IP 185.195.93.72:443
ASN #42649 Baffin Bay Networks AB
Requested by https://23386-5761.s2.webspace.re/I/
Certificate IssuerDigiCert Inc
Subjectwww.icscards.nl
FingerprintF8:7A:16:02:A8:48:95:65:F5:F5:EB:17:12:D0:04:8B:9F:2A:6C:94
ValidityTue, 08 Nov 2022 00:00:00 GMT - Tue, 07 Nov 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login/ HTTP/1.1
Host: www.icscards.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://23386-5761.s2.webspace.re/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
content-length: 0
date: Thu, 08 Jun 2023 11:57:28 GMT
location: https://www.icscards.nl/sca-login/
p3p: CP="NON CUR OTPi OUR NOR UNI"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors www.anwb.nl www.worldcard.nl www.yourmastercard.nl www.icscards.nl *.icscards.nl.cipe.local icscards.nl
strict-transport-security: max-age=31536000; includeSubDomains
Set-Cookie: BIGipServer~ICSDLB02~pool_www.icscards.nl_8016=rd11o00000000000000000000ffff0af4d3d1o8016; path=/; Httponly; Secure
_tpc_persistance_cookie=!rFOE43D0FTlUDT2KGr+hgulodoNDfhrfoRyqJXVOY2Q/Vk6/qO9CGaN7VpjzRlgIu564Osho0dom+oo=; path=/; Httponly; Secure
BBN01677320=0135ab579a4b48c99eef6e391382ebc7a5322cd0fdd84ca7de0df8873964270531a137b4548966b818099b7b18918c99276d556203bb64fa6b01e81ce4a2da18a5bffc4f73; Path=/; Domain=.www.icscards.nl; Secure; HTTPOnly
Accept-Encoding: gzip, deflate, br
23386-5761.s2.webspace.re/I/
91.218.65.223200 OK 848 kB URL User Request GET HTTP/2 23386-5761.s2.webspace.re/I/
IP 91.218.65.223:443
Certificate IssuerLet's Encrypt
Subject23386-5761.s2.webspace.re
FingerprintA1:BA:C9:5A:00:5A:6B:11:D7:A9:AF:61:68:C5:44:F7:D2:09:DA:72
ValidityMon, 29 May 2023 05:56:49 GMT - Sun, 27 Aug 2023 05:56:48 GMT
Size 848 kB (847905 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish International Card Services B.V
GET /I/ HTTP/1.1
Host: 23386-5761.s2.webspace.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 08 Jun 2023 11:57:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.3.33, PleskLin
X-Firefox-Spdy: h2
23386-5761.s2.webspace.re/favicon.ico
91.218.65.223404 Not Found 808 B URL GET HTTP/2 23386-5761.s2.webspace.re/favicon.ico
IP 91.218.65.223:443
Requested by https://23386-5761.s2.webspace.re/I/
Certificate IssuerLet's Encrypt
Subject23386-5761.s2.webspace.re
FingerprintA1:BA:C9:5A:00:5A:6B:11:D7:A9:AF:61:68:C5:44:F7:D2:09:DA:72
ValidityMon, 29 May 2023 05:56:49 GMT - Sun, 27 Aug 2023 05:56:48 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
GET /favicon.ico HTTP/1.1
Host: 23386-5761.s2.webspace.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://23386-5761.s2.webspace.re/I/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Thu, 08 Jun 2023 11:57:28 GMT
content-type: text/html
last-modified: Mon, 29 May 2023 06:56:06 GMT
etag: W/"328-5fccf94a8746e"
content-encoding: br
X-Firefox-Spdy: h2
www.icscards.nl/sca-login/
185.195.93.72200 0 B URL GET HTTP/1.1 www.icscards.nl/sca-login/
IP 185.195.93.72:443
ASN #42649 Baffin Bay Networks AB
Requested by https://23386-5761.s2.webspace.re/I/
Certificate IssuerDigiCert Inc
Subjectwww.icscards.nl
FingerprintF8:7A:16:02:A8:48:95:65:F5:F5:EB:17:12:D0:04:8B:9F:2A:6C:94
ValidityTue, 08 Nov 2022 00:00:00 GMT - Tue, 07 Nov 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sca-login/ HTTP/1.1
Host: www.icscards.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://23386-5761.s2.webspace.re/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
content-type: text/html;charset=UTF-8
date: Thu, 08 Jun 2023 11:57:28 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors www.anwb.nl www.worldcard.nl www.yourmastercard.nl www.icscards.nl *.icscards.nl.cipe.local icscards.nl
strict-transport-security: max-age=31536000; includeSubDomains
Set-Cookie: BBN01677320=0135ab579a78e81eec6dbecc093b20940e86b711a6466b3ee47f2b27f9c0bab63ae904303ab92a970aec2bb6fb12d47bbe7901ceea; Path=/; Domain=.www.icscards.nl; Secure; HTTPOnly
BBNbf9adc7f053=088d4528d9ab20009b540cb9190da5628bf4a16e790977e40361f199fc83f5afeaa804fb45906ea708d9cc3fdf113000bcec710c94f543832221846353d16f540d87cbcb3008e2e4cb27babc3ec9c24567fe52577f1ca23599c2fb70d065a704; Path=/
Accept-Encoding: gzip, deflate, br
Transfer-Encoding: chunked