Report Overview

  1. Submitted URL

    bmwag-rt-prod2-t.campaign.adobe.com/r/?id=h2ccc12b,8d23fb3,492093b&p1=elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==

  2. IP

    34.254.109.246

    ASN

    #16509 AMAZON-02

  3. Submitted

    2023-11-21T07:44:01Z

    Access

    public

  4. Website Title

    Sign in to your Microsoft account

  5. Final URL

    osnrafbtea.oneswittla.ru/kswqjl/#alberto@elzaburu.es

  6. urlquery detections

    Phishing - Microsoft Outlook

Detections

  1. urlquery

    3

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    0

Domain Summary

Domain Rank First Seen Last Seen
code.jquery.com (1) 634 2012-05-21 19:28:02 2023-11-21 05:09:18
osnrafbtea.oneswittla.ru (31) unknown 2023-11-03 14:57:42 2023-11-20 18:15:31
aadcdn.msftauth.net (3) 1455 2018-11-19 11:50:32 2023-11-21 05:09:23
adfs.heart.org (1) unknown 2016-10-10 20:42:57 2023-11-20 03:49:53
httpbin.org (1) 352975 2013-07-23 00:01:27 2023-11-20 07:00:03
cdn.socket.io (1) 62068 2015-03-23 23:14:03 2023-11-19 19:45:11
elhamadsteel.com (1) unknown 2020-01-28 21:15:48 2023-11-19 20:58:49
challenges.cloudflare.com (4) unknown 2021-10-20 07:02:03 2023-11-21 05:09:18
aadcdn.msauth.net (1) 1421 2018-11-19 11:50:03 2023-11-21 05:09:23
logincdn.msauth.net (1) 2330 2019-04-23 03:13:28 2023-11-20 05:31:50
bmwag-rt-prod2-t.campaign.adobe.com (1) unknown 2020-10-06 11:33:48 2023-11-20 05:41:55

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (13)

HTTP Transactions (46)

URL IP Response Size
bmwag-rt-prod2-t.campaign.adobe.com/r/?id=h2ccc12b,8d23fb3,492093b&p1=elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==
52.215.148.88 17
elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==
192.185.88.231 0
code.jquery.com/jquery-3.6.0.min.js
151.101.66.137 200 OK 30875
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff
104.21.17.6 200 OK 35970
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff
104.21.17.6 200 OK 36696
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff2
104.21.17.6 200 OK 28000
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff2
104.21.17.6 200 OK 28584
osnrafbtea.oneswittla.ru/web1/assets/css/pages-okta.css?cb=1700552627311
104.21.17.6 200 OK 0
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf2.woff2
104.21.17.6 200 OK 93276
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf.woff2
104.21.17.6 200 OK 43596
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg
152.199.23.37 200 OK 1173
aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
152.199.23.37 200 OK 190
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/82974dbb6cc10b65/1700552626831/eljqDvuj3lRu93U
104.17.3.184 8530
aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
13.107.246.53 200 OK 673
osnrafbtea.oneswittla.ru/web1/assets/js/pages-head-web.min.js?cb=1700552627311
104.21.17.6 200 OK 11192
osnrafbtea.oneswittla.ru/web1/validatecaptcha
104.21.17.6 200 OK 751
osnrafbtea.oneswittla.ru/web1/assets/godaddy-left.png
104.21.17.6 200 OK 29796
osnrafbtea.oneswittla.ru/web1/assets/godaddy-microsoftlogo.png
104.21.17.6 200 OK 70712
osnrafbtea.oneswittla.ru/web1/assets/officelogo.png
104.21.17.6 200 OK 1400
adfs.heart.org/adfs/portal/logo/logo.png
69.152.183.140 200 OK 6428
challenges.cloudflare.com/turnstile/v0/api.js?render=explicit
104.17.3.184 302 Found 30145
osnrafbtea.oneswittla.ru/web1/assets/godaddy-logo.png
104.21.17.6 200 OK 49602
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
104.21.17.6 0
osnrafbtea.oneswittla.ru/web1/assets/microsoftfavicon.ico
104.21.17.6 200 OK 919
httpbin.org/ip
52.20.41.59 200 OK 31
cdn.socket.io/4.6.0/socket.io.min.js
143.204.55.40 200 OK 45806
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg
152.199.23.37 200 OK 7390
osnrafbtea.oneswittla.ru/web1/assets/css/pages-godaddy.css?cb=1700552627311
104.21.17.6 200 OK 38221
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i7ga/0x4AAAAAAAMj9eiEWzeCaLNQ/auto/normal
104.17.3.184 200 OK 72904
osnrafbtea.oneswittla.ru/web1/info
104.21.17.6 200 OK 36403
challenges.cloudflare.com/turnstile/v0/g/9914b343/api.js?render=explicit
104.17.3.184 200 OK 34254
osnrafbtea.oneswittla.ru/web1/assets/pages/104gf8.css?cb=1700552627311
104.21.17.6 200 OK 1121
osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
104.21.17.6 200 OK 34494
osnrafbtea.oneswittla.ru/web1/info
104.21.17.6 200 OK 91
osnrafbtea.oneswittla.ru/web1/info
104.21.17.6 200 OK 20
osnrafbtea.oneswittla.ru/web1/assets/back.png
104.21.17.6 200 OK 231
osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
104.21.17.6 200 OK 34494