r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3192
Expires: Thu, 01 Dec 2022 05:23:55 GMT
Date: Thu, 01 Dec 2022 04:30:43 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1127
Cache-Control: max-age=109163
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:30:43 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 10:50:06 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
uspsxpressdelivery.com/
45.131.1.208200 OK 19 kB IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1242), with CRLF line terminators
Hash b20e1d8bdb5e3b23675bc757f514c4eb
d66221a5b37ad5f9ffd40ab0b0e7bd9234a4b0a4
aad63d8d335f81de50049814ce2ade6daea5cf73725ac051863e354fd1183b8a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET / HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 19402
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8357
Expires: Thu, 01 Dec 2022 06:50:00 GMT
Date: Thu, 01 Dec 2022 04:30:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 04:19:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 658
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kpbjovJflhpJvfffhPVyvC7e2khljMB+HQUTG7rbBJTB53cf7aPSffeuiqyRGZWCksNkOD2VFZU=
x-amz-request-id: JF24ETBPZG7EAM0T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 03:46:07 GMT
age: 2676
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 04:30:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/css/welcome/bootstrap.css
45.131.1.208200 OK 21 kB URL HTTP/2 uspsxpressdelivery.com/assets/css/welcome/bootstrap.css
IP 45.131.1.208:0
File type ASCII text, with very long lines (65319), with CRLF line terminators
Hash 1339f581fbe11b9fdea6b31be8616623
c2ef762250a422047cc8115f3afa864f7d10e008
75332492e6f4231c380bff7e07947be498c0af5488dbc8af3515a99ccd4b029f
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/css/welcome/bootstrap.css HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 15:33:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20951
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/css/megamenu-v4.css
45.131.1.208200 OK 6.5 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/css/megamenu-v4.css
IP 45.131.1.208:0
File type ASCII text, with very long lines (44313), with CRLF line terminators
Hash e2cbff7997712d006a26be4bfbca637c
ab083aabb21d8bcc407067305aa06fb669d39d61
2a80bb5551eadb7c1e525af101d76418083c2f41a5a4043a1abcc8079758a8a4
Analyzer Verdict Alert openphish United States Postal Service
GET /global-elements/header/css/megamenu-v4.css HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: text/css
last-modified: Fri, 19 Mar 2021 16:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6535
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/images/utility-header/logo-sb.svg
45.131.1.208200 OK 1.6 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/images/utility-header/logo-sb.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash dc71a0b5830a88cb37bc5859ddd6febf
eaa6e0cf855bea15fa29ecb2b1e38b4517abf435
a8c267efe95994a2b7c49ea67e6799970424d0f2321a938a2f04d39655cb394a
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/images/utility-header/logo-sb.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Wed, 01 Mar 2017 21:28:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1558
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/hamburger.svg
45.131.1.208200 OK 251 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/hamburger.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 6117d3cf5b5f672ad9663495887f7c39
061ffb7390a757090c8fb4a98377b913e77f9057
92f4c36e86624fbf0798ec53a025dce08a015746547c11dc6c985939f00cedea
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/hamburger.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 251
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/logo_mobile.svg
45.131.1.208200 OK 851 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/logo_mobile.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 771732e6b2c2a1d1ca6a5b4b037f4364
839ceb5132e83f66a17835133bac5760a05aed46
1dcab98190e88027b2a5decb1ec2443a3f4b7eb2c1da8b399d676f807f83f4f0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/logo_mobile.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Feb 2017 16:02:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 851
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/search.svg
45.131.1.208200 OK 736 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/search.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8a31fb7683d2774d15cb80b2a505f8e5
c291652c4f953dda7e2811fa610a0b220b567729
55e3cf79f04aad31684bc2e714adee2a93ae1b9c0baa9edba53e01c88bcba1f5
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/search.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 736
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/tracking.svg
45.131.1.208200 OK 783 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/tracking.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8f8bfc4e147a094f652e6e84f8181ccf
0e05a6ae983278a8100b9268c865c698cf0f2814
444bd01aad77fd0bf403f6f3756dbebc3ed5ca3ef3b9cbf3f3aed05df7c0a0bb
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/tracking.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 783
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/images/utility-header/mailman.svg
45.131.1.208200 OK 834 B URL HTTP/2 uspsxpressdelivery.com/global-elements/header/images/utility-header/mailman.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d423014c1b59afeba28f902547cb4064
16e3bf3ed8b60386b0bcdcda6597962d7448e933
8bd2b2bdd887ab7b38dd4d5ac269295b94cabac1b4bb9975e5975771ac1aed4e
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Wed, 06 Sep 2017 14:54:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 834
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/location.svg
45.131.1.208200 OK 1.1 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/home/location.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0a1ca1ccf5ff9f82ab21211c45a5e6fc
1f2707a14018ac29696b0aa49fb6b3079a40fde4
bcb3cdd4d30cde3422425edcb5590810a5f1cf1567f60ba75e83189515453a98
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/location.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1136
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/stamps.svg
45.131.1.208200 OK 494 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/stamps.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c4a4a5c3990824ec4564a7690ee04238
a8783c6f91c072e51ef4a3b3299fb05c0cd1d6d0
69e5e6c9816b37c62b32102f0d40da6e1820233d775b65f105bb0c4d77c8e6ba
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/stamps.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:43 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 494
date: Thu, 01 Dec 2022 04:30:43 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/script/jquery-3.2.1.js
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/script/jquery-3.2.1.js
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/footer/script/jquery-3.2.1.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/lib/script/modernizr/modernizr.js
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/lib/script/modernizr/modernizr.js
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/lib/script/modernizr/modernizr.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/script/megamenu.js
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/script/megamenu.js
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/script/megamenu.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/ContentTemplates/common/scripts/OneLinkUsps.js
45.131.1.208200 OK 968 B URL HTTP/2 uspsxpressdelivery.com/ContentTemplates/common/scripts/OneLinkUsps.js
IP 45.131.1.208:0
File type ASCII text, with CRLF line terminators
Hash 484c16236c8b086697e1c0ba0923e260
111a494b43f4970ddae144cc2984e47b7c87c7ce
fb45e2f7f5e6a2247b801963c1310834fbead57a45e013102f7b24689e6c1ea7
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /ContentTemplates/common/scripts/OneLinkUsps.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Sun, 31 May 2020 11:19:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 968
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/script/ge-login.js
45.131.1.208200 OK 2.6 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/script/ge-login.js
IP 45.131.1.208:0
File type ASCII text, with CRLF line terminators
Hash 79a120a74926cdd242d5876bd91656eb
44c88d6964e2e3c7a446addd5b09f0c695d58e96
eb2c6f3a18db855ad80a3bf6ad5108f5741b246bc0e28edef3f2370f71304bcb
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/script/ge-login.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 02:09:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2566
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/lib/script/requirejs/require.js
45.131.1.208200 OK 6.3 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/lib/script/requirejs/require.js
IP 45.131.1.208:0
File type ASCII text, with very long lines (17192)
Hash 3f8642ff52ec9e6eafb77f54c66b637f
f2469643d6c6ca35f35e4c40666bc50df3589827
1cc3acfcbfba71fdc0fe846f858ba0448a6e22989ba9296957183cb36f8e45a2
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/lib/script/requirejs/require.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Wed, 15 Oct 2014 21:41:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6287
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/script/header-init-search.js
45.131.1.208200 OK 282 B URL HTTP/2 uspsxpressdelivery.com/global-elements/header/script/header-init-search.js
IP 45.131.1.208:0
File type ASCII text, with CRLF line terminators
Hash b095b23606becd20a7d1dd9a723e6738
2e2522d2b7e464b04af33ef944807f914ae5ab58
24009b05d923840a03a3c575d3fcfe0275806077b604fb358dcc84fd6569c2f2
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/script/header-init-search.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Sun, 08 Nov 2020 12:54:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 282
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/script/home/megamenu-additions.js
45.131.1.208200 OK 439 B URL HTTP/2 uspsxpressdelivery.com/assets/script/home/megamenu-additions.js
IP 45.131.1.208:0
File type ASCII text, with CRLF line terminators
Hash 2314844e53ddac651856f961e0f5bd44
028d8c74db248ba1128adbac67dc4eb1d3a6584e
1eedb7889b92f67dae0b4f9b2238e6aea1d626885a38a99f366e87598efceb42
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/script/home/megamenu-additions.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Thu, 05 Sep 2019 18:37:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/css/welcome/welcome-styles.css
45.131.1.208200 OK 5.2 kB URL HTTP/2 uspsxpressdelivery.com/assets/css/welcome/welcome-styles.css
IP 45.131.1.208:0
File type ASCII text, with CRLF line terminators
Hash a0be6f685a706f794f977343df432237
3d11507cf715310f0c37b6d6aa2a40a1ca83779b
126d5d7fd8590d86c91f6893b2e0c210e180a5563b42ab5668748593105ad8f9
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/css/welcome/welcome-styles.css HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: text/css
last-modified: Tue, 19 Nov 2019 16:34:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5151
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/css/footer-sb.css
45.131.1.208200 OK 795 B URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/css/footer-sb.css
IP 45.131.1.208:0
File type ASCII text, with very long lines (3073), with CRLF line terminators
Hash 25a0c87d5f854015007ef71a37cf35c5
e550bff4c15af430b236d5a02948b622078d5290
1c3a01da1176af5736424b5e497ea1aa643d3689f83776f3b8ce3a947c294a9f
Analyzer Verdict Alert openphish United States Postal Service
GET /global-elements/footer/css/footer-sb.css HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: text/css
last-modified: Fri, 06 Nov 2020 16:28:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 795
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/script/globals/jquery.min.js
45.131.1.208200 OK 30 kB URL HTTP/2 uspsxpressdelivery.com/assets/script/globals/jquery.min.js
IP 45.131.1.208:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 44dd37c6afbc20e65d5dc29b4b5f47ce
f8043353cd21e586427867d82e09b226be76b642
599856cc40612b446b921375fc1423953f8868c47d2968ea5f71d695cb8ea40c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/script/globals/jquery.min.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Thu, 13 May 2021 16:34:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30274
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/script/globals/popper.min.js
45.131.1.208200 OK 6.6 kB URL HTTP/2 uspsxpressdelivery.com/assets/script/globals/popper.min.js
IP 45.131.1.208:0
File type ASCII text, with very long lines (18860), with CRLF line terminators
Hash c945574019b92f3c4caf31bb1d10672d
0d4887a86005e677f5a11eaf318dc1583176dd1f
8e9e59c5c3ffbd9ad0c33f2b0fe2ec967de9d7fe0b7a77645c7c31097d6fcc8c
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /assets/script/globals/popper.min.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Thu, 06 May 2021 16:39:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6580
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/script/globals/bootstrap.js
45.131.1.208200 OK 15 kB URL HTTP/2 uspsxpressdelivery.com/assets/script/globals/bootstrap.js
IP 45.131.1.208:0
File type ASCII text, with very long lines (57791), with CRLF line terminators
Hash b0e70d19c5ba99c5f2207566eb48759b
2cd50f1d3cfacdd030587204ba454f7ba4b8df68
5d4da837a6e87796382efab2be0891664ce7d2860d7a49abecd4f85c0c5bb190
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /assets/script/globals/bootstrap.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Thu, 06 May 2021 16:39:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14769
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/script/welcome/welcome.js
45.131.1.208200 OK 369 B URL HTTP/2 uspsxpressdelivery.com/assets/script/welcome/welcome.js
IP 45.131.1.208:0
File type ASCII text, with CRLF line terminators
Hash b36c8fb12eec512bf04f51741d91334b
4909d8183b2e215602b58f0edb0b0a8a818ec88d
74cf79f5e97b7faaeb6fe48ae6a4e89e1420c3b5056b1ebe699f5f9bd2454f51
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /assets/script/welcome/welcome.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Thu, 19 Sep 2019 15:05:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 369
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/schedule_pickup.svg
45.131.1.208200 OK 862 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/schedule_pickup.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 34d643de940c21fc6d5e079c4909a5ed
a7b4d82d1a95ea2045c0eb736559825feee5e1b6
c1c979cf93ef93d6ee81e089b3cc1a3b3aa1345ad24e52cc8fae81b64673fe12
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 862
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/calculate_price.svg
45.131.1.208200 OK 697 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/calculate_price.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 839491f38b357d4730a3872555afe2a3
9fcdb6af212a53ae91acdbdcd634ab0059e3b82a
88d63b973252ac368c7a665f94767f7187cc0f2f33577eb35c4658e138267b23
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 697
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/find_zip.svg
45.131.1.208200 OK 731 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/find_zip.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d936a0f125fcd2b02942320f296ed81d
7b882a24563b2b168d9be33677bf3d47c5d563df
46094eb27327e20f1f0f2be6560240bc4b517ef433a62cf33ab2eca665cd6507
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/find_zip.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 731
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/holdmail.svg
45.131.1.208200 OK 714 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/holdmail.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 258fb1adb2cea710eb2cb49e4a19209d
8afca7c399d8cfe698741011321ce01b11e10264
c0cae2cd29165a7f5faf47f4bce82812a9f18541f97eb2648ba1f16f9f93fdcd
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/holdmail.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 714
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/change_address.svg
45.131.1.208200 OK 879 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/change_address.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9dbbcb40275fff23cb4baeb72235f9f5
6f9b431a038a3dce39825bb59264dff4f8be21a1
f158040413f4f13d2da5d90e6d3cefb070e0da78c96a5a14efd8055f67fe6485
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/change_address.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 879
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/po_box.svg
45.131.1.208200 OK 792 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/po_box.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b705487d65fd5617b8f9a25f8458e829
f9f71d6f930361e685eaa5e2f7277ae0beb502b7
d88aab56b5eecdb924dffd7c393d4a57d90a7e39864db70f09348ab3d0380d5c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/po_box.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 792
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/free_boxes.svg
45.131.1.208200 OK 589 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/free_boxes.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6941514a626be0afaecf226056aceb8e
9eea1b943c92ac6832adc1e563c7352a193b5346
ed76b610151120054b3bcfd94090c46160d437322353af63876423fdca09b358
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/free_boxes.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 589
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/featured_clicknship.svg
45.131.1.208200 OK 448 B URL HTTP/2 uspsxpressdelivery.com/assets/images/home/featured_clicknship.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash b2d3ea1ee277752c7a64b6f73e8adeda
0eca2b23331088c8b34c0de1501b2f8a07b2afb7
818e6ce78cea3591c4a7378f0089b1f98c22c4b35072592607e714bcb52e8514
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Fri, 24 Feb 2017 23:45:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 448
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/manage/go-now.png
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/manage/go-now.png
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /manage/go-now.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/business/go-now.png
45.131.1.208200 OK 9.7 kB URL HTTP/2 uspsxpressdelivery.com/business/go-now.png
IP 45.131.1.208:0
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash bb9d4474c242a01f5e7c5218033e7524
5321471a28516dd9ddcf9c1a2d9f490e988a7aad
caa4a7882b0ca4e1cc3dc0c515da871eabc11c045099df2d3686c4d22274fd11
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /business/go-now.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Sun, 31 May 2020 11:13:28 GMT
accept-ranges: bytes
content-length: 9744
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/images/social-facebook_1.png
45.131.1.208200 OK 1.9 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/images/social-facebook_1.png
IP 45.131.1.208:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Wed, 01 Mar 2017 21:30:34 GMT
accept-ranges: bytes
content-length: 1873
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/images/social-twitter_2.png
45.131.1.208200 OK 1.8 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/images/social-twitter_2.png
IP 45.131.1.208:0
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /global-elements/footer/images/social-twitter_2.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Wed, 01 Mar 2017 21:30:36 GMT
accept-ranges: bytes
content-length: 1842
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/images/social-pinterest_6.png
45.131.1.208200 OK 2.3 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/images/social-pinterest_6.png
IP 45.131.1.208:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Wed, 01 Mar 2017 21:30:36 GMT
accept-ranges: bytes
content-length: 2325
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/images/social-youtube_3.png
45.131.1.208200 OK 2.5 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/images/social-youtube_3.png
IP 45.131.1.208:0
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Wed, 01 Mar 2017 21:30:36 GMT
accept-ranges: bytes
content-length: 2461
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/ship/go-now.png
45.131.1.208200 OK 20 kB URL HTTP/2 uspsxpressdelivery.com/ship/go-now.png
IP 45.131.1.208:0
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /ship/go-now.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Sun, 31 May 2020 11:23:12 GMT
accept-ranges: bytes
content-length: 20334
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/store/go-now.png
45.131.1.208200 OK 28 kB URL HTTP/2 uspsxpressdelivery.com/store/go-now.png
IP 45.131.1.208:0
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 3129017c08a5c6f4424ff560474bf498
188bf767afd38a9fc3806cb3cabc3ee55a8873ff
39d86c29c3ee81796ffa8fad70fbd7ba088cb531e07b49839510c9a539282359
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /store/go-now.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Sun, 31 May 2020 11:23:30 GMT
accept-ranges: bytes
content-length: 27510
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/international/go-now.png
45.131.1.208200 OK 22 kB URL HTTP/2 uspsxpressdelivery.com/international/go-now.png
IP 45.131.1.208:0
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /international/go-now.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Sun, 31 May 2020 11:20:38 GMT
accept-ranges: bytes
content-length: 22133
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/hol-22/nov-calendar.png
45.131.1.208200 OK 25 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/hol-22/nov-calendar.png
IP 45.131.1.208:0
File type PNG image data, 330 x 160, 8-bit/color RGB, non-interlaced\012- data
Hash c5c8bf1cab3d3617401ed8a30427ab4b
c1a5e1e3a3a04f83852e8d5fade0da86969e7b3e
d5df34deca2bbc1b0b3e50a24cae532ce2ca2b72e351aec065718a93e7ddf75b
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/hol-22/nov-calendar.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Tue, 18 Oct 2022 23:25:40 GMT
accept-ranges: bytes
content-length: 25398
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/hol-22/hc-stamps-elves.jpg
45.131.1.208200 OK 24 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/hol-22/hc-stamps-elves.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 273x148, components 3\012- data
Hash 8d25b76a29c5893c9a9e8ac3808e4ad0
ae91f485025b3a87964b0644318990aad80b28fa
73079f3df200d4a15b5b926b3a90eddab4fb03b13b8e5ad606ce19c5cc288dee
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/hol-22/hc-stamps-elves.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Wed, 26 Oct 2022 15:32:12 GMT
accept-ranges: bytes
content-length: 23527
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/hol-22/create-cards-red.jpg
45.131.1.208200 OK 49 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/hol-22/create-cards-red.jpg
IP 45.131.1.208:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1288, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2812], progressive, precision 8, 310x142, components 3\012- data
Hash 66e643b37b7fba489de853b57f33f441
c9be13652bfe02520394af6b35bc36efd0485b8f
cc8dc4d274b55542798383f77251aeea22140d0b4879e037f68bd2f408d8c460
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/hol-22/create-cards-red.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Thu, 03 Nov 2022 17:36:46 GMT
accept-ranges: bytes
content-length: 49074
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/carousel/supplies-dotcom8.jpg
45.131.1.208200 OK 40 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/carousel/supplies-dotcom8.jpg
IP 45.131.1.208:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 626x277, components 3\012- data
Hash 2636df66d869e58af2ee447ac7d53861
a6659397d1ec30d01a1fa178905c8b358dd30b8f
d8e22e9e128007e03604465a44445b16a508ebe964747a466543d3b0d2a2cd17
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/carousel/supplies-dotcom8.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Mon, 11 Jan 2021 21:38:22 GMT
accept-ranges: bytes
content-length: 40507
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/carousel/gifts-nov-22.jpg
45.131.1.208200 OK 39 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/carousel/gifts-nov-22.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 735x294, components 3\012- data
Hash 1701190dcae1d28cd414f3fe5c7f2717
4bea0d164de25da02de53f85e804dc0cbd4aea7e
224cd78301d430bc457f7ab83ace075360353b7d7af459df5848903584abe6ac
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/carousel/gifts-nov-22.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Mon, 31 Oct 2022 18:05:24 GMT
accept-ranges: bytes
content-length: 38643
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/featured/dec-22-id.jpg
45.131.1.208200 OK 61 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/featured/dec-22-id.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 670x450, components 3\012- data
Hash 316aa7ebbae98339d7fca18c660b7064
149a5b7f4deb34ef49edd7d77c98f55bdd708387
babdd382995c04fc4c41d49878e80c262bb09ff78725aa9b2e04a2a442901dda
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/featured/dec-22-id.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Wed, 02 Nov 2022 17:35:04 GMT
accept-ranges: bytes
content-length: 60837
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/featured/small-biz-solutions-b.jpg
45.131.1.208200 OK 80 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/featured/small-biz-solutions-b.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 670x450, components 3\012- data
Hash ca1557f355170a25fdc6f6d7131ee1e0
40bb24968a8670351f4ce9fc4acac2204dcd2547
c7705c29397fe5987bc110b2563400ac4171649ef54e1ac218adb929a01690f7
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/featured/small-biz-solutions-b.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Wed, 12 Oct 2022 15:27:30 GMT
accept-ranges: bytes
content-length: 79461
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/carousel/stamps-nov-22.jpg
45.131.1.208200 OK 65 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/carousel/stamps-nov-22.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 645x258, components 3\012- data
Hash 27c21cad9c0648b48dd90627b229aee4
c34843cda4e6fa0d9904a678833bc7a16b2b2257
634a430ea413b02e9c86298b8257a144232c51af06a8fd8042d978f07e3e627a
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/carousel/stamps-nov-22.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Mon, 31 Oct 2022 18:05:24 GMT
accept-ranges: bytes
content-length: 64641
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/carousel/cards-nov-22.jpg
45.131.1.208200 OK 82 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/carousel/cards-nov-22.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 735x294, components 3\012- data
Hash d6a942811279fd2ab5cfd29329a6fc68
feecfceecdd11166faf600c9d54fd6742b0498ef
95f3caa55a3e2fd6244a6dfffe84b5e642510cbb059c92bc2962cfb6aee5fc1f
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/carousel/cards-nov-22.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Tue, 01 Nov 2022 17:23:24 GMT
accept-ranges: bytes
content-length: 82233
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/featured/pp-porch-blackdoor.jpg
45.131.1.208200 OK 92 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/featured/pp-porch-blackdoor.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 670x449, components 3\012- data
Hash 85f0b1e1e14f1501a18a939717c2e340
aa9790cb2e28ea5078dd420db49302175a5fde4c
3377f45360bf3188fb5ee25754abb2e615f9b16a415727ec423b48af62e884ee
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/featured/pp-porch-blackdoor.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Mon, 31 Oct 2022 18:04:26 GMT
accept-ranges: bytes
content-length: 92446
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/script/jquery-3.2.1.js
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/script/jquery-3.2.1.js
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/footer/script/jquery-3.2.1.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/featured/hanukkah-stamp.jpg
45.131.1.208200 OK 150 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/featured/hanukkah-stamp.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 666x450, components 3\012- data
Size 150 kB (149631 bytes)
Hash e0452433b94bec92c0c4ff891458fdba
c4c3c8140d1a9c38f1b6a58d087fbb226e8ee05d
92404a959f62e028f7fbb048440616d0bd6086165b54a616cf591aff54dda629
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/featured/hanukkah-stamp.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Fri, 18 Nov 2022 21:42:22 GMT
accept-ranges: bytes
content-length: 149631
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 04:11:15 GMT
cache-control: public,max-age=3600
age: 1169
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/images/package-intercept.svg
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/images/package-intercept.svg
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/global-elements/header/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/images/schedule-redelivery.svg
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/images/schedule-redelivery.svg
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/global-elements/header/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/images/icon-personalize-stamped-envelopes.svg
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/global-elements/header/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/lib/script/modernizr/modernizr.js
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/lib/script/modernizr/modernizr.js
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/lib/script/modernizr/modernizr.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/header/script/megamenu.js
45.131.1.208404 Not Found 1.2 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/header/script/megamenu.js
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash de7225068c8ecb2c24a41d00bf84c1b9
02144152cd8a4423ea135d82c7259e05e9656d3d
79ce4e2bbf25c4a4d91458d191d6ef268b4592169ae6586ba52242f412670b5d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /global-elements/header/script/megamenu.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1237
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1123
Cache-Control: max-age=104090
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:30:44 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:25:34 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3ac1f385bd4896c019f447176ca9971a
d324e6c17c0945bc7488f6e86ca060ad7f2a394c
5324ed1c3ee70b026d7d37cdd3ab53079591d79649803fe71e2a00054167c74f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 99
Cache-Control: max-age=143024
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:30:44 GMT
Etag: "6387b941-117"
Expires: Fri, 02 Dec 2022 20:14:28 GMT
Last-Modified: Wed, 30 Nov 2022 20:12:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
uspsxpressdelivery.com/www.googletagmanager.com/gtm5445.html?id=GTM-MVCC8H
45.131.1.208200 OK 579 B URL HTTP/2 uspsxpressdelivery.com/www.googletagmanager.com/gtm5445.html?id=GTM-MVCC8H
IP 45.131.1.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 8591548c535a615bbec5bab350fc8966
17a5cbadee75d25cdf3652aa2c1db49b645b8c12
1f162be94038659853b2fa5904b50e6d64a7cd2ab9454b919354144ede22bb9a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /www.googletagmanager.com/gtm5445.html?id=GTM-MVCC8H HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 24 Jun 2020 16:42:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 579
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/tracking.svg
192.229.221.165200 OK 844 B URL HTTP/2 www.usps.com/assets/images/home/tracking.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 04034bbe69ef912819cee070ff866703
2c96d71004568c2b460a7f8b796ae45ad89999ec
959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181
GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 28300
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/stamps.svg
192.229.221.165200 OK 551 B URL HTTP/2 www.usps.com/assets/images/home/stamps.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 780aa534eb1541ac0834489beafdeea2
2593cddb6c1b7505016d3c1138e16ff556e42166
c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8
GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 72217
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/find_zip.svg
192.229.221.165200 OK 793 B URL HTTP/2 www.usps.com/assets/images/home/find_zip.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b
GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 11423
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/featured_clicknship.svg
192.229.221.165200 OK 493 B URL HTTP/2 www.usps.com/assets/images/home/featured_clicknship.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe
GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12135
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/schedule_pickup.svg
192.229.221.165200 OK 923 B URL HTTP/2 www.usps.com/assets/images/home/schedule_pickup.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9f9e044f92360c82183e3a31b774e7b2
273798ee8d4dead89367b835cdb7f65f51e81b47
e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373
GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 11988
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/calculate_price.svg
192.229.221.165200 OK 772 B URL HTTP/2 www.usps.com/assets/images/home/calculate_price.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 42af7d5484bf8f80ac930313caa5941f
c3dbaf338d7fa81845487333c0cba5b8341bd140
f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c
GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12053
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2
fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
104.17.225.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Cookie: __cf_bm=FB2VtyneIQKcWAYcqCBczQVdPYxVpwBJBbEiKV21euA-1669869044-0-Aeg99+Cckbu8z7XdLjpWedQYX4FSS4lUbklct80cUMV6QyH5zDENRmozNun3yFcVvL1WdoVQVhCKUJyl7+DCEOM=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:30:44 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: L4EOkitD5B6fbXjDNcrkuduVi3eGNo9F14OjaO+u2YgcGB6QtnNu58109AjEqcs1/yqpoBUnuoI=
x-amz-request-id: 1DJPF4CPWRK3EGMS
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 211290
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 772916d98ee30b59-OSL
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/holdmail.svg
192.229.221.165200 OK 768 B URL HTTP/2 www.usps.com/assets/images/home/holdmail.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2f40bbb9da0d97f2ba3f3efcfd7533af
34c76f88cdda4be234b58a76e466bc7a972f14ea
f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069
GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12085
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/po_box.svg
192.229.221.165200 OK 848 B URL HTTP/2 www.usps.com/assets/images/home/po_box.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122
GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12032
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/change_address.svg
192.229.221.165200 OK 935 B URL HTTP/2 www.usps.com/assets/images/home/change_address.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9
GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12083
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/cards-and-envelopes.svg
192.229.221.165200 OK 1.1 kB URL HTTP/2 www.usps.com/test/nav/images/cards-and-envelopes.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d63c3636efb2bbcb327ed13b714367b
c7e326811c101213173c2a585d1e9700731816ed
c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f
GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 60295
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/premium/hol22-supplies-goldsweater.jpg
45.131.1.208200 OK 140 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/premium/hol22-supplies-goldsweater.jpg
IP 45.131.1.208:0
File type JPEG image data, progressive, precision 8, 1800x400, components 3\012- data
Size 140 kB (140340 bytes)
Hash d7cf1a6b2f9b42809a4e5c557f09dd0d
fe9b7c4540fd310a1930df30c2d86da6fb624a88
16f8c99b7185b22e903f653c9b5636082e186973b189699e8b709b30a8e99620
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/premium/hol22-supplies-goldsweater.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Wed, 09 Nov 2022 14:27:52 GMT
accept-ranges: bytes
content-length: 140340
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/default/info-icon.svg
45.131.1.208200 OK 509 B URL HTTP/2 uspsxpressdelivery.com/assets/images/default/info-icon.svg
IP 45.131.1.208:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6194446f2d45c7b9fef083cf3ed4d9b9
6d0dc6e2ab2721c449e9815dcc67cbb57f917604
c2a35df8017f874b4cd7b13256dbbeb1fcda7b641411192adcf49f2d245334c6
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /assets/images/default/info-icon.svg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Jun 2018 21:38:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 509
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/location.svg
192.229.221.165200 OK 1.2 kB URL HTTP/2 www.usps.com/assets/images/home/location.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9d8433f178d5a7b839a8bf25552c62b0
c21cec68e524862992f4aa51bf6955b953a65112
d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f
GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 11611
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/hol-22/holiday-center-bg.jpg
45.131.1.208200 OK 237 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/hol-22/holiday-center-bg.jpg
IP 45.131.1.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1182x716, components 3\012- data
Size 237 kB (236716 bytes)
Hash 56f26153f37ba998f7778d60e331b754
0602bf4045e844b628a140830d72be3f850f47b3
8399648671dfc5f548014a7208d5a8acc92134b639eb2c94ea5c70371a62c1be
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/welcome/hol-22/holiday-center-bg.jpg HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/jpeg
last-modified: Wed, 12 Oct 2022 21:51:04 GMT
accept-ranges: bytes
content-length: 236716
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/images/utility-header/mailman.svg
192.229.221.165200 OK 904 B URL HTTP/2 www.usps.com/global-elements/header/images/utility-header/mailman.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4bb1afb6143cb1307585f007399e0e4
7d28cd35cbdb8427d4a12274c3f455e57f4742e0
06410c31087cff92e7842a2e6aaef3b5b114192f77e2b652283250fdca6d5e30
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12085
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "723-55885af730a40+gzip"
last-modified: Wed, 06 Sep 2017 13:54:41 GMT
server: ECAcc (dcb/7311)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 904
X-Firefox-Spdy: h2
fast.fonts.net/t/trackingCode.js
104.17.225.78200 OK 790 B URL HTTP/2 fast.fonts.net/t/trackingCode.js
IP 104.17.225.78:0
Hash c48ced7d8391e4369693ef7b4b3d17cf
79ec52dd98276999035529153453ab87aac66cb7
387495cd05f78002136f5ef761b8e45aae7e948bbff1fd28ea2a1a0420c191e6
GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:30:44 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: tV243F2E3FHzbzOmyb20MHfeQ1GDyYatZCBl0Nm17F8uWij/iigaf5Z34J37a+dZQxKIa0bZwb8=
x-amz-request-id: VPCR2ZHNCTBAG0DH
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 3268
expires: Thu, 01 Dec 2022 04:35:44 GMT
set-cookie: __cf_bm=FB2VtyneIQKcWAYcqCBczQVdPYxVpwBJBbEiKV21euA-1669869044-0-Aeg99+Cckbu8z7XdLjpWedQYX4FSS4lUbklct80cUMV6QyH5zDENRmozNun3yFcVvL1WdoVQVhCKUJyl7+DCEOM=; path=/; expires=Thu, 01-Dec-22 05:00:44 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=qSbDQNCibPXr2E09pr1hMs7O3VvLFtXAqIswYB5doUw-1669869044-0-AcEq7GYt3rs2ujCwGsxWJVHYwgXVDBUhdNV_8Gb_RVImpemu8gBWMw1OvptWpATIKz1flS-oHWL9KDZ7sXVe9Bk"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=qSbDQNCibPXr2E09pr1hMs7O3VvLFtXAqIswYB5doUw-1669869044-0-AcEq7GYt3rs2ujCwGsxWJVHYwgXVDBUhdNV_8Gb_RVImpemu8gBWMw1OvptWpATIKz1flS-oHWL9KDZ7sXVe9Bk; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
cf-ray: 772916d91eba0b59-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/require-jquery.js
192.229.221.165200 OK 74 B URL HTTP/2 www.usps.com/global-elements/lib/script/require-jquery.js
IP 192.229.221.165:0
File type ASCII text, with no line terminators
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 84231
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
45.131.1.208200 OK 47 kB URL HTTP/2 uspsxpressdelivery.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP 45.131.1.208:0
File type Web Open Font Format, TrueType, length 46657, version 1.0\012- data
Hash 3beb1cf49dc702cd4de8618eeb344dd4
080e1b4dc8b43ddb06961a3490857cdb936a8c2a
ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/global-elements/footer/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: font/woff
last-modified: Thu, 09 Oct 2014 14:18:02 GMT
accept-ranges: bytes
content-length: 46657
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
192.229.221.165200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 39181
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
45.131.1.208200 OK 59 kB URL HTTP/2 uspsxpressdelivery.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP 45.131.1.208:0
File type Web Open Font Format, TrueType, length 58690, version 1.0\012- data
Hash a6e2d3921c9ea0fd81897d9ae7a33ba4
bc31969f2fb1926a15cd678b3e573c37a44e5421
f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/global-elements/footer/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: font/woff
last-modified: Thu, 09 Oct 2014 14:18:06 GMT
accept-ranges: bytes
content-length: 58690
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/images/footer-logo.png
45.131.1.208200 OK 5.4 kB URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/images/footer-logo.png
IP 45.131.1.208:0
File type PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash ccd62119eaa0e3697f60599487c51ad5
8e44d3123b4ce2005c76a2b8dcf7870058d2a82d
1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/global-elements/footer/css/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Thu, 05 Nov 2020 18:48:56 GMT
accept-ranges: bytes
content-length: 5390
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/welcome/scroll-red.png
45.131.1.208200 OK 1.5 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/welcome/scroll-red.png
IP 45.131.1.208:0
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash dded8e2e38057ea9183ff095bc2e6ced
e12ce587f18839ed139d59774e5fef8b793dbfd7
a3bb919a80dae6a64cb25fd18e689acae58a81737e21abfbbc851b83c60bf578
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
GET /assets/images/welcome/scroll-red.png HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/assets/css/welcome/welcome-styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: image/png
last-modified: Wed, 04 Sep 2019 16:38:26 GMT
accept-ranges: bytes
content-length: 1540
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
45.131.1.208200 OK 52 kB URL HTTP/2 uspsxpressdelivery.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP 45.131.1.208:0
File type Web Open Font Format, TrueType, length 51685, version 1.0\012- data
Hash a93e96be336c174933e68ef61d56e0d3
48f7a75a367904ff4a9a79689a508e29edda462c
cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/global-elements/footer/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: font/woff
last-modified: Thu, 09 Oct 2014 14:18:02 GMT
accept-ranges: bytes
content-length: 51685
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/helpers.js
192.229.221.165200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 58428
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.210.158.59101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.158.59:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U1ZkamtxlSreM65lK7uclA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XNmcLWVrTG/OhE5Pccwlcid/B7w=
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
192.229.221.165200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 24
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_languages.png
192.229.221.165200 OK 1.5 kB URL HTTP/2 www.usps.com/assets/images/home/utility_languages.png
IP 192.229.221.165:0
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826
GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 11858
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/shipping-supplies.svg
192.229.221.165200 OK 1.3 kB URL HTTP/2 www.usps.com/test/nav/images/shipping-supplies.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a8b39b328ba3e776e643f66844896e8
7a400d0f33c592651da919c728a30e46207a9449
05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99
GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 11615
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/gifts.svg
192.229.221.165200 OK 590 B URL HTTP/2 www.usps.com/test/nav/images/gifts.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e97f9908f9eef2a76ea4f48e00196980
f32d5a4b791567c690ea7095d93bec78e422db40
ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4
GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 11692
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/collectors.svg
192.229.221.165200 OK 561 B URL HTTP/2 www.usps.com/test/nav/images/collectors.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8439e88bd2e43656b157f9c184635032
ddcb40776177a5eac36973e53f2f8bab73e65ea3
5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e
GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12002
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/business.svg
192.229.221.165200 OK 689 B URL HTTP/2 www.usps.com/test/nav/images/business.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3b81ef43fc5b08bab4155c5fed116dc9
a5a804fb2f8f51b3e588d4edb01752eba0380f8d
a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb
GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 12029
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_customer_service.png
192.229.221.165200 OK 1.3 kB URL HTTP/2 www.usps.com/assets/images/home/utility_customer_service.png
IP 192.229.221.165:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca
GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 11526
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/chinese_characters.gif
192.229.221.165200 OK 2.2 kB URL HTTP/2 www.usps.com/assets/images/home/chinese_characters.gif
IP 192.229.221.165:0
File type GIF image data, version 89a, 44 x 102\012- data
Hash 6cfd66aca15e28ed9e77672fa22604b7
79f78e9167a5853d740486cdae627034cf2a7085
dc9835ec6574c8d748f4fe255d01035a7d289f4a8caae72a989a32d3973caecd
GET /assets/images/home/chinese_characters.gif HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 808
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/gif
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "87d-547e11c4438c0"
last-modified: Mon, 06 Feb 2017 18:50:51 GMT
nncoection: close
server: ECAcc (dcb/7FA2)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 2173
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/images/utility-header/search.svg
192.229.221.165200 OK 795 B URL HTTP/2 www.usps.com/global-elements/header/images/utility-header/search.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 78562ea313af96eca6581054fdbbc76c
b0f3fd320af131b3787b39c864ecac52de12a75e
7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9
GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 11412
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 01 Dec 2022 04:30:44 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
uspsxpressdelivery.com/assets/images/home/favicon.ico
45.131.1.208200 OK 5.5 kB URL HTTP/2 uspsxpressdelivery.com/assets/images/home/favicon.ico
IP 45.131.1.208:0
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 6acc6744de4d1b64b719aeaac71e790a
e6097ee7512c29db581289b368d51d5872702be4
9ea7363070ae557251c9226e7a77ee1d23da62325638c71cce156176ae99be51
Analyzer Verdict Alert openphish United States Postal Service
GET /assets/images/home/favicon.ico HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:45 GMT
content-type: image/x-icon
last-modified: Mon, 06 Feb 2017 19:18:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5476
date: Thu, 01 Dec 2022 04:30:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/resize-manager.js
192.229.221.165200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 25630
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 01 Dec 2022 04:30:45 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5538
Expires: Thu, 01 Dec 2022 06:03:04 GMT
Date: Thu, 01 Dec 2022 04:30:46 GMT
Connection: keep-alive
uspsxpressdelivery.com/assets/script/welcome/jquery.roughly.js
45.131.1.208200 OK 503 B URL HTTP/2 uspsxpressdelivery.com/assets/script/welcome/jquery.roughly.js
IP 45.131.1.208:0
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /assets/script/welcome/jquery.roughly.js HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: application/javascript
last-modified: Mon, 13 Dec 2021 15:25:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1165
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5538
Expires: Thu, 01 Dec 2022 06:03:04 GMT
Date: Thu, 01 Dec 2022 04:30:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9768b9bd-d7a9-4426-a5b2-ea1a71860733.jpeg
34.120.237.76200 OK 2.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9768b9bd-d7a9-4426-a5b2-ea1a71860733.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 995eb3df7ec5507e3392fdb1ca6395b4
9bc2e9039e9340b83ffcfb90e4e2c631a8723e60
4c86fdcd3b338040ea8130ee6a1ed5c3bd66c4dd59fe461f81e5df88a379ebb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9768b9bd-d7a9-4426-a5b2-ea1a71860733.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2150
x-amzn-requestid: 59ef9edf-d9c1-45d0-b084-adf8e2f0738d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cXQcKGPXoAMFbWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385fab4-693e8d7d5632d48722e31757;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 12:27:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iO-jUNMNzAM6zHh1oEftgZcW18vxdgaFGpNe4a1WHU97pRMMuHIKaQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 17:51:49 GMT
age: 38337
etag: "9bc2e9039e9340b83ffcfb90e4e2c631a8723e60"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 24313
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83e8a8c500dbcb636ad4a57a10de8adf
4593bb86a0a61eccab43063cb3c0c797abea5b46
fd9bc5cfa9db9999ceba780a3c801663ae3a9d115fc968f633800da2a680d49c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6036
x-amzn-requestid: 9867bb66-8624-4fe5-943f-2752e038cd22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YoE3YoAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-1710e0052c8bf19c06b6011e;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RXKIjgAm-fxCv0Wadim_1BwhuUkcAmZRPXUB9gT_qnEkREplaGZpkg==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:30 GMT
age: 24316
etag: "4593bb86a0a61eccab43063cb3c0c797abea5b46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b92721cbe24623f1713a5248d6a7c1b2
3628390c62642dcc375b28f58c9b48180c4abd73
37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9613
x-amzn-requestid: a46cc458-2e28-4ca7-b223-ba66256caef1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTPfmEmKoAMFZvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845f96-7ecee5764c4a40e50e5b1f98;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:13:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6p5kV3OCTlaiLWEa9wyeRJOYoxPNZwLhXGIbEnymaufjKL246zfrhw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 07:44:22 GMT
age: 74784
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8802d5080eb35e4052ef31cf7658650
1e78566f2e69268c5f753fb49112ab07aae3eccf
9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: dc9ccdbf-a051-49ce-a535-c100b8ee6f12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81EHdoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-0b06c368156b828e0c663081;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UsYYNMsulshDYcUC9N2Q3fnxjdZd5ki-0_LlXRchIsNSq0FruNhFqw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:09 GMT
age: 24157
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb560dfdf-cffc-469d-bc98-e6eed575f5ab.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb560dfdf-cffc-469d-bc98-e6eed575f5ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2f2f7c9706a549fd41ba29135ce83e1
838faca0991563ccc5756f65d5bfd6c3d4d88372
f35f6a43751ff81f220789a2aa352c6abbd2f52b3beabff738cd11761b1923da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb560dfdf-cffc-469d-bc98-e6eed575f5ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6509
x-amzn-requestid: a86cb68e-5c74-4945-acbc-79d10f7c6c7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMPFOEIAMFYnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe7-006677c06331c3e014ab143e;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k2k9AknhmGY4uVLur8zbcP36tRQdRnEfQZLWjzqLz7KaUtQ1f3KGfw==
via: 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 24086
etag: "838faca0991563ccc5756f65d5bfd6c3d4d88372"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uspsxpressdelivery.com/global-elements/footer/css/main-sb.css
45.131.1.208200 OK 0 B URL HTTP/2 uspsxpressdelivery.com/global-elements/footer/css/main-sb.css
IP 45.131.1.208:0
Analyzer Verdict Alert openphish United States Postal Service
GET /global-elements/footer/css/main-sb.css HTTP/1.1
Host: uspsxpressdelivery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspsxpressdelivery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 04:30:44 GMT
content-type: text/css
last-modified: Thu, 15 Oct 2015 17:19:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2721
date: Thu, 01 Dec 2022 04:30:44 GMT
server: LiteSpeed
X-Firefox-Spdy: h2