Report - usps.com.chabadcardonation.com/USP/US/indexadress

Report Overview

Submitted URL
usps.com.chabadcardonation.com/USP/US/indexadress
IP
50.87.149.251
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2023-01-28 20:15:14
Access
Website Title
Final URL
Tags
usps logistics phishing
urlquery detections
Phishing - US Postal Service

Detections

urlquery
137
Network Intrusion Detection
1
Threat Detection Systems
232

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	341 B	544 B	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.39.57.61
tools.usps.com	12881	2013-04-18T14:00:39Z	2023-03-13T07:52:52Z	455 B	1.3 kB	192.229.221.165
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.3 kB	64 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
usps.com.chabadcardonation.com	unknown	2022-07-02T01:57:26Z	2023-03-03T15:19:42Z	25 kB	556 kB	50.87.149.251
fast.fonts.net	2905	2013-07-13T06:08:03Z	2023-03-13T05:20:26Z	444 B	842 B	104.17.225.78
www.usps.com	11794	2012-05-24T09:47:05Z	2023-03-13T07:52:53Z	14 kB	81 kB	192.229.221.165

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-28 20:15:08	medium	50.87.149.251	Client IP	ET PHISHING Possible Phish - Saved Website Comment Observed

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/indexadress	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service
2023-01-09	medium	usps.com.chabadcardonation.com/	United States Postal Service

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/indexadress	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/jquery.min.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/helpers.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/require-jquery.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/search-fe.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/resize-manager.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/jquery-3.5.1.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/metrics-all.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/jquery-3.2.1.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/modernizr.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/megamenu.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/optimize.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/OneLinkUsps.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/jquery.min.js(1).download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/ge-login.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/require.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/header-init-search.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/megamenu-additions.js.download	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/logo-sb.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/location.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/tracking.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/mailman.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/images/nav-red-chevron.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/calculate_price.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/schedule_pickup.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/stamps.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/holdmail.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/find_zip.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/change_address.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/featured_clicknship.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/po_box.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/free_boxes.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/global-elements/header/images/utility-header/mailman.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/global-elements/header/images/package-intercept.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/global-elements/header/images/schedule-redelivery.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/global-elements/header/images/icon-personalize-stamped-envelopes.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/hamburger.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/logo_mobile.svg	Phishing
2023-01-28	medium	usps.com.chabadcardonation.com/USP/US/love/search.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	usps.com.chabadcardonation.com/USP/US/indexadress	1.5 kB	2023-03-07	2023-08-07
Pretty URL usps.com.chabadcardonation.com/USP/US/indexadress IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:15 Last Seen2023-08-07 01:10:54 Times Seen7 Hash a846f5d16de363c5bbdd25f552afe115 89b3948cabc4713376600e68355922bb779853bb 7a50ef2472c9f9cb3c379edfb37c1617243cd85f290c9ed24f11f322b208a30e Loading...

	www.usps.com/global-elements/header/script/search-fe.js	2.3 kB	2023-03-07	2024-04-25
Pretty URL www.usps.com/global-elements/header/script/search-fe.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:26 Times Seen8170 Hash f7f70265f5cf47386622e433317412cb e1b28284e51c848685c7ea6d19ff551284c58e8a 766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b Loading...

	usps.com.chabadcardonation.com/USP/US/love/megamenu.js.download	14 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/megamenu.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen3843 Hash f91cb845e3581dd07e23db07e02c2366 ffb9ee2cad8c59914fcc3000ba8153a167036738 df75a5a617c9d258b4127a64b9c19a4c2c8b95b2036b97530a3d513c672cf110 Loading...

	usps.com.chabadcardonation.com/USP/US/love/ge-login.js.download	9.3 kB	2023-03-07	2024-04-23
Pretty URL usps.com.chabadcardonation.com/USP/US/love/ge-login.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-23 19:44:46 Times Seen948 Hash 98d32283850b9b1ca26a3236d2a79d9e fe249015f43e6daacb26574d59f66f21d7045bf5 19446f634dd4c6221d9a8997301486192578841ad90f58e131709853edef22a3 Loading...

	usps.com.chabadcardonation.com/USP/US/love/jquery-3.5.1.js.download	90 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/jquery-3.5.1.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:26 Times Seen12886 Hash 9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38 Loading...

	usps.com.chabadcardonation.com/USP/US/indexadress	25 B	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/indexadress IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen2017 Hash f467b64f19191da4e5c8ac5b4edb02b2 7abcaf406c9ff382bd7f7c75c7653fbff03f0410 33c959a2c76326692f3647ba8d01dc64c6374357f098dea1db067a974843b526 Loading...

	usps.com.chabadcardonation.com/USP/US/love/header-init-search.js.download	904 B	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/header-init-search.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen6719 Hash d8cb563907e68e9649948c6f521efe60 f5b7cf8123929db8162a2af51d07dd11c21fbac3 fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a Loading...

	usps.com.chabadcardonation.com/USP/US/love/megamenu-additions.js.download	1.3 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/megamenu-additions.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen6059 Hash 847cc8bd91110ff714275c5a29fbd404 cff690cc070f9539cc1c325ed150b819018e8df7 a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd Loading...

	usps.com.chabadcardonation.com/USP/US/love/modernizr.js.download	11 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/modernizr.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen5481 Hash 66e83c4165a234cdda478a9c55cb90db 22e9211030a1f612ef4acd010185181bde967307 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6 Loading...

	usps.com.chabadcardonation.com/USP/US/love/optimize.js.download	103 kB	2023-03-07	2023-09-11
Pretty URL usps.com.chabadcardonation.com/USP/US/love/optimize.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:15 Last Seen2023-09-11 13:49:52 Times Seen20 Hash 764f159ec7dc8cb6e49f687978cbbb22 d275ef3190b684adb632b0af086c6df81f588203 9bc32c43dddd466ac2194408ab9a3ee60ce96ed3a4d159edada95cd9511af046 Loading...

	usps.com.chabadcardonation.com/USP/US/indexadress	24 B	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/indexadress IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 08:14:03 Times Seen5694 Hash 56d62f55706e2e153678329e7bcd94d8 c00d14b88b1fa94b12c0aafb761e676e73758fc9 6949901ccecaa8c8c40ac181981a5a291b81648a0a5ab42223db4875bdd5235c Loading...

	usps.com.chabadcardonation.com/USP/US/love/jquery.min.js.download	85 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/jquery.min.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen5616 Hash 8234c1aca62c1e09cc00f7fb5908d309 831062e805247046abdbab52149b03604119fd11 e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062 Loading...

	usps.com.chabadcardonation.com/USP/US/love/metrics-all.js.download	11 kB	2023-03-07	2024-04-24
Pretty URL usps.com.chabadcardonation.com/USP/US/love/metrics-all.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:04 Last Seen2024-04-24 19:32:56 Times Seen1228 Hash 65ab5df156a2a51b278f9967fc154f28 db841daeeb75283b73216a616f52489f6f3bebc3 c7a923623e0ef6cf3ec2c4afa6b3f757ee1f183ac9503e7295629fff50a27597 Loading...

	usps.com.chabadcardonation.com/USP/US/love/require-jquery.js.download	74 B	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/require-jquery.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:26 Times Seen9165 Hash ea38e8196b75d9720bc3902d6d735130 165284464c58d7f213c1211f2c433873299e4527 cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9 Loading...

	usps.com.chabadcardonation.com/USP/US/love/helpers.js.download	695 B	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/helpers.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:26 Times Seen9140 Hash 5372347b4f98f60b33579180ef6a3567 02064f1641c40b35c14a0da9ee310de54ff76cd5 7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4 Loading...

	usps.com.chabadcardonation.com/USP/US/love/resize-manager.js.download	1.0 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/resize-manager.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:26 Times Seen8899 Hash 90d8fb00194d91e9dd20281817c285d6 e7e37421b14a39e0d3787988a52a45d27ec3761f 479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887 Loading...

	usps.com.chabadcardonation.com/USP/US/love/jquery-3.2.1.js.download	87 kB	2023-03-07	2024-04-26
Pretty URL usps.com.chabadcardonation.com/USP/US/love/jquery-3.2.1.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-26 09:59:57 Times Seen62702 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	usps.com.chabadcardonation.com/USP/US/love/search-fe.js.download	2.2 kB	2023-03-07	2024-04-24
Pretty URL usps.com.chabadcardonation.com/USP/US/love/search-fe.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:04 Last Seen2024-04-24 19:32:56 Times Seen1535 Hash 418d20c9da7f39976dcd043467cd9c05 242c058aa62349fe3fa781ce9ef622f882c73d6a 55bf60330b23f3982e77dd63d9796997da15a61bddec70142f2c7eefed880c66 Loading...

	usps.com.chabadcardonation.com/USP/US/love/jquery.min.js(1).download	96 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/jquery.min.js(1).download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:26 Times Seen2763 Hash fb6ce399e3e05c48005737e8ae94437d 4de67539c3047e728710d5958a7730fc04f2f9d2 61419a9c82b9f4894a9fa8f92684630ab3f85ec69202567bdac82c5cf11148b9 Loading...

	usps.com.chabadcardonation.com/USP/US/love/require.js.download	17 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/require.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen6808 Hash 16e572a4f80526df4bc3cc7ff056a9a8 f23b5c2fd52e855245e3d2586cd911051561e64c 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377 Loading...

	usps.com.chabadcardonation.com/USP/US/love/OneLinkUsps.js.download	3.6 kB	2023-03-07	2024-04-25
Pretty URL usps.com.chabadcardonation.com/USP/US/love/OneLinkUsps.js.download IP 50.87.149.251 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 19:50:25 Times Seen6079 Hash b60628830a1d34363f98c9443b856555 ba386fdd91d2db7fb6749982caa78bef59028077 68482663e769a15815d142d88f7a4d8105c02fe2bd37a9899a019b518f17a2b3 Loading...

HTTP Transactions (119)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8754
Expires: Sat, 28 Jan 2023 22:40:57 GMT
Date: Sat, 28 Jan 2023 20:15:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9538
Expires: Sat, 28 Jan 2023 22:54:01 GMT
Date: Sat, 28 Jan 2023 20:15:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3873
Expires: Sat, 28 Jan 2023 21:19:36 GMT
Date: Sat, 28 Jan 2023 20:15:03 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 19:35:31 GMT
content-type: application/json
age: 2372
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 2wv2hrQJfmGMbdfRlqDvqhF3Hm7wjDMxZz3HK9w3HPYqpDwThdQN8hcKlWlxynxgXOvA21SH8T5B+lNfxd19CA==
x-amz-request-id: J4R32BVHMPZ7E61S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 19:50:02 GMT
age: 1501
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 20:15:03 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/indexadress

50.87.149.251

200 OK

16 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/indexadress
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1060)
Size
16 kB (16040 bytes)
Hash
1434e29d358fe59715670bcffae76c3e
15054ae15524f85710c31a95378c2942b0ff2b5b
f187737c2d2a5e097813179bbaede084327b30cdbd751f237c7c9192dc37d57c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

NIDS	Severity	Alert
suricata	medium	ET PHISHING Possible Phish - Saved Website Comment Observed

HTTP Headers

GET /USP/US/indexadress HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16040
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

usps.com.chabadcardonation.com/USP/US/love/megamenu-v2.css

50.87.149.251

200 OK

11 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/megamenu-v2.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (44725), with no line terminators
Size
11 kB (11338 bytes)
Hash
de6fe4e09ca9d3a35ca2138f46693ee2
8fedfd8bc30d0aada5520da98c530b0ff7b2024c
d584b2fdac626918fdbafd8d96f07dbee2ea592a9b1f410aaec845633b687066

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/megamenu-v2.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11338
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/footer.css

50.87.149.251

200 OK

1.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/footer.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2933), with no line terminators
Size
1.1 kB (1102 bytes)
Hash
b0bc4209864f9e5da2b5fe18790e48ea
c2af7c02d1d350f329a5d27dfb99e99aefd41eda
54a5419d76c3babfc1b8c75de70e42729a51a60a8b7004191b52d8eec64dcfe7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/footer.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1102
Keep-Alive: timeout=5, max=75
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/calendar.css

50.87.149.251

200 OK

3.9 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/calendar.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (14589), with no line terminators
Size
3.9 kB (3940 bytes)
Hash
3e69185bb51e6f0402b17acdeb8eb39f
c010fd3c3d977c04e877a0ab0743c055a93f1f4b
e506fda4f3907d8a0e72f75f1cee058b9265a47fff582de8f3c9a68520c22f45

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/calendar.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3940
Keep-Alive: timeout=5, max=75
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/datepicker3.css

50.87.149.251

200 OK

3.0 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/datepicker3.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (20872)
Size
3.0 kB (2960 bytes)
Hash
d506001f9a4e746ce8a1e3b074d93e6d
2d4190b2526f51ffff2798e48fe7b60209bb7f59
0a8e133d365ff66a3d7baa5fda7db2bcf6324de7e7c4e67bcb39b1933b64720c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/datepicker3.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2960
Keep-Alive: timeout=5, max=75
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/jquery.min.js.download

50.87.149.251

200 OK

37 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/jquery.min.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65453)
Size
37 kB (37259 bytes)
Hash
ffd8aa4b640d4dcca9adfe70b45acd3c
6502fdffc29b3ef3b0c76ebb1101a4f578fd64a9
14f2dcfe0f2ab2c31b4761bb6eeddcd36b8d58fd4394a24f2abe4fc7d76bb70b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/jquery.min.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/main.css

50.87.149.251

200 OK

20 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/main.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (49556), with CRLF line terminators
Size
20 kB (19457 bytes)
Hash
0d80fc231c5223fe3b7121dfc15b6a37
ae2a7e419eac48fba9c108e0923ee8e730276316
a9e54678092329ae1719e0e6b0c6aa9f3adda5e89e24c4a35b7585a401862e4e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/main.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 19:49:03 GMT
age: 1561
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
25dd0c2a34638828bef5dee67bffd3c2
b8c189e60ff666e96ffbc344b1ffa9c8e0935f5e
000340d43578e33473b905298459adb45d8ffd23ef36cea477fa8c12fa574c5e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4566
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 20:15:04 GMT
Last-Modified: Sat, 28 Jan 2023 18:58:58 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 278

fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0

104.17.225.78

200 OK

0 B

URL HTTP/2
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP
104.17.225.78:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 20:15:04 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: T0ZH1hXNoB6jtguc1LneBuShAW+pnL1xXkATYgstf9s/Ek+CPWrz2AkHZOlSFb4Uzx1M4Yl24Z8=
x-amz-request-id: PR33JFF0ZQ6CYPJT
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 48750
accept-ranges: bytes
set-cookie: __cf_bm=AtzT3G.PtamfdRTXt4_M8Mez4k8vryhWo.BOGPHDcQU-1674936904-0-AXp2KGHmlf0EmnuvNq3rCDo1W0/lPb0pL19jw3VMbF5zk85WlclBecTQwbrzPC6Dbuz36lsEtvVzla5k2A7s1uE=; path=/; expires=Sat, 28-Jan-23 20:45:04 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c65e5acbe1bfe-OSL
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/love/bootstrap.min.css

50.87.149.251

200 OK

27 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/bootstrap.min.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65371)
Size
27 kB (27119 bytes)
Hash
27b0523cfc91790e8b307da2cb642d69
db33c9acadbfa25ded339273b9511c09bbf7b87b
e9adf2cd620f196cc6e1c74cba618611f9d4abbebc3157f3a2e1c009f0c3a20d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/bootstrap.min.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/tracking-cross-sell.css

50.87.149.251

200 OK

1.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/tracking-cross-sell.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3075), with no line terminators
Size
1.1 kB (1138 bytes)
Hash
2530c4736380867652959fbf41f59f18
d4753ac012c03c70ece05b1e331dfb8b178bdd04
5b1367e7bccb72b5a901c6a8cfadf37171c2f1a748a025b050a15d20cb481cd4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/tracking-cross-sell.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1138
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8238
Expires: Sat, 28 Jan 2023 22:32:22 GMT
Date: Sat, 28 Jan 2023 20:15:04 GMT
Connection: keep-alive

usps.com.chabadcardonation.com/USP/US/love/jquery-ui.min.css

50.87.149.251

200 OK

9.2 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/jquery-ui.min.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (29153), with CRLF line terminators
Size
9.2 kB (9246 bytes)
Hash
1dfd764ec4bb45dbd27a4dba58e89210
e502d012662879a8bcf87c05e70459f39785599d
1a1e31a7b5c4eec651bb54c4480a0cce6196c710b5e33b777e665f5cb972c642

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/jquery-ui.min.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9246
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/helpers.js.download

50.87.149.251

200 OK

358 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/helpers.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (695), with no line terminators
Size
358 B (358 bytes)
Hash
2fc1a84aa717ba9ca2584c632d0bfb42
e3f89c1d5741bd85f5b20923a71a53115d0aa6b4
faac3ddb5c8775e66d1d0d3fa7f81695abe17c196589f02d31cd1bc9e91fcac3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/helpers.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 358
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/require-jquery.js.download

50.87.149.251

200 OK

92 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/require-jquery.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with no line terminators
Size
92 B (92 bytes)
Hash
6ce214c362fc1910a6ccda7dde4f1628
a3c400aa0daaa3a2f5b285feccb369e35b486a89
20c4e055502233d4088725a990c6d26894639753e810ae967bfa21915ea61be7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/require-jquery.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 92
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/schedule-redelivery.css

50.87.149.251

200 OK

7.5 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/schedule-redelivery.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (23129), with no line terminators
Size
7.5 kB (7456 bytes)
Hash
42c6ff8e86f27d535d40514964008a2d
187c32b4b24af188cc455d1210e159e0a474057f
6e3e348ce3337bd9b4aac0f70b9567e3602a54a3abd45593da6ff37d37899d0f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/schedule-redelivery.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7456
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/search-fe.js.download

50.87.149.251

200 OK

977 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/search-fe.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2235), with no line terminators
Size
977 B (977 bytes)
Hash
c0e76cda214ff3867361b5bb4b84b083
78d4609a5318abe69f2f57fcf4b5b312022e0816
12c3176f04aad68cd3f2dc3f9f95e368db48ce26818dda3f53a75c541206b720

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/search-fe.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 977
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/resize-manager.js.download

50.87.149.251

200 OK

472 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/resize-manager.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1040), with no line terminators
Size
472 B (472 bytes)
Hash
72cf0cf94ad15ef60f5c0d18251969e0
3163252af841a1cdaf2964b8946bb3adfa97e1ea
337aa76afaabb6d24d1ea11ef19b20b6916be27942661dd914805af9f3b3e1b1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/resize-manager.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 472
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/jquery-3.5.1.js.download

50.87.149.251

200 OK

39 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/jquery-3.5.1.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
39 kB (39071 bytes)
Hash
aac9c76e4cfb5fee9842749d1edd01f4
f901a344b0613032d8160e7fe7bf3f7c5b197b2a
09bbf189ee6b01b398a43ceb96bb810dd76608fba53ec966cb79181fd364b0ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/jquery-3.5.1.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/metrics-all.js.download

50.87.149.251

200 OK

3.8 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/metrics-all.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
3.8 kB (3785 bytes)
Hash
106d65ff645a7cb366aa0ba0390b5930
c8a32c4e3037a3542d3f4564901f1442db95780c
7d96bca9b30ffd73fd2a6ee1250ef24c46963448e3819690901ff09affd1d81e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/metrics-all.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3785
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

push.services.mozilla.com/

52.39.57.61

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.57.61:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j4zSd9QtSWD6TOwTwYkyiw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Eo77ma3TNhpXHB8SnuyBTlq73IU=

usps.com.chabadcardonation.com/USP/US/love/qt.css

50.87.149.251

200 OK

15 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/qt.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Size
15 kB (14562 bytes)
Hash
22835147c6e162e8e7ba6e9d0dbf325e
ee21bad0513466beb756e50b93edd3e412d6c0af
1d8e8b848df7b5aaa88475e490d0f854663bd566fa273c728f006e7a143ec19c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/qt.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14562
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/jquery-3.2.1.js.download

50.87.149.251

200 OK

38 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/jquery-3.2.1.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32058)
Size
38 kB (38018 bytes)
Hash
158ed1f63711a0812b7c2b396cbaa6e7
1a6fe374f9c4963adc88db33dd128d324fceb9f2
811e8097bc41bb848b417ed7626ec9f8f8d8b682c664f8f2890ed4b57371e60b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/jquery-3.2.1.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/modernizr.js.download

50.87.149.251

200 OK

5.0 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/modernizr.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (11084)
Size
5.0 kB (5037 bytes)
Hash
ffb7b7adac0923605d5a309428cdd3e8
dde519f5eb3b1f8da1c245f9f82a89433c885d33
1049e1d20b0cb6a211a8b57c31fcee9ae1b71fb9c66c3e75f3c9a95d1a8789de

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/modernizr.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5037
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/megamenu.js.download

50.87.149.251

200 OK

3.7 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/megamenu.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3410), with CRLF line terminators
Size
3.7 kB (3714 bytes)
Hash
663cd83afea2def86a172054c38c0f59
e440d919c795e87cafe8e95723117e7bb203a119
e6818ecc4da7be3d5495aeebf7ba0f903e411e15ef36851b51e99e5dd00d99ad

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/megamenu.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3714
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/optimize.js.download

50.87.149.251

200 OK

47 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/optimize.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2077)
Size
47 kB (47076 bytes)
Hash
5dbddd81d8006601ccb460f6b8ddb14f
9905717eda6b85ef1748e853b76efae8fe1340d2
8f11d50961d05c35f22e0444b0cba48117c5f6c72157be9ab8b273bd522a595b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/optimize.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/OneLinkUsps.js.download

50.87.149.251

200 OK

1.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/OneLinkUsps.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1119 bytes)
Hash
8046d1ebd047e6e6a18cc7d2a708f26b
6d5dba8433b452a9b460e824c0945ec0e2352732
9c0e3e8fc82b1f5a16c3dd8303d68c61ad90d05e2434b5ad6fc1f6c69a9857ea

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/OneLinkUsps.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1119
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/jquery.min.js(1).download

50.87.149.251

200 OK

96 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/jquery.min.js(1).download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32086)
Size
96 kB (95921 bytes)
Hash
fb6ce399e3e05c48005737e8ae94437d
4de67539c3047e728710d5958a7730fc04f2f9d2
61419a9c82b9f4894a9fa8f92684630ab3f85ec69202567bdac82c5cf11148b9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/jquery.min.js(1).download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:04 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 95921
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive

usps.com.chabadcardonation.com/USP/US/love/ge-login.js.download

50.87.149.251

200 OK

3.0 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/ge-login.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
3.0 kB (2956 bytes)
Hash
7c3ffdeb4e7aea83aaef7b34fc657516
dd483000a4e34f598602616e6717d341f6c76bea
261c82ca3242db6ad5dc928542923d351ee56a9e5b63f8f3617e9beca536ca7c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/ge-login.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2956
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/require.js.download

50.87.149.251

200 OK

7.8 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/require.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (17192)
Size
7.8 kB (7843 bytes)
Hash
6c0081a7a1b7941157b980646e3ee0da
8682b10eccc6b8658b3befa728e6e11dd1fb9917
349b3667e7599f24ec5e24e79b78842b6ff4d933bda12e56f8be60dd5a76ee33

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/require.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7843
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/header-init-search.js.download

50.87.149.251

200 OK

331 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/header-init-search.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
331 B (331 bytes)
Hash
f5778c933816fe3ea86363e469837b40
8d4888ccbe9ca97195f232f4f4e96a61425f1a89
5acd5e2612a9714a2699a96d9cc685449665095251b8b181c753822da9944877

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/header-init-search.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 331
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/megamenu-additions.js.download

50.87.149.251

200 OK

529 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/megamenu-additions.js.download
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
529 B (529 bytes)
Hash
90127d7dd0a7d025766c1f0b7bc6e65f
0a9113cf05fe940ada2d81d7e14fd647f2228a93
e8abdbb7d77a5d6965bb7c670c73e7501e36bd3592129a8a112e4e8beeb1af89

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/megamenu-additions.js.download HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 529
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

usps.com.chabadcardonation.com/USP/US/love/main-sb.css

50.87.149.251

200 OK

3.2 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/main-sb.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (8795)
Size
3.2 kB (3173 bytes)
Hash
8fc9126ce158ab8b20747068d6716ec2
adaf81fe1912e35976e1a2b49b07babbee1e2130
35eeb0906e5874941124a44ea388e5f314c7a7cf211a5f068351871e477f4cc9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/main-sb.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3173
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css

usps.com.chabadcardonation.com/USP/US/love/footer-sb.css

50.87.149.251

200 OK

1.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/footer-sb.css
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3179), with CRLF line terminators
Size
1.1 kB (1080 bytes)
Hash
510c417806d7f77eda4e12d7fd1eb91d
ff937610df77bf9a4da06f89a660a6810919ac17
bffbb3ebd9615e14ff4ed6759b576bdbde19eb9bc711d09943e1f9e3aa494d33

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/footer-sb.css HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1080
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css

www.usps.com/assets/images/home/find_zip.svg

192.229.221.165

200 OK

793 B

URL HTTP/2
www.usps.com/assets/images/home/find_zip.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
793 B (793 bytes)
Hash
4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b

HTTP Headers

GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68084
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/stamps.svg

192.229.221.165

200 OK

551 B

URL HTTP/2
www.usps.com/assets/images/home/stamps.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
551 B (551 bytes)
Hash
780aa534eb1541ac0834489beafdeea2
2593cddb6c1b7505016d3c1138e16ff556e42166
c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8

HTTP Headers

GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 42477
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/location.svg

192.229.221.165

200 OK

1.2 kB

URL HTTP/2
www.usps.com/assets/images/home/location.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1209 bytes)
Hash
9d8433f178d5a7b839a8bf25552c62b0
c21cec68e524862992f4aa51bf6955b953a65112
d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f

HTTP Headers

GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68272
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/utility_customer_service.png

192.229.221.165

200 OK

1.3 kB

URL HTTP/2
www.usps.com/assets/images/home/utility_customer_service.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1307 bytes)
Hash
3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca

HTTP Headers

GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 68187
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/search.svg

192.229.221.165

200 OK

795 B

URL HTTP/2
www.usps.com/assets/images/home/search.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
795 B (795 bytes)
Hash
ccfe748c6040d78e356b03d1a731585e
3e15bb471b3c3d0a5cebc3ccd137b5daf9273b7e
9a1b75fecaa2e0de127c36ddbb63c1bc2c44b3f81eed395734dee1ce837162fe

HTTP Headers

GET /assets/images/home/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68085
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7F4B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/change_address.svg

192.229.221.165

200 OK

935 B

URL HTTP/2
www.usps.com/assets/images/home/change_address.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
935 B (935 bytes)
Hash
6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9

HTTP Headers

GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68744
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/featured_clicknship.svg

192.229.221.165

200 OK

493 B

URL HTTP/2
www.usps.com/assets/images/home/featured_clicknship.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size
493 B (493 bytes)
Hash
efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe

HTTP Headers

GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68796
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/calculate_price.svg

192.229.221.165

200 OK

772 B

URL HTTP/2
www.usps.com/assets/images/home/calculate_price.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
772 B (772 bytes)
Hash
42af7d5484bf8f80ac930313caa5941f
c3dbaf338d7fa81845487333c0cba5b8341bd140
f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c

HTTP Headers

GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68714
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/schedule_pickup.svg

192.229.221.165

200 OK

923 B

URL HTTP/2
www.usps.com/assets/images/home/schedule_pickup.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
923 B (923 bytes)
Hash
9f9e044f92360c82183e3a31b774e7b2
273798ee8d4dead89367b835cdb7f65f51e81b47
e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373

HTTP Headers

GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68648
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/tracking.svg

192.229.221.165

200 OK

844 B

URL HTTP/2
www.usps.com/assets/images/home/tracking.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
844 B (844 bytes)
Hash
04034bbe69ef912819cee070ff866703
2c96d71004568c2b460a7f8b796ae45ad89999ec
959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181

HTTP Headers

GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 84961
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/holdmail.svg

192.229.221.165

200 OK

768 B

URL HTTP/2
www.usps.com/assets/images/home/holdmail.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
768 B (768 bytes)
Hash
2f40bbb9da0d97f2ba3f3efcfd7533af
34c76f88cdda4be234b58a76e466bc7a972f14ea
f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069

HTTP Headers

GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68746
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/po_box.svg

192.229.221.165

200 OK

848 B

URL HTTP/2
www.usps.com/assets/images/home/po_box.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
848 B (848 bytes)
Hash
a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122

HTTP Headers

GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68693
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/cards-and-envelopes.svg

192.229.221.165

200 OK

1.1 kB

URL HTTP/2
www.usps.com/test/nav/images/cards-and-envelopes.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1056 bytes)
Hash
5d63c3636efb2bbcb327ed13b714367b
c7e326811c101213173c2a585d1e9700731816ed
c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f

HTTP Headers

GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 30555
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2

www.usps.com/global-elements/header/images/utility-header/search.svg

192.229.221.165

200 OK

795 B

URL HTTP/2
www.usps.com/global-elements/header/images/utility-header/search.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
795 B (795 bytes)
Hash
78562ea313af96eca6581054fdbbc76c
b0f3fd320af131b3787b39c864ecac52de12a75e
7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9

HTTP Headers

GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68072
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2

tools.usps.com/global-elements/header/images/utility-header/mailman.svg

192.229.221.165

200 OK

904 B

URL HTTP/2
tools.usps.com/global-elements/header/images/utility-header/mailman.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
904 B (904 bytes)
Hash
e4bb1afb6143cb1307585f007399e0e4
7d28cd35cbdb8427d4a12274c3f455e57f4742e0
06410c31087cff92e7842a2e6aaef3b5b114192f77e2b652283250fdca6d5e30

HTTP Headers

GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
age: 49852
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "723-55885af730a40+gzip"
last-modified: Wed, 06 Sep 2017 13:54:41 GMT
server: ECAcc (dcb/7311)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 904
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/utility_languages.png

192.229.221.165

200 OK

1.5 kB

URL HTTP/2
www.usps.com/assets/images/home/utility_languages.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1456 bytes)
Hash
410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826

HTTP Headers

GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 68519
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/love/go-now(1).png

50.87.149.251

200 OK

8.0 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/go-now(1).png
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (8026 bytes)
Hash
49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/go-now(1).png HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 8026
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png

usps.com.chabadcardonation.com/USP/US/love/go-now(4).png

50.87.149.251

200 OK

22 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/go-now(4).png
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22133 bytes)
Hash
22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/go-now(4).png HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 22133
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/png

usps.com.chabadcardonation.com/USP/US/love/logo-sb.svg

50.87.149.251

200 OK

3.6 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/logo-sb.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
3.6 kB (3557 bytes)
Hash
0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/logo-sb.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 3557
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/go-now.png

50.87.149.251

200 OK

20 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/go-now.png
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20334 bytes)
Hash
d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/go-now.png HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 20334
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png

usps.com.chabadcardonation.com/USP/US/love/go-now(3).png

50.87.149.251

200 OK

20 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/go-now(3).png
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19969 bytes)
Hash
6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/go-now(3).png HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 19969
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png

www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff

192.229.221.165

403 Forbidden

345 B

URL HTTP/2
www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://usps.com.chabadcardonation.com
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 28 Jan 2023 20:15:05 GMT
server: ECAcc (ska/F779)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff

192.229.221.165

403 Forbidden

345 B

URL HTTP/2
www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://usps.com.chabadcardonation.com
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 28 Jan 2023 20:15:05 GMT
server: ECAcc (ska/F7BB)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/love/location.svg

50.87.149.251

200 OK

2.6 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/location.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.6 kB (2586 bytes)
Hash
9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/location.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 2586
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/tracking.svg

50.87.149.251

200 OK

1.6 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/tracking.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.6 kB (1561 bytes)
Hash
2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/tracking.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1561
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/mailman.svg

50.87.149.251

200 OK

1.8 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/mailman.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.8 kB (1827 bytes)
Hash
1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/mailman.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1827
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml

www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff

192.229.221.165

403 Forbidden

345 B

URL HTTP/2
www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://usps.com.chabadcardonation.com
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 28 Jan 2023 20:15:05 GMT
server: ECAcc (ska/F7B7)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/love/go-now(2).png

50.87.149.251

200 OK

27 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/go-now(2).png
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (26972 bytes)
Hash
b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/love/go-now(2).png HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 26972
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png

www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf

192.229.221.165

403 Forbidden

345 B

URL HTTP/2
www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://usps.com.chabadcardonation.com
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 28 Jan 2023 20:15:05 GMT
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf

192.229.221.165

403 Forbidden

345 B

URL HTTP/2
www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://usps.com.chabadcardonation.com
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 28 Jan 2023 20:15:05 GMT
server: ECAcc (ska/F7A8)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf

192.229.221.165

403 Forbidden

345 B

URL HTTP/2
www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://usps.com.chabadcardonation.com
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 28 Jan 2023 20:15:05 GMT
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2

50.87.149.251

404 Not Found

746 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
746 B (746 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Content-Length: 746
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2

50.87.149.251

404 Not Found

746 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
746 B (746 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Content-Length: 746
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html

www.usps.com/test/nav/images/shipping-supplies.svg

192.229.221.165

200 OK

1.3 kB

URL HTTP/2
www.usps.com/test/nav/images/shipping-supplies.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.3 kB (1282 bytes)
Hash
7a8b39b328ba3e776e643f66844896e8
7a400d0f33c592651da919c728a30e46207a9449
05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99

HTTP Headers

GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68276
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/business.svg

192.229.221.165

200 OK

689 B

URL HTTP/2
www.usps.com/test/nav/images/business.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
689 B (689 bytes)
Hash
3b81ef43fc5b08bab4155c5fed116dc9
a5a804fb2f8f51b3e588d4edb01752eba0380f8d
a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb

HTTP Headers

GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68690
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/collectors.svg

192.229.221.165

200 OK

561 B

URL HTTP/2
www.usps.com/test/nav/images/collectors.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
561 B (561 bytes)
Hash
8439e88bd2e43656b157f9c184635032
ddcb40776177a5eac36973e53f2f8bab73e65ea3
5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e

HTTP Headers

GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68663
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/gifts.svg

192.229.221.165

200 OK

590 B

URL HTTP/2
www.usps.com/test/nav/images/gifts.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
590 B (590 bytes)
Hash
e97f9908f9eef2a76ea4f48e00196980
f32d5a4b791567c690ea7095d93bec78e422db40
ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4

HTTP Headers

GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 68352
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/images/logo-mini.png

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/images/logo-mini.png
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /USP/US/images/logo-mini.png HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/footer.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2

50.87.149.251

404 Not Found

746 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
746 B (746 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Content-Length: 746
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/images/nav-red-chevron.svg

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/images/nav-red-chevron.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/images/nav-red-chevron.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html

www.usps.com/global-elements/lib/script/require-jquery.js

192.229.221.165

200 OK

74 B

URL HTTP/2
www.usps.com/global-elements/lib/script/require-jquery.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with no line terminators
Size
74 B (74 bytes)
Hash
ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9

HTTP Headers

GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 54492
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2

www.usps.com/global-elements/header/script/search-fe.js

192.229.221.165

200 OK

930 B

URL HTTP/2
www.usps.com/global-elements/header/script/search-fe.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (2264), with no line terminators
Size
930 B (930 bytes)
Hash
044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71

HTTP Headers

GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 9442
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2

www.usps.com/global-elements/lib/script/helpers.js

192.229.221.165

200 OK

358 B

URL HTTP/2
www.usps.com/global-elements/lib/script/helpers.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (695), with no line terminators
Size
358 B (358 bytes)
Hash
a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46

HTTP Headers

GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 28689
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 28 Jan 2023 20:15:05 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/global-elements/footer/images/footer-logo.png

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/global-elements/footer/images/footer-logo.png
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/footer-sb.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/love/calculate_price.svg

50.87.149.251

200 OK

2.3 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/calculate_price.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.3 kB (2302 bytes)
Hash
6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/calculate_price.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 2302
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/schedule_pickup.svg

50.87.149.251

200 OK

1.8 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/schedule_pickup.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.8 kB (1775 bytes)
Hash
d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/schedule_pickup.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:05 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1775
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml

www.usps.com/global-elements/footer/script/jquery-3.5.1.js

192.229.221.165

200 OK

31 kB

URL HTTP/2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30950 bytes)
Hash
2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba

HTTP Headers

GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56686
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 28 Jan 2023 20:15:06 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/love/stamps.svg

50.87.149.251

200 OK

1.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/stamps.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.1 kB (1103 bytes)
Hash
2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/stamps.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1103
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff

50.87.149.251

404 Not Found

746 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
746 B (746 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Content-Length: 746
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff

50.87.149.251

404 Not Found

746 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
746 B (746 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Content-Length: 746
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff

50.87.149.251

404 Not Found

746 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
746 B (746 bytes)
Hash
dbf8ec3db1d4b93b848197591827939c
2e12f671d6101f52060133c32f8d359af756f9b2
63c52aa99ca361b59a27e7f51fe5fadffef99e671f8b4f9560fab204219e0666

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Content-Length: 746
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/love/holdmail.svg

50.87.149.251

200 OK

1.4 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/holdmail.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.4 kB (1448 bytes)
Hash
4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/holdmail.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1448
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/find_zip.svg

50.87.149.251

200 OK

1.5 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/find_zip.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.5 kB (1471 bytes)
Hash
e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/find_zip.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1471
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3951
Expires: Sat, 28 Jan 2023 21:20:57 GMT
Date: Sat, 28 Jan 2023 20:15:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3951
Expires: Sat, 28 Jan 2023 21:20:57 GMT
Date: Sat, 28 Jan 2023 20:15:06 GMT
Connection: keep-alive

usps.com.chabadcardonation.com/USP/US/love/change_address.svg

50.87.149.251

200 OK

1.9 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/change_address.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.9 kB (1869 bytes)
Hash
3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/change_address.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1869
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/featured_clicknship.svg

50.87.149.251

200 OK

1.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/featured_clicknship.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size
1.1 kB (1078 bytes)
Hash
375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/featured_clicknship.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1078
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/po_box.svg

50.87.149.251

200 OK

1.6 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/po_box.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.6 kB (1639 bytes)
Hash
d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/po_box.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1639
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml

www.usps.com/global-elements/lib/script/resize-manager.js

192.229.221.165

200 OK

468 B

URL HTTP/2
www.usps.com/global-elements/lib/script/resize-manager.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (1040), with no line terminators
Size
468 B (468 bytes)
Hash
7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e

HTTP Headers

GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 82291
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 28 Jan 2023 20:15:06 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3951
Expires: Sat, 28 Jan 2023 21:20:57 GMT
Date: Sat, 28 Jan 2023 20:15:06 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12397 bytes)
Hash
0ed1a0bd725b2078b4cfe4ed83877901
62493ca03be9870aac2341e033611a6d56bd322a
706e84bc63fd98acaeb72789239af3210ae6e3910e6589d92a25899dc9059dfc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12397
x-amzn-requestid: e8436997-696d-483a-b03a-a84e7ca614ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5HbzoAMFXsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-1c2ccd0a187d0a3e2f6a59cc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lmLHc8fKQYUpq9B-GyOQ0FKzhxi0ToTEPA7cu6JnQftgDFDNV8USvw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
etag: "62493ca03be9870aac2341e033611a6d56bd322a"
content-type: image/jpeg
age: 80309
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11568 bytes)
Hash
b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 79b70f1f-a157-4dd4-8743-825714195b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9T3UGA3oAMFSlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c86695-36e60aba09c152c73b8aefcb;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zt4bgV2C6Wb_Ufa5mZ7-UDTfCvhXJggPJw9668v5DEmyBnWZ-aNrCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 23:03:41 GMT
age: 76285
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8739 bytes)
Hash
d04b173ecc22c619998bda87a8f9ce70
9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5
c30fbd2807e36b637bd1382a955c34abb4fe88b99173692530d288fff0986896

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8739
x-amzn-requestid: 591edd56-d422-459f-8934-532106be7e90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_quGvkoAMFWQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44644-5bda946b19b8abc54d324bab;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:46:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yAWADPixWRJsEV9OqvunQGhVHlobpluc-VwHlhq1psEwNh_ignw-dQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:03:05 GMT
etag: "9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5"
content-type: image/jpeg
age: 79921
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13375 bytes)
Hash
b4afa01d2ffe17f8378e4c0b5afd4608
f5c7e2137efa07a207427a6b6fe1df541f85ea25
84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: otEuPlfCL7DeVwGZiGJuMjxjVyGdMwxPWeCz5T_mpXboi-oRujKhBw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 80768
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7585 bytes)
Hash
ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K9YWM9eaEc1DQ6wtEEuADnG1U-ahRBXDaiHIAm20dkWMOxPWBlJidw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:46:13 GMT
age: 77333
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4475 bytes)
Hash
4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 80300
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

usps.com.chabadcardonation.com/USP/US/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/main.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/love/free_boxes.svg

50.87.149.251

200 OK

1.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/free_boxes.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.1 kB (1066 bytes)
Hash
dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/free_boxes.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1066
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/global-elements/header/images/utility-header/mailman.svg

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/global-elements/header/images/utility-header/mailman.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/megamenu-v2.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/global-elements/header/images/package-intercept.svg

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/global-elements/header/images/package-intercept.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/megamenu-v2.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/global-elements/header/images/schedule-redelivery.svg

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/global-elements/header/images/schedule-redelivery.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/megamenu-v2.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/global-elements/header/images/icon-personalize-stamped-envelopes.svg

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/love/megamenu-v2.css

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html

usps.com.chabadcardonation.com/USP/US/love/hamburger.svg

50.87.149.251

200 OK

546 B

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/hamburger.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size
546 B (546 bytes)
Hash
37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/hamburger.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 546
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/logo_mobile.svg

50.87.149.251

200 OK

2.1 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/logo_mobile.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.1 kB (2060 bytes)
Hash
f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/logo_mobile.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 2060
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/USP/US/love/search.svg

50.87.149.251

200 OK

1.5 kB

URL HTTP/1.1
usps.com.chabadcardonation.com/USP/US/love/search.svg
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.5 kB (1465 bytes)
Hash
ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /USP/US/love/search.svg HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Fri, 22 Oct 2021 10:25:04 GMT
Accept-Ranges: bytes
Content-Length: 1465
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/svg+xml

usps.com.chabadcardonation.com/favicon.ico

50.87.149.251

404 Not Found

462 B

URL HTTP/1.1
usps.com.chabadcardonation.com/favicon.ico
IP
50.87.149.251:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
462 B (462 bytes)
Hash
3b58a4197a90ce28f053f853e9f5201a
1764aa95ccf139706beb229625b9d6d6f154bd5d
e63cc6fceab87ebcfc2e83b5d9354ef92bd45c582ac8202ff6d141f39ec17648

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service
urlquery	phishing	Phishing - US Postal Service
openphish	United States Postal Service

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: usps.com.chabadcardonation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://usps.com.chabadcardonation.com/USP/US/indexadress

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 20:15:06 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 00:15:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 462
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML