Report Overview

  1. Visited public
    2023-12-06 16:42:15
    Tags
  2. URL

    foxcatcher.de/kius/lsiu/prmq/amFrZS5icm9kc2dhYXJkQGFkYW1hLmNvbQ==

  3. Finishing URL

    refreshinguser.com/redirect.cgi?ref=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

  4. IP / ASN
    173.208.131.82

    #32097 WII

    Title
    9t2fnxuw9a

  5. Phishing - Microsoft Outlook

Detections
urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
reliableasqhalt.comunknown2023-11-172023-12-06 15:13:342023-12-06 15:13:34
refreshinguser.comunknown2023-10-052023-10-05 22:01:452023-10-24 19:40:14
outlook.office365.com512005-06-202013-04-11 01:09:242021-03-15 09:11:50
r4.res.office365.com1802005-06-202017-03-03 13:49:032023-12-06 03:52:51
autologon.microsoftazuread-sso.com15342016-07-222017-01-30 09:17:572023-12-06 14:55:39
aadcdn.msauth.net14212018-10-252018-11-19 11:50:032023-12-05 18:12:18
browser.events.data.microsoft.com2901991-05-022018-05-25 08:23:052023-12-05 18:12:16
foxcatcher.deunknownunknown2015-02-16 07:25:402023-12-06 15:13:34

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (153)

HTTP Transactions (38)

URLIPResponseSize
foxcatcher.de/kius/lsiu/prmq/amFrZS5icm9kc2dhYXJkQGFkYW1hLmNvbQ==
173.208.131.82 20 B
reliableasqhalt.com/?ghmppoae&qrc=jake.brodsgaard@adama.com
207.154.245.53302 Found0 B
refreshinguser.com/?sign=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL3JlZnJlc2hpbmd1c2VyLmNvbSIsImRvbWFpbiI6InJlZnJlc2hpbmd1c2VyLmNvbSIsImtleSI6Ijkya3lCQ0JmYjBLdiIsInFyYyI6Impha2UuYnJvZHNnYWFyZEBhZGFtYS5jb20iLCJpYXQiOjE3MDE4ODA5MTYsImV4cCI6MTcwMTg4MTAzNn0.NSGkJlj3AmQKAGrnTD2Z7PX0GVFOllEc6QnuqBAXqxU
207.154.245.53302 Found0 B
refreshinguser.com/?qrc=jake.brodsgaard%40adama.com
207.154.245.53302 Moved Temporarily0 B
refreshinguser.com/owa/?login_hint=jake.brodsgaard%40adama.com
207.154.245.53302 Found1.4 kB
refreshinguser.com/aadcdn.msftauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_ltjvsvk5aekta_kgibi0gg2.css
207.154.245.53200 OK20 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_LRl_HOP41vTvA9IKhSqNsg2.js
207.154.245.53200 OK689 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
207.154.245.53200 OK17 kB
outlook.office365.com/owa/prefetch.aspx
40.101.1.25200 OK1.2 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif
207.154.245.53200 OK3.6 kB
refreshinguser.com/aadcdn.msftauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_7-fvwaoy6tczdmxeczijww2.js
207.154.245.53200 OK18 kB
r4.res.office365.com/owa/prem/15.20.7068.25/scripts/boot.worldwide.0.mouse.js
23.36.79.43200 OK180 kB
r4.res.office365.com/owa/prem/15.20.7068.25/scripts/boot.worldwide.1.mouse.js
23.36.79.43200 OK163 kB
r4.res.office365.com/owa/prem/15.20.7068.25/scripts/boot.worldwide.2.mouse.js
23.36.79.43200 OK170 kB
r4.res.office365.com/owa/prem/15.20.7068.25/scripts/boot.worldwide.3.mouse.js
23.36.79.43200 OK146 kB
r4.res.office365.com/owa/prem/15.20.7068.25/resources/images/0/sprite1.mouse.png
23.36.79.43200 OK132 B
r4.res.office365.com/owa/prem/15.20.7068.25/resources/images/0/sprite1.mouse.css
23.36.79.43200 OK288 B
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
207.154.245.53200 OK1.4 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/applogos/53_8b36337037cff88c3df203bb73d58e41.png
207.154.245.53200 OK5.1 kB
r4.res.office365.com/owa/prem/15.20.7068.25/resources/styles/0/boot.worldwide.mouse.css
23.36.79.43200 OK44 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/appbackgrounds/49-small_e58aafc980614a9cd7796bea7b5ea8f0.jpg
207.154.245.53200 OK987 B
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/appbackgrounds/49_7916a894ebde7d29c2cc29b267f1299f.jpg
207.154.245.53200 OK18 kB
r4.res.office365.com/owa/prem/15.20.7068.25/resources/styles/fonts/office365icons.woff
23.36.79.43200 OK78 kB
r4.res.office365.com/owa/prem/15.20.7068.25/resources/styles/fonts/office365icons.woff
23.36.79.43200 OK78 kB
autologon.microsoftazuread-sso.com/adama.com/winauth/iframe?client-request-id=40c4cc54-48e0-152b-3b70-d5bb5bcabb96&isAdalRequest=False
20.190.151.6200 OK7.2 kB
aadcdn.msauth.net/ests/2.1/content/cdnbundles/jquery.3.5.min_dc940oomzau4rsu8qesnvg2.js
13.107.246.53 40 kB
aadcdn.msauth.net/ests/2.1/content/cdnbundles/dsso.iframe.min_ola-etxskuesqyfim_hgua2.js
13.107.246.53 4.4 kB
refreshinguser.com/common/instrumentation/dssostatus
207.154.245.53200 OK265 B
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/picker_account_aad_f83ebff69a4a1685e4dc9650cdab8886.svg
207.154.245.53200 OK628 B
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/picker_account_msa_2d8f86059be176833897099ee6ddedeb.svg
207.154.245.53200 OK254 B
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
20.50.201.204200 OK0 B
browser.events.data.microsoft.com/OneCollector/1.0/?cors=true&content-type=application/x-json-stream&w=0
20.50.201.204200 OK153 B
refreshinguser.com/redirect.cgi?ref=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
207.154.245.53200 OK44 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif
207.154.245.53200 OK2.7 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/js/oneDs_641b1cf809bdc17b42ab.js
207.154.245.53200 OK190 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pidpdisambiguation_8442c9722efe126153de.js
207.154.245.53200 OK7.0 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_ae573f441ee1cf781ec7.js
207.154.245.53200 OK16 kB
refreshinguser.com/aadcdn.msftauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js
207.154.245.53200 OK110 kB