiCHJg34UFNheRQVCubf%2FAYBQMAa4oogdzBSiwjnsZvbAhp%2FB7%2FbhedLbpm6QanCCKpB%2FJfMOkzGq0NCMl0AYdVJLAMosccC66CkzQJAO02QlViAgnV6MSZdcKBJiIfjkQ7GZRvXgKZdbqL42ZZk5jgixzrP5ve%2BzZOc9Fy%2Fj9EBIhZWUH4Pfspho977pMMrELXcZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5022fc400b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/web.js.download

172.67.186.224

200 OK

4.7 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/web.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (13522), with no line terminators
Size
4.7 kB (4744 bytes)
Hash
88c91f05372d647fc95fe44d28fe78f6
6eddb01b485709d1b1419888d8471e755d83f090
3db222999aca706070fca7764eee7d5a9b740ebb06271db79862cc000e81f0a6

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /web.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"web.js.a76ae8db31.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zBCVjP37TqhYBfYaDkuO426YFcc3cEFbyd6t6eaWmp8rJJzDrimTxIZTKNFiV9Pfb8byHJq3%2F9Z1Q8gn1Qqk4eyHWxNEXjvme4%2BkYtxP6fRRdz6wkm6wUCC1LGIC7KvUfLLW5wjP8hJ3CHlKIT9Kb%2BAodiuu40%2BF5v1z%2FK8WIfNc5n3v282XcG1LvDMKT0Dl6qIjkq6xYZ90TKIYwN5EvwpNoStE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50233f2bb4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/bridge.js.download

172.67.186.224

200 OK

3.7 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/bridge.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (10581), with no line terminators
Size
3.7 kB (3675 bytes)
Hash
d558906c1d351efe3abc00c94cd2203f
47d6f92e9438db21ad47a1b3787fdc5f78f12776
4ed0cd095c0bf34dd046845a6c17ff5feb4d560ac3f5148968ec93146f7f9ed9

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /bridge.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"bridge.js.e54397d96f.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uf9h9qKXxqBY3sEWlpkRtZHQeUg1FEjKdPliyrnPFYKwND7Iu%2B%2FTx9WkPJx%2BoRjOVZsALXHUfylL2dt4aZ%2FNPWs3NQVaeWXwnGwfx4PJUbLItKxcw4izKM4TRKErGioCCLitFLFtgbGwqFILGWaAGx9wbMXWZAIjKWRNSKvBlv84JuSnQ6jlTI0GQguiKahsRThfuz3rqaHkUWNoMeE6Hfgk%2F3S%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b502338a91c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/boot.js.download

172.67.186.224

200 OK

49 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/boot.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
49 kB (49286 bytes)
Hash
10b6c4932578fff7daff9de4c382ad23
cca1bf363e93636a56ceb266d86c80ceebc8c7b8
0bbee63339e3d48761869a6f61b89696d5d703984fb16720c0280acc8d275c7d

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /boot.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"boot.js.6f0f146a3a.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FPudF8knz3vvzRi9A16NYa0h2JMRkQxFIgNUYRt63EnYMS9c1ILHz6Cwh2nB%2BuXJ9s2XHW3mUgg%2F8xTlBFHkCLRz6ByR1Z68mrSyI3YT8iJ1llBA8qtRql%2BwVTaqDcAWnmjZ7hIGbd8K6MSwxnZfUkUaaBzlj9x%2Fs51wWf6j6Uu9g7uH6EnRi61jq9NY%2FnKq9RvkgTi1AJBPHR9AbazuwhHPEK2Y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501f2dcdb512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(3).download

172.67.186.224

200 OK

9.9 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(3).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (31047), with no line terminators
Size
9.9 kB (9926 bytes)
Hash
9d8555837cff2ba425ee297da1a57e61
029cb0ccf79bce09b45252583708793c35bc2af1
ef5ee6fa3ffe386d961f6cb4a5e43135156fbfa57c635ac6948fdec83e9c022b

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js(3).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js(3).73fffcae8c.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1UoFbEJX6MToMEZbCrI6MBWrpC1Nfyigvlqwt6SrLNgP%2BwATNWP%2BHkiKtGY7DIa%2FKbWEs50QqxrzqLl5hy3ePK6qEEawtRFIWM7anDLjFK0d59y34rTbtLDPEpN7utIg2APLURojdMfYjFHMCWbyEV4iM9%2FDVPmJRVJr%2BqwyEzlrvhG1Ap9M1en54VrEr5%2BVtqTYmKhLnAiyEqxyY3yYVdz1fqIP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50235f49b4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/cav.js.download

172.67.186.224

200 OK

1.5 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/cav.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (4340), with no line terminators
Size
1.5 kB (1488 bytes)
Hash
93a96831b8d22eb558267aa3d62ca045
aa51b30d36ac8cff3716d86cd90a2ba1b6b3a427
d4a04c56ab878f33f705cbdd6f8b72df417b89a035820fa8d7a29aade1f28b9c

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /cav.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"cav.js.ee0c6d1084.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cH4Z8chdrup7fF7IJDrq76fvPCz9BFljGvlrFlMrfybqzAtb6%2BU1alGE%2BT%2FlJmNgvcXTGfEuS6DXdQxjtOe%2FC%2BBR9F0lpq4ssL4LqtJDerjiIbyPjOMjNP4FKEPGC4ZUpqghZsHBqibzhqPs24X9hmuApGEJtV77sLCMIpJhj6e6w2duEU2mwiisqz0dwSIpJnnmZqpT3hUI84%2BFWHNSJGaXwBcl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50236a840b59-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/nodeDictionary.js.download

172.67.186.224

200 OK

1.1 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/nodeDictionary.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3135), with no line terminators
Size
1.1 kB (1090 bytes)
Hash
e444dab8feb5a7223df06262d47c6c5f
52ccfa470c70cfe46d7d63ef7e26c41bab5757b5
390ae1e5c9787b5522d88cff876e08b4407ffa59c133f2b0fd443c2ab6bfb948

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /nodeDictionary.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"nodeDictionary.js.f4f7c12320.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7egW%2BroPMUSya1ha3XOZRO6Ik2c6yj2pXqruBmJEfIpNWpgE1Ny3MbfFSVBoIwk5kFKbW9z6Ij3dzo3dAstNvtMUe2E7VbPWgw%2BheQprMBKjbpBJeveOqWki0af%2FB5j4G34j%2B%2BorEGUCBaQljVo5kxynITdrYACAhaZ2NJZ3onq7mrAJbtswKFMyhdbOM6%2BjTRjKF4P%2FeJ413B3lJkM7%2B1vn2bIR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50237f71b4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/load.js.download

172.67.186.224

200 OK

251 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/load.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (376), with no line terminators
Size
251 B (251 bytes)
Hash
0ef0fb7fd2adaa9d3b67be91768bddd2
b545fe5bdfc96d587e0c8c84d43b49c4f3e6b655
43c378732cda8ca92a11e27b6be7d7a3fedd08fa9c07f4d99847f5832987209e

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /load.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"load.js.6b3635ba7b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cwxy6iOacn%2Bqg4oY3sdPpWAmIGI6I6Rmaxg1%2F0PxX9D%2FYL2k%2B64AzYaKO8SfcBGLorkujKtz5ZTCnmoU0mNrIXWb%2B64DHEyMzeYsYrDwHhZ8TZJk3Z49oy4P9tUIwBTc5LSeDxxQ1xD4noVibVXcOlSuLcfWJOc%2Fk1rUSHopaS65iLmrdkPmLU6xVopz3RWc7DaSjc4f2uXXGkO59yPS7R%2BZRKUg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50237cb40b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/manifest.js(5).download

172.67.186.224

200 OK

199 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/manifest.js(5).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
199 B (199 bytes)
Hash
b2bb2f90ea2b1ff4434e94b331e96362
a3350adab980f75fc50edb6b58732e054cd2da8e
ed6ba804a9a6252e71898bd5f6826bbe629797870a66a1cc2f0c54409005b514

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /manifest.js(5).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"manifest.js(5).e3ba2b869b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4SA7CDGMTTCmlLKw0GqNNFGq2id%2BcyQk7bxvdKehudZP4MgZJGt5hrRTuOL%2BK9Q4aTjQupKHMOlOg%2BgpR7WZs4O%2BQ3vx2llG9dRpkLQ%2BZDL6h%2BVqTsablqtFxuDPbsP393Bi%2B7encCf0ptgw%2Ff4IFS0p8kAK8r01hNMJwBOHPbJXifEBiLAd%2BEnLH2R30J4fes6DsEzNUkMGGLWpnes4kILQJ6df"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50239a41b511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/@seur/cxo-ui-common-utilities/dist/common/assets/img/logos/wordmark-white.svg

172.67.186.224

500 Internal Server Error

118 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/@seur/cxo-ui-common-utilities/dist/common/assets/img/logos/wordmark-white.svg
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
118 B (118 bytes)
Hash
8e8885afc30ebfcbbc88912763f20637
6cb815e1ddd6f0689838a144b0eee17d64ca6aca
9c531f1c0dd68507a2c22fe1827880c0f1682e2be33cb132379c891c8e0ed2d6

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /@seur/cxo-ui-common-utilities/dist/common/assets/img/logos/wordmark-white.svg HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/logon.css
Connection: keep-alive

HTTP/1.1 500 Internal Server Error
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 118
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Znm99sO4xPvNmEVS2Rwf0fANBiSQLDUnqsO6Z57sguAe8dEI%2BIgDv5yU8GTKuMIN%2BIjOXf9BmRQIrpZggXPilO8S5Zj%2FLyD33dPbPaINSh0HsSKZ%2Bc0SZB4zbOtIpfWQgy8z7Mh971aTKgrHtvVYRNUD54R08Yc9VKfutr3YVYzjTnzjdrLo2eXIqbUFP0cM082ebWmlIWZArC%2F0Fs1qZofFqahO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5023acd40b51-OSL
alt-svc: h2=":443"; ma=60

ocsp.entrust.net/

23.13.44.131

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
23.13.44.131:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
d9026b723f4af5a10820577e2a1304dc
2eb09c3826156ad0818e6e2d9875ecbde920012c
82f71a2e369ac444fd9396c31ae7cd2381736af37b04097cd40ec640c5a654bc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "82F71A2E369AC444FD9396C31AE7CD2381736AF37B04097CD40EC640C5A654BC"
Last-Modified: Sat, 10 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3057
Expires: Sat, 10 Sep 2022 22:29:49 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

ocsp.entrust.net/

23.13.44.131

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
23.13.44.131:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
d9026b723f4af5a10820577e2a1304dc
2eb09c3826156ad0818e6e2d9875ecbde920012c
82f71a2e369ac444fd9396c31ae7cd2381736af37b04097cd40ec640c5a654bc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "82F71A2E369AC444FD9396C31AE7CD2381736AF37B04097CD40EC640C5A654BC"
Last-Modified: Sat, 10 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3154
Expires: Sat, 10 Sep 2022 22:31:26 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main-ver.js.download

172.67.186.224

200 OK

35 kB

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main-ver.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
35 kB (34607 bytes)
Hash
73dc340ecd771b581849a8b09fd44654
78785ed4980e64f20c7396c22902dac5832264c8
a606fa8fe559d39d6a6042ce591217570c06dcf477a0ce842e2ed45644044d1a

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main-ver.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main-ver.js.713ba4057f.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DOr7sXnNGvbjt%2F0Bjn%2FjwSYgLFiCO0cjQx7MLkG2oUYJzEgEbwuZZPN3bA%2BMgE7VeXB0ZRgF1IlGcOebpPfG2oRD9EzXFRqMePf3ZCYxCOn5ki2TOU1Vbh4VrIoYLSv5yKRGP7rOjFDCyD7WEvbruJDdo0Ke%2FKinoevH%2B9ylQ%2BASNlFyp4Cn4gducql9XOgYWXhkth3wvFi448zI%2BbyZkI41L348"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50225f2cb4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.entrust.net/

23.13.44.131

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
23.13.44.131:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
d9026b723f4af5a10820577e2a1304dc
2eb09c3826156ad0818e6e2d9875ecbde920012c
82f71a2e369ac444fd9396c31ae7cd2381736af37b04097cd40ec640c5a654bc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "82F71A2E369AC444FD9396C31AE7CD2381736AF37B04097CD40EC640C5A654BC"
Last-Modified: Sat, 10 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3089
Expires: Sat, 10 Sep 2022 22:30:21 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

static.chasecdn.com/content/dam/cpo-static/fonts/opensans-regular.woff

104.84.152.51

200 OK

25 kB

URL HTTP/2
static.chasecdn.com/content/dam/cpo-static/fonts/opensans-regular.woff
IP
104.84.152.51:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 24876, version 1.0\012- data
Size
25 kB (24876 bytes)
Hash
4eeedb4bc24c1cae309e117eea3f102f
ad5a141ef39ad1ada22a464fcd3678fcf72ac22b
b8422277fc69c8e6ab51112dbf25048e40425cc497490fee251b56d7ef0ca179

HTTP Headers

GET /content/dam/cpo-static/fonts/opensans-regular.woff HTTP/1.1
Host: static.chasecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
Connection: keep-alive
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 13:42:37 GMT
accept-ranges: bytes
content-length: 24876
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-type: font/woff
date: Sat, 10 Sep 2022 21:38:52 GMT
X-Firefox-Spdy: h2

static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff

104.84.152.51

200 OK

24 kB

URL HTTP/2
static.chasecdn.com/content/dam/cpo-static/fonts/opensans-light.woff
IP
104.84.152.51:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 24192, version 1.0\012- data
Size
24 kB (24192 bytes)
Hash
531934691d00e2528426c7d09df7f588
6982b0badfdc31b39e04d77b1b51a8653fcdb36e
48ecc35b0e3894c3c798c4abede0e96f5727fa315bf05f3b8993eb1533d4b90f

HTTP Headers

GET /content/dam/cpo-static/fonts/opensans-light.woff HTTP/1.1
Host: static.chasecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
Connection: keep-alive
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 16:22:57 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-type: font/woff
content-length: 24192
date: Sat, 10 Sep 2022 21:38:52 GMT
X-Firefox-Spdy: h2

static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff

104.84.152.51

200 OK

25 kB

URL HTTP/2
static.chasecdn.com/content/dam/cpo-static/fonts/opensans-semibold.woff
IP
104.84.152.51:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 25108, version 1.0\012- data
Size
25 kB (25108 bytes)
Hash
33b58dcbc5aa1ae12fa76473c21ffe44
82a3345756101d0f95fe1dab285e9f9c4e79871f
d2113460c69de50edc6206a20deec3c2bc2733929f53817f1faca74ab34c33e3

HTTP Headers

GET /content/dam/cpo-static/fonts/opensans-semibold.woff HTTP/1.1
Host: static.chasecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
Connection: keep-alive
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 15:03:54 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-type: font/woff
content-length: 25108
date: Sat, 10 Sep 2022 21:38:52 GMT
X-Firefox-Spdy: h2

static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff

104.84.152.51

200 OK

14 kB

URL HTTP/2
static.chasecdn.com/content/dam/cpo-static/fonts/opensans-bold.woff
IP
104.84.152.51:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 14504, version 1.1\012- data
Size
14 kB (14504 bytes)
Hash
3ccbd41bfd4962b57199a8fcfbcbde66
6abb08bfa56a3668b8df2fd3ea5c04774f12b920
0634f735018d63980fb935914bd910ebd51ed5ed0a03c8811607aca0c2e7c532

HTTP Headers

GET /content/dam/cpo-static/fonts/opensans-bold.woff HTTP/1.1
Host: static.chasecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
Connection: keep-alive
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Sat, 11 Jun 2022 15:22:36 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-type: font/woff
content-length: 14504
date: Sat, 10 Sep 2022 21:38:52 GMT
X-Firefox-Spdy: h2

static.chasecdn.com/content/dam/cpo-static/images/chase-touch-icon-152x152.png

104.84.152.51

200 OK

3.3 kB

URL HTTP/2
static.chasecdn.com/content/dam/cpo-static/images/chase-touch-icon-152x152.png
IP
104.84.152.51:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Size
3.3 kB (3306 bytes)
Hash
c914a8a86590b23691476a4178ea3a52
af16ec4fc3b5446cac17ec8f0044286b835d3295
f3446f452fc926c9182a2a43780faa169e533df8446d4f9a5f62ac2fb5b375e6

HTTP Headers

GET /content/dam/cpo-static/images/chase-touch-icon-152x152.png HTTP/1.1
Host: static.chasecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 27 Aug 2022 14:35:21 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-type: image/png
content-length: 3306
date: Sat, 10 Sep 2022 21:38:52 GMT
X-Firefox-Spdy: h2

static.chasecdn.com/content/dam/cpo-static/images/chasefavicon.ico

104.84.152.51

200 OK

2.5 kB

URL HTTP/2
static.chasecdn.com/content/dam/cpo-static/images/chasefavicon.ico
IP
104.84.152.51:0
ASN
#20940 Akamai International B.V.

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
2.5 kB (2478 bytes)
Hash
9720428826e9aa52f08f3ed2e059fc84
52261e7e79e993ab182d7ac4cfa620046109bd33
8bc006b59ff3428cbc8f0fa75e9dc82cecc85e4c09d7f09edd6c717f6ac2debf

HTTP Headers

GET /content/dam/cpo-static/images/chasefavicon.ico HTTP/1.1
Host: static.chasecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 26 Aug 2022 09:44:00 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-type: image/x-icon
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 10 Sep 2022 21:38:52 GMT
content-length: 2478
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8782
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8782
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8782
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8782
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8782
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:38:52 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9766 bytes)
Hash
7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 04:00:05 GMT
age: 63527
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7218 bytes)
Hash
3f8aeb20a6543be83f3e422796c4dc70
4e4e127039dd8099c63c3bde198118d2874f7342
0f9fdd1b577e4719f88620bb451131bfb120790479b4feccb4222647fb3ea453

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7218
x-amzn-requestid: 4e9672b6-5415-4808-9508-22e8c42de448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE_QzHffIAMFYTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6318459e-743b975a2770e2a90c616d87;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:17:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dR6KtfbMJzFz0j8zIFUNtdkJHUaerjxWbUyYKBD-jR_uAAvCCty01Q==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:01:33 GMT
age: 85039
etag: "4e4e127039dd8099c63c3bde198118d2874f7342"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4477 bytes)
Hash
71bafbee3867c04c3712ff98a123d52c
ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf
58ff1700e0b125caefb73719e2b3d734b2fbcc5ed1aabe5a11bb73b43edab831

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4477
x-amzn-requestid: bbdca46e-5628-4faf-a0fe-ea1b5b39ac2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjzaHrIoAMF-iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb348-567e946e7cf77f2e11c17c97;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: a0AyKhmYA7WPwciU2nTXwyChZV_riw1QsqI_giBIcdZhi3Nz4jM0Sw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:11 GMT
age: 85181
etag: "ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9610 bytes)
Hash
1abac18a85802f38f08561ac64020b55
afbc7666fa0b2093ef0c5d9a955d54d139c09b30
eae7f28dd178293939ecd81082ab68ae6098bb3cb1f1fe9411c38314ddb0f944

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9610
x-amzn-requestid: 34102145-abda-4987-a68d-9069496366ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj0oF7loAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb350-52aee64214c814812c03262e;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91AsC8-zVFCOPHFb2qnlTev2aXzdCEDYtc68JtYYsQSKS7OFF4QzgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:50 GMT
age: 85142
etag: "afbc7666fa0b2093ef0c5d9a955d54d139c09b30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8266 bytes)
Hash
d21a3e07583d9fad4104b6457f7915e7
fdc9453562f993e2545ca99731a7741e748b6082
8ea38264c82c6b544447079cc92eae70d0968a070ba39022af0e18c498916338

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8266
x-amzn-requestid: 3411ec4b-ac18-4b4e-8876-c99b94d3a4a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNitWEjhIAMFWpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb188-4d9e496e7ff141b46748d850;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: vyV1_onImxuLNGp4UI1W5grcuVW3LHJFJjvmO0VXU-OYorF6RVcoDw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:50:11 GMT
age: 85721
etag: "fdc9453562f993e2545ca99731a7741e748b6082"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8676 bytes)
Hash
e8f11aeba65478b039cfb4100aa23435
88db17a82ea0207ccb4826c2961875c5106b427a
6f6ec5922ec54d824e7f933de87608c5a763da119ae9461d99c6525649b1a9af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8676
x-amzn-requestid: 64a58aa8-8321-4c91-98fe-dbf97996c513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNiuZEjnIAMFRFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb18f-77b635593b202d7d3cd0ac84;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VWwNSpFvcDq3nrn91QvYjrJX5hLjp96vrKgZzR-pOdrdHx7MlcagGQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:43 GMT
age: 84309
etag: "88db17a82ea0207ccb4826c2961875c5106b427a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.entrust.net/

23.13.44.131

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
23.13.44.131:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1585 bytes)
Hash
70db65390eda8af1262f592b39d76e9e
ad97200f91a0631ecc4025a98f5acccd6859db0d
69792e9fc0746777c544b22d56cf17fb370cd5c34a58bb6f6ab5a451e1c48efa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "69792E9FC0746777C544B22D56CF17FB370CD5C34A58BB6F6AB5A451E1C48EFA"
Last-Modified: Sat, 10 Sep 2022 21:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3585
Expires: Sat, 10 Sep 2022 22:38:38 GMT
Date: Sat, 10 Sep 2022 21:38:53 GMT
Connection: keep-alive

securej.chase.com/__imp_apg__/api/dip/v1/dip

159.53.117.80

200 OK

206 B

URL HTTP/1.1
securej.chase.com/__imp_apg__/api/dip/v1/dip
IP
159.53.117.80:0
ASN
#7743 JPMORGAN-AS7743

File type
JSON data\012- , ASCII text, with no line terminators
Size
206 B (206 bytes)
Hash
277f0b49b860e59cd4ed393b17017e97
def9946c05f86af1b0dd1890ef650aca8f7e39d8
d3804f251d989f3ea4383716655df58a482a417fef280b0b4ac898e4c45af421

HTTP Headers

POST /__imp_apg__/api/dip/v1/dip HTTP/1.1
Host: securej.chase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2022
Origin: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
Connection: keep-alive
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
date: Sat, 10 Sep 2022 21:38:53 GMT
content-type: text/html; charset=utf-8
content-length: 206
access-control-allow-origin: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
vary: Origin, Accept-Encoding
x-envoy-upstream-service-time: 7
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Set-Cookie: ppnet_4515=!2WqBpakEoZFMKnUn2LDRmWL49//LqtlqDhRoi3mgSj1ZoxMxlmcZbmwlIXkUk0rHLqc/VsemNZ6eUOQ=; path=/; Httponly; Secure

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(1).download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(1).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js(1).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js(1).abbc67957d.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VKZ6twuM6CSIFotFrykE0kd0Ri2hsM%2BOIWr3EbTt4zkuqUpHQfq2R9x62%2B134gJSk2QJJBXp798EXXjrUT%2BooWlPDiAgNuzaQbEO6Sy%2B24JxMtTqvUfagocFpGBppjOzGkYnutI%2B05m1uoSqNw5s%2Bct6gowjrk6ephXdlVRO8uiShJyOY19szRaFytwaR2ZTYSCb8YYD%2FoCR7cuZkGG2D5r8gaGf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501f2d1fb4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/d3.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/d3.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /d3.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"d3.js.d6c01f97db.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JR7e4k6kaC8vyYqBXslVRqsMbDCKDi%2B%2FS5uNBrDLxknTZoyO6sFKzSQSVJgY7vrCBGS46KMpT6EJhr1TvDR04WsK7CKn4BDzojebR2wPXbHeXy4OHstLyI3RtF7mlDTKOwZBBGt2lM5zm4UcLWv0dlECDhSy4Qlo09LVNZApEN0uWUIYhRm5KrvbG220fA2vB2McGsSJvfrBkqQUmWq6bHYc644B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5020af10b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-core.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-core.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /elements-core.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"elements-core.js.219383d43b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mi%2FOZnGLf0pL5EfDcS%2BpG8IUdrnjoZPGj8wan271a7kELMB01G0tNgM%2Fg0BMvRee9l1DxwTfjWUgbrSqmlgy43fitPPkDAs3Xl1JBBQH9h9u%2B%2FvdSUFl%2BbhihooXxubJqTFQb0KFyePpIlmj%2F%2Fi2f1%2BkAWr8QhNh4Uuhwz4f3BDVHoyhD3tfGJf4%2F%2B%2F8I0f15CJVwBn2UkqoEgPusnSm6MU6HQ4Y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50209e7bb511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-chart.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-chart.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /elements-chart.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"elements-chart.js.ea5ba6f6e7.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W%2FC%2BINa1GTdVVxBNUea0qgHD4ANz9Oq8x1gJOXI56TjQvSdfTUAfltdormYh10YkB8vo33P56bWpyr4Efok1bS4RWmOQgPmCnEJpqIE1QuIYo2%2FrE28hIh9unxsALezi13fggc3FwtOg04%2F8JqSp0FDRlO0qoQdS8mQO1r%2FPspHtDNFq7w04peJOwmYLZ0mIHT8RGmSzsy0xLz%2Fl3UDGPnV01FJl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50213f62b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/boot.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/boot.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /boot.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"boot.js.6f0f146a3a.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1s%2BTporDyKpwjRD8LL0fIaqJ29sX4oAbhqnI53yYJtqb%2B7T0x%2FMFMM7WX02hvVp26ZKLkI3nxhMVhJAje6SABvDQB%2FFe8A4TyaEgPhP7TFZHFNBxURf1FIMiUEl20cJC3tTjR3fRgq%2FFUlcglmztepRJZdba9VtwgSLVZ6fdFYhpCDhlUoktpu%2Fowsqy4eXGophQN80vh4Txhl5t3RwaCJWuOv4T"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5022ea0f0b59-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js.5083081f62.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jYvApLbYOK%2BVwQqBNV%2FCGDo7uONaWDJyi4FraYyDFVGnY4Memu6nrFt03upMFhzUrXskzE0VpC45A3SMhnvtRiPcnNayUmqf%2Bk%2FkwLvo5EcnlVbqvXpXYZxMLk5KHnc2PuIE52pZAAhWDOF32QFXIcHom0Oy88NY7THc6ZxgvIMyYY%2Bqg7FUJmd6ma5x1BxxLmzK7cwZm6XoEuU7Ik5YmgTUW%2FMy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501f286ab515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/view.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/view.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /view.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"view.js.1b9769871f.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9XpORT2uUCpYvy5Qm%2F2FfYNUIFXWZuMjChi7YTw2DyAqdRWzWQ6bOuIXX9fWHSjo13YxU59j%2BXvaRVPFB3pUu6ux5VupZvLMmJeXEWZ50JhXC6ckOXs5kitkbvYUmE14luilhKl%2BQvBNnwRQFR2ykbplmE2TbHp92oCeiggt2k%2Faq01jDiZPJeXGfuAt%2FC9nYpsnJkFWfINvGdaxNpR7bwntHF7M"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50202cc1b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/d3.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/d3.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /d3.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"d3.js.d6c01f97db.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xfWywxp91khCzM8utljjYjQeyOmqXrlaC1w35VToiuqACYTCKjs1abyNi55A724lbufBbYALhxiCSTyPf69hYjYoGwviikghffIECKh8Zk9yVIpnIOM2MWG0sF3m3FvAuQkminHNTCT7fWt8tO9upSmckP3BPsj47QDE7Puyj%2BllHcLSbN7Ed3nbE9dOJrWI%2FcjZ26QGoo26vA0B791U1YJp4oDV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50236feeb4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(5).download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(5).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js(5).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js(5).fa60765772.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8hCi2osXA7p6nW%2FdlbZfxDxpl%2BRbyq8h0rzqG7ky4WfgE%2F6a1PdwxjV3S5PmIES%2F09XP7Yh5X5iTu7MhMF9vrDtGGTLN%2BoJnzEA5Yz8AhDeP%2FzmXPip0fZbrEretrVRodXTANmJ%2B4608euTiTYkY2Kf9XLORqXCXnRMOGdtSYchJ8jCWpw1iWeA8PcOQ1QkR78aeuTk8KjnhuZRIZbxogjExuuR%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50239f8eb4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/jquery.min.js(1).download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/jquery.min.js(1).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /jquery.min.js(1).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"jquery.min.js(1).b8c978bc3b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GuP9JKISzU6AMMxgPrtyogRAVlM0X4xTnWZDkSs65m6qZcWe06Xzn5zHM%2FbTaD0ars11m4alYKS5K1bh3Hf%2F2mXBg3xe0rzCpucWh4Z9P9KBi5MP6Jx7jkJJ5bHC5mY2rlJyERR0Aa%2BU36kGAg%2BnIxVkpoyjVWp3HpAw1qv7LlkJmkEv%2Bk81u2jynUdYnObHEgZxiO%2FnsS9tqZaA6x%2FSghfXxEIV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50203cda0b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(4).download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(4).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js(4).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js(4).6aea6a4ab2.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=72lDtqW%2Bg2k51hG7aYsPnaN33fTNLyjeYUBBmXh9BGsT3wDeBwyM43cc8qF4IK7Ant5okXmdrE8uzoB7sXOHkKlTE%2BtUOogKx3pjdsqAahlKapqUWG6nW%2BNvdnCZvj7x4hGSgwm2duOMzj%2BrxVW3mA0TiOIQEWHWa46itPw6KDrVUErUvm9fHwKctjxFq82JavOehum6%2FJOd4uVdufrtxd0iPU0Q"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b501f1b21b523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(2).download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(2).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js(2).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js(2).4dbadd7cf0.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sizbaJdebWphry1f9Xo26LW2tU%2FY8mQT92ucnU0xJ0aDUPRq2IUxYanJKfnrL5esWPx9rOZRR6n8y97O1edQd8Y79YYX2DchWuyx2Yn9raTPG9fGoiWShzS5Kk%2BJbnMH52m7MaPh8ntyLn4fa3sngYMsnE9xMPHPPA5QGRzWY8owcaev%2F8jZGp5sUt49DWUQTCIGpHFKHYPJv96QHT7Tm4mdKDl7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50204cddb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-common.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-common.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /elements-common.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"elements-common.js.1de6dd3c43.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cxvSu46VLd4OKJ55z0nBQqFSxOByiMQCiXxxZmN2c%2Fb%2FoNZ%2FLoI671QiziNp%2Bw%2F7f6AzeqBYrjZ9OnwZLTBgfGZHQYIVptpvhZjgPHDDc6CVdO9WJLR0szcRChGyv5qXRjPhP4ZAhHKtY8veyfJXKKxpCGFOARtCk1lSvHqGoHmAO%2FPj9G7EDGeI5txJB62L74jk9OGgN5cBQeKVmEEdJbITlXC1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50238f531c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(3).download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(3).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js(3).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js(3).73fffcae8c.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXSw0OojQshpGVsKYxOD9O4x04kPQVMBxjvDhPAeBE%2BdkD92wFfkip2EGCzwNmxBMCzOetRlkbQFfK4RS1YhDX6aMv9Bd%2FYLrssRaKdUux1mQ8Q92IMTIa0rHWtHMSsvtmRBtZP2h%2FwwJseonYCjpu45tQDVukEA6XNiZUvw%2BoSKxMQtcFuiqytnwf7VjkiKJyEjbf2jt%2F17QSu5KbE7lXYSV1fy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50206d7ab51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(5).download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js(5).download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js(5).download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js(5).fa60765772.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1gzekKV5Xt6e9yE3dNCNY%2F81PLLm6NLivDVQZn5Zq6n%2FC09n2VUU86QDhklZKw2Q5YDKf%2BTfKCgUMpeyj60bEWZAunMEYF37keHAWMXGIo6jlhjtOVjFLj2ZsMoU7TxvZ3HapOMshPPayN2bOFPoAVMRx1lJhcO2RuGkhik6HdsEOIZrA%2FZy6qTIkCeBH9RtwziO7J2H6y3CXx9yDzlKdfOK9rqP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50216ad70b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-common.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-common.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /elements-common.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"elements-common.js.1de6dd3c43.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l1WBSEU0FW%2BzQfCptGXStbrxsRMth%2FP3FzdePXL55hG9rkQ2sz9d6tkQMEhGBf%2FNCQcp15A7HZg9rco%2BCY7h44zWAFD4avkE8VoLDp7RDj6K%2FviT4PN4eO6e1kUQdh1SoplR0wkB%2FdhJtI7bnvGlbOzxWBnH3NjGwWstbWkyh%2B3Tflk2ImfKMaZB1B5KBD8OyVr5vroHvZjoNO4u1VZtifsmVmno"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50212d4db4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/main.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /main.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"main.js.5083081f62.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LRe46NSH1Q1%2BLchRiWwhak1KSGuQwdoL4NVClFuIh4Eam%2Fq0QlGzX7UNM0B18CBf9Pc8ZAp8nkvoBL7akgKUa58jqnGibV4a60RXZj8cF13o2j64jaZQUaiiCt2Rv4uAtkqCOCl%2F0F3YOA%2FLTqyP45fjlfep2pPvVtcnqAdEIazqWIx06OpuQs%2BcISiVmwYTNymhCqLD%2FRlfhk%2B1jBSdCmQo1Ptx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b5022ef19fab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-chart.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-chart.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /elements-chart.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"elements-chart.js.ea5ba6f6e7.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zwg%2BMaeC1Fw6f0aKoLReAqP4EnhX9iNjHyGT2bO%2BqZs14gnH8dzBEe7AEM%2FYb6sPJr7GEvrhTwrbq71gHcGxzt6FVjvjTNJid3ZmNGBfsvMvTilKS2NjWzk6vIBnOjn7iJyW%2BM2ErLxzX2nJcTf8WVI9sgYyXhzPdidQqPfHumjcSb9ppc0F76WNtVEFanv23FOJ3n8g%2FPQpBAtby4AcklTi7MR6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b50238aa60b59-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-core.js.download

172.67.186.224

200 OK

0 B

URL HTTP/1.1
global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/elements-core.js.download
IP
172.67.186.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Chase Personal Banking

HTTP Headers

GET /elements-core.js.download HTTP/1.1
Host: global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://global-chaseonline-verificationsurvey-personal.charlottemeckschoolscom.workers.dev/
Connection: keep-alive

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:38:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"elements-core.js.219383d43b.download"
CF-Cache-Status: MISS
Feature-Policy: none
Referrer-Policy: unsafe-url
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iw8uJN5nM3UCZzu2Y6boSC6oaQvH45RLfIlEfl3CKM3v%2FMBIdO1W0coA%2FzYqux%2FrDdgPBhnVaXBNdDLtdbnjfR3KVUYX1%2Bq6HwGbhvWijIZpUUCBIxPeTtT1gpFHpy3MQ9dIlgiCs2hGDI2Vl6xFwv7%2F4yQRN0vBaimW34hEFEYHhLCBLBkTerazAjY6MGVIrYaXicuqHMwqzdh8Udi5qPCQi%2BCN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748b502358ca1c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations