| code.jquery.com/jquery-3.6.0.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.194.137:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 05 May 2024 05:50:52 GMT
age: 744433
x-served-by: cache-lga21931-LGA, cache-hel1410023-HEL
x-cache: HIT, HIT
x-cache-hits: 3, 548999
x-timer: S1714888252.452904,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| giris-ziraat.info/images/bankkart-logo.png | 172.67.198.29 | 200 OK | 3.8 kB |
URL GET HTTP/3giris-ziraat.info/images/bankkart-logo.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 78 x 13, 8-bit/color RGBA, non-interlaced Hash1c829476d51cedc98c38ec95c0894703 d55e8766a4e674169465d195469f85d19feddd65 873e0b75f2ef93861f146b797ccbe5f0d55ce8198ca63c550aa7c7b956988280
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/bankkart-logo.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: image/png
content-length: 3843
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-f03"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZuIBrhPwVRdOHa21iR1ShdgNFCnlTMm3fP%2F1ahaEP7fwCtfaRph6GZkFKxtnXNeXo0cWw%2BxdNd2RTx1U4AJaC3co3jpBWrlAVML4OTuYf0LyzWlZzhlMbdFkTv45T02qoyN5Rg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994fd7b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/ziraat-ticaret-yolu.png | 172.67.198.29 | 200 OK | 2.2 kB |
URL GET HTTP/3giris-ziraat.info/images/ziraat-ticaret-yolu.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 71 x 24, 8-bit/color RGBA, non-interlaced Hash093977cf30b8f0eb5f08f2140ac167ce fcc21c09aeeabba4514d899c7ffc9f4955c6bcd9 56211622389ee4424cb99eb8581d8a3574ebe2e4a4720991a31d8b31a2340678
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/ziraat-ticaret-yolu.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: image/png
content-length: 2156
last-modified: Fri, 03 May 2024 00:07:28 GMT
etag: "66342ac0-86c"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F2Hf3401P5xW8bCzRsbQYKizDiB1bCJvucKdmXksOlemaEb%2FIZOEMnUFqxvSdEbg1LMIQJwGwkK7gZEQvikfXySUpEzh0%2FU7qxWnqRFZJDmg1SWX7xUjsEZA84VAMpdqcfWv3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994fd5b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/super-sube-logosu.png | 172.67.198.29 | 200 OK | 1.6 kB |
URL GET HTTP/3giris-ziraat.info/images/super-sube-logosu.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 100 x 17, 8-bit/color RGBA, non-interlaced Hashf09bc5c4d4f4fa27a29749c61b706f4c b2dc4beeef8a1b66467ae220fed5f4351830abdf 89816ce49c82284d656b71e48f85102c68ade31d485548529b37494cea507d35
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/super-sube-logosu.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: image/png
content-length: 1588
last-modified: Fri, 03 May 2024 00:07:28 GMT
etag: "66342ac0-634"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=khXyUXlNU0z2H9NKWhZ1gRqz0V1qUi9CXMX%2FEdJ9R6D6R%2FZfz3FSjyde4BvpfoKnTcMZzdTeJ%2BGJ49nNATxliknyqRcFY0qCegD3FU13Na4csUJHT1%2FfUmbodThLEoN1Cu83vQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994fd8b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/logo.png | 172.67.198.29 | 200 OK | 4.8 kB |
URL GET HTTP/3giris-ziraat.info/images/logo.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 438 x 92, 8-bit colormap, non-interlaced Hash0178d49fcf102d2ac5f4d93d7a8d2141 b4d0803f6ed282ea0e7d559bb5a32806125e07a5 dc6750872782481c50484242a1e4d6dcfa856fae3d932154d384b476a0254638
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/logo.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: image/png
content-length: 4823
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-12d7"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vPa8MRHqOCPl2JTDfuWCugSgiOdNqtIMYZKIy3f0OF8ji%2BLrO72pym0J0PWgczzs70whkG357%2FaSpFCklBRLPfyUb9CD%2Bd8IGKPNR1pPtvgqbsk7141zBvkSYwXQFEOy7H8V3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994fdbb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/logo.gif | 172.67.198.29 | 200 OK | 711 kB |
URL GET HTTP/3giris-ziraat.info/images/logo.gif IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeGIF image data, version 89a, 760 x 92 Size711 kB (711167 bytes) Hasha97e7c57876a18e8af44cf1ba920ed9c c30e0c4f192195c8e783663fa758a6beb70ac8e6 243267679aee53e8f60f223a2a19706bbac15f8ff5b3d9a64428b4cd91afb483
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/logo.gif HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: image/gif
content-length: 711167
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-ad9ff"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4qJtHGYtXSBXM7hBBfMsA5ry0NZhyRnp2N2sbYdcfq1aUHvBEpCIcM3cA4VudZlP7LEz9NRYYdgYRxtOP6%2FCKw1R99tILmN9dkdFNILVy3JOSLByrhcBHs4RcCweyw%2FYIL5qxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994fdfb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/mesafeni-koru-modal.png | 172.67.198.29 | 200 OK | 354 kB |
URL GET HTTP/3giris-ziraat.info/images/mesafeni-koru-modal.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 600 x 594, 8-bit/color RGB, non-interlaced Size354 kB (354405 bytes) Hash764f0241a7cd0267e47d73a611c951ca 2d77ff108e731215ce3ac7ae2b37ac516851a7f2 0302dbdff5bad8708d4d7027825dd040ca3a1550fb208ace34bf4d952e1c6ef4
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/mesafeni-koru-modal.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: image/png
content-length: 354405
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-56865"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3IyPne208eEbuYzt%2Fe6Vz7fwUXqnfJNvKqqnJP%2B9q3gI1LENTns5zeTgycts%2B1AGFZBDJqJacjAsSUNOiq3g8ItDql0Us2G5jhokeNu%2Bs0dGp58jwFuSC22fAMXenGbCKXlTCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74995fefb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/mobile-app-modal-img.jpg | 172.67.198.29 | 200 OK | 74 kB |
URL GET HTTP/3giris-ziraat.info/images/mobile-app-modal-img.jpg IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2022:09:22 15:02:05], progressive, precision 8, 610x328, components 3 Hashe910495d67afbfc91b84ccc03627f321 de951d98c65a07c8a8c91b4d3e148036b7d08eff 169351eb745ff085ffdf70466ec0d62f0e5d7674282067b0843f59bf513d12e6
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/mobile-app-modal-img.jpg HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: image/jpeg
content-length: 74410
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-122aa"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0TgxGdkOg3kp7NI6b237z9wDVWQTvBWIx3WFRhGOgLPexs13RH9BEHmzsx%2ByO969Wa%2FA4WVj0%2BMCkI6I%2Bk5O0oDoDP0zMCmXUxKJJ5RHRGMZVd1zN7ry61tSJMixurpDkeWeCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74995ff2b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/js/cbot-ziraatbilge-generator.js | 172.67.198.29 | 200 OK | 51 kB |
URL GET HTTP/3giris-ziraat.info/js/cbot-ziraatbilge-generator.js IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1416) Hash7c2ca11f7acb6a8fc7754991eceab251 13349b77855ebbb5c6f87d6eb3efef1f7d768c8d 19ce6766e85ff7a5bc59323f6a89720b4e052239da757b5071d956e9beffb28a
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /js/cbot-ziraatbilge-generator.js HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 00:07:28 GMT
etag: W/"66342ac0-4020d"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MYdVd2cVkEzmC0Ifn5fhf%2B4n7SCHUy0QueGNkz4UMvarwfBWpzb%2BCgCRB38cTxXTqmgp7WlxiG7D9Yb6NYjHR3pb7sybqfTE8GkuItA63vEkZ69%2FgoySm0a5%2B0f0y0Cg%2F83njg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994febb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/dd-arrow-sub.png | 172.67.198.29 | 200 OK | 958 B |
URL GET HTTP/3giris-ziraat.info/images/dd-arrow-sub.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 9 x 5, 8-bit/color RGBA, non-interlaced Hash9bff48d924809b9d0e4eb33c1afc3c8d 731184af980847859744c36c14cc8e0056b124fd 225ddfecd15f7b8b19677dff2bcf0405b2c0642413f9b771cfb66c6e82627673
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/dd-arrow-sub.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:53 GMT
content-type: image/png
content-length: 958
x-accel-version: 0.01
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "3be-617818131ab80"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zNPDbBoqN1GzwNmDqwl9LmSdMr3uw5aBkvzuzVxug7PLzTJYRbVY0grcwYLov1RcWz%2BC7uQb7NooysAWSfS%2F4o1INL%2FO%2F2slmNGQlaHhj0bGJEQz8IidZsEm2P%2FRnaIYIRr8vA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc3b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/css/magiclick.min.css | 172.67.198.29 | 200 OK | 80 kB |
URL GET HTTP/3giris-ziraat.info/css/magiclick.min.css IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeASCII text, with very long lines (41041), with CRLF line terminators Hashb1cfa796050ba9c9be9c3fd4ebd6ce0b ca6724114ee207b89728f1e02ae9caf7b80cb8d3 22d18db1b598a7ece00b9833d3ebab22a6777072795c2e946840cbefd3c3ee12
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /css/magiclick.min.css HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 00:07:24 GMT
etag: W/"66342abc-8c733"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4aJNB0hovMieF%2FufXkm39MoNJqQoHJPQnI4f0mITI3ucKLaUH8vyG3FVt6TxWIwDFKhRTqAJ5R6q46gyt6%2BrtNzq24wnicqCeAQNTzuWAm8YZihosYRINQsEyQI13n6g%2Bv3tTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74992fbab529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/landing.jpg | 172.67.198.29 | 200 OK | 390 kB |
URL GET HTTP/3giris-ziraat.info/images/landing.jpg IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1900, components 3 Size390 kB (390236 bytes) Hash127df79020daffcd8595081c216d5130 f2e47da8d70ce8ee1f1400c7d44b66dda234fd16 1db3c4c816b399f5cfe680679d67af61ee169be6897247a9ced136e0e62a5a6f
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/landing.jpg HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:53 GMT
content-type: image/jpeg
content-length: 390236
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-5f45c"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7NCN5ole2Ez7vqPxBON5EyrANEe1uT%2BpSqCZ59bRDZNJ%2FFpaCyYowpBUzc%2FSdnd4HoRHbXziUzG6iyCODDeDP3J1AD1qrWagQlwwSRYdgDejJl%2Bffu41qMKFEhSZRUxyST9VuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc0b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| | 172.67.198.29 | 200 OK | 23 kB |
URL User Request GET HTTP/2IP172.67.198.29:443
CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeHTML document, ASCII text, with very long lines (65486), with CRLF line terminators Hash28b0a0ef81ff73f392da02ed6799cd9d 5cae471ebe6a74d27c795df9ca109497e752c408 bdab35085d2f649d441b9b4fd3dff8b1c4695acd60ddfd9d67cc200cb2212a60
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET / HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HSl6ifkxDlg17213gA%2Fbr8KiBB3O7NKSycUhts%2F5cVixdS8YdpGeKSBSPOBMMXtgRja0Tk0zoBe9%2BeasXTCamThS9iciRnZ89BAoUTld6EYndq%2Fv%2Bkw5HIcKvvPWLjblsGVFww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74945c6d1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| giris-ziraat.info/fonts/icomoon.woff2 | 172.67.198.29 | 200 OK | 27 kB |
URL GET HTTP/3giris-ziraat.info/fonts/icomoon.woff2 IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hash369e95a6af07258b67ef9802168e0290 fba8efc35b9bb2297acbdc461da6142565872e83 375e673560c61a2ca126d5b7a692b57e0e08b59094a306a0ce6250257e933011
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /fonts/icomoon.woff2 HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:53 GMT
content-type: font/woff2
content-length: 27264
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-6a80"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KkQcjsj5ciUHcGa7DfgSFn9cziVw2HKiZancGmaUecLYOhcAqGaFRPHyoO7GIIG%2FatzYl4yUDLn51kBwr0uDUDXtDK2hvaf7GF5G2iH98llBi9i0c6iGJoqwyR1VA2ZlVOA73A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc4b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/status.php | 172.67.198.29 | 200 OK | 10 kB |
URL POST HTTP/3giris-ziraat.info/status.php IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeASCII text, with no line terminators Hash27a21354321dfbc28f0cb17b995bb9ca d1ffda5dc9903c9a42d66636aea9405e311c6f85 8e2c7ac508139a02af859de64a4743c1f3946837279332c35ec8f5ddf20654ae
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
POST /status.php HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://giris-ziraat.info
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full; PHPSESSID=mc2g3v27pp2fjonelvo2rflcl3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:57 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zN39xo0ZrBEwROTP6rEVnzygmmUZkZX%2FZjRJh2dKo6ecR37jxmaIfScaciJwnHyosy2ZfXiQVFOnvYOAIAcMXtSLh4%2FL80KmOer9sZoKN%2BqHn9sv1RvEEdhDAudSRtKSErxoQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74b52ba6b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/tr/_layouts/15/Ziraat/Social/FBLogin.aspx | 172.67.198.29 | 404 Not Found | 9.5 kB |
URL GET HTTP/3giris-ziraat.info/tr/_layouts/15/Ziraat/Social/FBLogin.aspx IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeHTML document, ASCII text Hasha943672a32297727bab01c3e76977550 3a667c4b7a457ef6c586cc581d533c128737bf53 b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /tr/_layouts/15/Ziraat/Social/FBLogin.aspx HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Sun, 05 May 2024 05:50:53 GMT
content-type: text/html
last-modified: Thu, 02 May 2024 17:44:41 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DeRzWMLCNeNuuakYL8dsHaLicHI7x8nsBqemNft%2B%2BgLBx8tQ97Qbc%2Bhbeg5rHR7bnFCeL6AXwGdywy84tzp4mzsQue7cyk4X%2FABkW9%2F8z24EJreVddWvOBnDei8ZzZWL1gdpxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74a04d0eb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/fonts/GothamNarrow-Bold.otf | 172.67.198.29 | 200 OK | 63 kB |
URL GET HTTP/3giris-ziraat.info/fonts/GothamNarrow-Bold.otf IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashfca067de7ff927207cc5a1e9c069ea0c 99fb4309ec6b48bcc4a9e0054ba3ea75dce36a2e 9e62bbd51aa1cffa92e06b049ed6882fc94af0a6891b6de2eb1d515d2b027e2d
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /fonts/GothamNarrow-Bold.otf HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:54 GMT
content-type: font/ttf
last-modified: Fri, 03 May 2024 00:07:24 GMT
etag: W/"66342abc-f4e0"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=reyJYqK5ajgq%2BAXdJX%2B7jp%2F%2FKolySdN5rVFj8RnMDdxy48RrkhetQs%2FaGVvXABbP7dwpHR8dk3n0eMiiUD79tCQJ7H8r1gepzhRBINAukHn6LAtwXYmRKugBrxINeO3VHF1D8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc8b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/fonts/icomoon.ttf | 172.67.198.29 | 200 OK | 51 kB |
URL GET HTTP/3giris-ziraat.info/fonts/icomoon.ttf IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon Hash0838b0e8da2abab05993b8cee2be17a5 362c87314f9d7df865db070975a662169497928a ce0b3fc5f43bc911da9d9f9fcd0c8ebcd3ebfc1fb78cb674aa2457570612a873
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /fonts/icomoon.ttf HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Cookie: PHPREFS=full
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:54 GMT
content-type: font/ttf
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: W/"66342abe-c5f0"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IYqlXUCqSRY97w1ZFlyDFMxBBp8I2CFZPkuVqnUreZ56NCYCzhvFjvI10PAx37iDsqCmI3mlglLzKISBupHOA49PNcAbq5FxaQKTP3vb12IIN62ORiVmUCWdwvS8CPlh3hm%2FQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74a36f5bb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/process.php | 172.67.198.29 | 200 OK | 0 B |
URL POST HTTP/3giris-ziraat.info/process.php IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
POST /process.php HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 25
Origin: https://giris-ziraat.info
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:56 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=mc2g3v27pp2fjonelvo2rflcl3; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aSRH5KnHotPD1pFBYsrXQtCLlR0ScsVbHJgf6NIMzLPs6MhKMS52HNSz1gcHR2ovmo%2BfaLZZI69pqz4OcxIoIUcjb7IpimMbtNvd3yQANfD9TRbLU2cHEqERIgqaopn14d7HFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74b3ea81b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/process.php | 172.67.198.29 | 200 OK | 0 B |
URL POST HTTP/3giris-ziraat.info/process.php IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
POST /process.php HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 25
Origin: https://giris-ziraat.info
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full; PHPSESSID=mc2g3v27pp2fjonelvo2rflcl3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:51:02 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sVlTnmE%2FWowIkeASCZy6L04GSmdUdX978tEIBTLdP66ihLZ6ZC0amKwVfjMZlkl4F1UYtK0yVv5j4b8m0OZ71xOlM9v2tHYsJXpPfq0amq4rtcdigvMjuV8ke4o%2B4qnJq4NWvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74d96f3cb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/process.php | 172.67.198.29 | 200 OK | 0 B |
URL POST HTTP/3giris-ziraat.info/process.php IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
POST /process.php HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 25
Origin: https://giris-ziraat.info
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full; PHPSESSID=mc2g3v27pp2fjonelvo2rflcl3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:51:08 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eFFWzx%2FDc%2FGKkn3wJl2DmTi2%2BKovP7iz5TSTlD7oSgaxpJkFfxZ6hUlKcHeM9uSzlJIuAS0g%2BzWW1XIgAq3A1gWqXdfxgvcGTRaRc%2B2zur%2BvASqFjzkOQMVx%2Bi8JWQQKOET2KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74fee9c3b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/fonts/GothamNarrow-Book.otf | 172.67.198.29 | 200 OK | 61 kB |
URL GET HTTP/3giris-ziraat.info/fonts/GothamNarrow-Book.otf IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hash954cb971afce220932586684e37f26af 6776bb3d7a843ee625941343c76a7dd14a18c8ed aa8a40c7d040c62e5d7963281173bbc700f2fd64892ee1e81af2fc7e09694c66
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /fonts/GothamNarrow-Book.otf HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:54 GMT
content-type: font/ttf
last-modified: Fri, 03 May 2024 00:07:24 GMT
etag: W/"66342abc-edd8"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qoa8BB7x5svThUl1dGKLI2QkB09aodiifWft1GfYszulhzCQGkKww8uIInB933u8R5tOhDSbRUgW2eHfNSomGc4x9qfo%2FFCpNQrd%2FHQv345mcX21crETjfNjt5LKC98oGW%2B2yQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bbeb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/favicon.ico | 172.67.198.29 | 200 OK | 11 kB |
URL GET HTTP/3giris-ziraat.info/favicon.ico IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeMS Windows icon resource - 2 icons, 48x48, 32 bits/pixel, 16x16, 32 bits/pixel Hash7c4d9d1b934e16ce3f1aa554b6a1b385 1d06af45330ca11446d65d72de0032206938fb39 5ce3d318c9fe70d7168012f428488d53833adb649406b01318d80f9a5c0b62f8
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /favicon.ico HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:54 GMT
content-type: image/vnd.microsoft.icon
last-modified: Fri, 03 May 2024 00:07:28 GMT
etag: W/"66342ac0-2a36"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JRxIHTsRI1SF0mmI3p9Cl7m7RNVpZnrJ6H8nJsNzn7Sxyb4CFdsQoelgZiwfJqt45B%2B3yVugkjuoh7cmfA9oWalbqoBXy9ATBoroZR%2B4NRDAB6q8gv3jyW1oPquDYYiP9e2aBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74a578abb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| api.ziraatbank.com.tr/inbound/cbot/static-files/web/css/cbot-ziraatbilge-custom.css | 0.0.0.0 | | 0 B |
URL GET api.ziraatbank.com.tr/inbound/cbot/static-files/web/css/cbot-ziraatbilge-custom.css IP0.0.0.0:0
Requested byhttps://giris-ziraat.info/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /inbound/cbot/static-files/web/css/cbot-ziraatbilge-custom.css HTTP/1.1
Host: api.ziraatbank.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| giris-ziraat.info/js/script.js | 172.67.198.29 | 200 OK | 2.8 kB |
URL GET HTTP/3giris-ziraat.info/js/script.js IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3065), with no line terminators Hash0b97c2cbd7efd83744aca33c7c45caae 8a32adbe32af35f0ff62aff3f12666b62c289924 c051a8eeadfb5264cfb7fdd328cdf58f2bb5bab9e3a321a7f1a7ce4d32df6d2a
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /js/script.js HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 00:53:02 GMT
etag: W/"6634356e-b0b"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJE3Rk61AerEqwBv6jcNGhP7x2%2BQuHNzR2e%2Fy1SmhZGSqn64uxWB5e%2BnTnwfXjomJhzGZCS8iwskJmIV1dZd%2FPC4LtcxrgYuGKoGtpA3ldjhJ6jd3yqffoBM2yyTfwfjLqj4jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74995ff6b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/arrow.png | 172.67.198.29 | 200 OK | 959 B |
URL GET HTTP/3giris-ziraat.info/images/arrow.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 5 x 9, 8-bit/color RGBA, non-interlaced Hashe9ddd3dff20b63d8da1705f78cd2d3ca 0c5814b9b28966df78bd7e521a3d2b1158de1367 b5f45ffc3928fdfba55d9ce330c577cddf28dfe4b79c257cc22e2c062e14adec
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/arrow.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:53 GMT
content-type: image/png
content-length: 959
x-accel-version: 0.01
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "3bf-617818131ab80"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SpAdIqrt3hqF8RNRXiRoSRgial7DNYK%2F4DIuzLbuVJTh%2FaOHMxaUUFKdfRisu%2FCnIuXFEtq5tm5JsArMmeQXUvGCn%2B%2FPuF%2BHDRnZCLM5Z6LFPYiYh5qDzp8bme7EwpYCgqYkWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc1b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/process.php | 172.67.198.29 | 200 OK | 0 B |
URL POST HTTP/3giris-ziraat.info/process.php IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
POST /process.php HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 25
Origin: https://giris-ziraat.info
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full; PHPSESSID=mc2g3v27pp2fjonelvo2rflcl3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:51:05 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FgZ58N04Xe5XXTSbO7Wo95y4Jess%2Fq6WSsvC4c18%2BAhGlbTBTQpa112%2FdDKcrr8FJGhpmOotxANAgtrkfDazlNUNRh5xpSRD3VuTb5Aiq11f1akJO6cuYLMAPjjQH2CTsMM6%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74ec2dfbb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/process.php | 172.67.198.29 | 200 OK | 0 B |
URL POST HTTP/3giris-ziraat.info/process.php IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
POST /process.php HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 25
Origin: https://giris-ziraat.info
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full; PHPSESSID=mc2g3v27pp2fjonelvo2rflcl3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:59 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cxjhdCtOWcx0N%2F17GV4GRZcrP5bRVUN7KTIf9yRUzKxk9XIMgS9yYBNo%2F8ErUA0QIkaN2jCf5fo7og83Wri5DTGwI%2Be67Y30MkjwoXmcsre0TU9qYCAEifWYOAT7SFOBjvZS4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74c6a814b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/BotDetectCaptcha_2.ashx | 172.67.198.29 | 404 Not Found | 808 B |
URL GET HTTP/3giris-ziraat.info/BotDetectCaptcha_2.ashx IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeHTML document, ASCII text, with very long lines (866), with no line terminators Hashb45bdabc5c2538b0c4e5f352bcdfb585 5a97ce87ce8d3d86a043c1a5e68e968e20a1e146 c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /BotDetectCaptcha_2.ashx HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 05 May 2024 05:50:52 GMT
content-type: text/html
last-modified: Thu, 02 May 2024 17:44:41 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YJf03CuCJgNOkgioQEN86RwutR%2BTAP%2FIVEbtGvhQMF0FT07wXSJThKxjgrON3DWpLKSvHkAu0aiaj2Gd6gOjwANAZDq3%2BTOMvPEhLr1bxS4Q4NB6dbyHck1BSxwMbcKnK5316A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee74992fb9b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/js/jquery.smartbanner.js | 172.67.198.29 | 200 OK | 16 kB |
URL GET HTTP/3giris-ziraat.info/js/jquery.smartbanner.js IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /js/jquery.smartbanner.js HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 00:07:28 GMT
etag: W/"66342ac0-3efb"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ToRbhmuowDhywLKybVeB6XoBqPF1rkkx13ZKbu9Sz8YI3uJSo8ZkU%2BGMjsSNVPo95KwyQA%2Byg%2Fb0XKFfp5a7qrD2D8jyq%2FhQh2o3usvG8wb0WaaWY2VIVBHdZIr0F00S8v5CjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994fe8b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/fonts/GothamNarrow-Medium.otf | 172.67.198.29 | 200 OK | 62 kB |
URL GET HTTP/3giris-ziraat.info/fonts/GothamNarrow-Medium.otf IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd0783d3c65eb70e31b0bf884ce21b1e2 80fba6a2feb4c1a9640540c315850412916adef7 277fbc0e7cab340b007addc4812b701d115ae5be9a7d03a509b2c5811727b89b
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /fonts/GothamNarrow-Medium.otf HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:54 GMT
content-type: font/ttf
last-modified: Fri, 03 May 2024 00:07:24 GMT
etag: W/"66342abc-f250"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mgcF0KhDIypLfM4P6sb10HBZAzjTRaJqtN6Z2xVhgGkFXEAK1TFULDCE2JH5hXKcWAfb%2FcB9%2Bmsytgf4UC0Y73I3CKX0v2fKICPcDr8xH7LqKq7bYpVCc%2FruKAARm402XsRULg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc6b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| userstat.net/get/script.js?referrer=https://giris-ziraat.info/ | 0.0.0.0 | | 0 B |
URL GET userstat.net/get/script.js?referrer=https://giris-ziraat.info/ IP0.0.0.0:0
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectuserstat.net FingerprintDC:0F:CB:09:A5:4E:3C:65:8F:8A:D7:34:2A:7D:CD:B6:56:DB:4E:3D ValidityThu, 21 Mar 2024 08:21:22 GMT - Wed, 19 Jun 2024 08:21:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /get/script.js?referrer=https://giris-ziraat.info/ HTTP/1.1
Host: userstat.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 05:50:54 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/8.2.1
access-control-allow-origin: https://giris-ziraat.info
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,content-type
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s3xnT75Een9TrO7pacp4vuPFsXx0BkKePUU3Pu4%2Fdp7JL%2FmVcri9P1fnUCGjj%2B58OJngiAAmL%2BrWDJj%2FvjG4rDviIaaq7LLURQhJhyGsH0cYNbFifeCZhqeon%2BJLzP0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74a6fe1f56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| giris-ziraat.info/js/magiclick.min.js | 172.67.198.29 | 200 OK | 1.4 MB |
URL GET HTTP/3giris-ziraat.info/js/magiclick.min.js IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Size1.4 MB (1388913 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /js/magiclick.min.js HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 00:07:28 GMT
etag: W/"66342ac0-153171"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M7rGarLmv8rvzvB3vMnKs77LlN6Ukvl4lr4TiVHlwpP5JUEIFt4DJAx1K%2FhVh58mUs6lDQhJcDdcEIlq%2FX5N3KRvL32EGO10giS%2FI6LFeEyjxzE1Bb33BLhmB1cefZhC4BlxvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74994fe3b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/fonts/GothamNarrow-Light.otf | 172.67.198.29 | 200 OK | 60 kB |
URL GET HTTP/3giris-ziraat.info/fonts/GothamNarrow-Light.otf IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hash4b38466aa92bdb12d8b3e79856262ea1 e1e8ca2afe8ec10da1b5bc449d72e48c7690933b 9db55100ecd437034cc557edd0e7df6d769cfcf019f4046a45d3d4765e4d56a6
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /fonts/GothamNarrow-Light.otf HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:54 GMT
content-type: font/ttf
last-modified: Fri, 03 May 2024 00:07:24 GMT
etag: W/"66342abc-ec80"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Usq6TciqfLm%2F7IpmMcZihfR5Xy2%2FLU%2BHUgYthqPPpVeqg082734iabba0xW6zPz5kxCGvknP93%2BAcGU2C%2FoQyZwSwVJG786omnAGxYrSYB9ICyrEfKJ8a%2FihUWmk5FYPMeoCyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc7b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/process.php | 172.67.198.29 | 200 OK | 0 B |
URL POST HTTP/3giris-ziraat.info/process.php IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
POST /process.php HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 25
Origin: https://giris-ziraat.info
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Cookie: PHPREFS=full; PHPSESSID=mc2g3v27pp2fjonelvo2rflcl3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:51:11 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XqEimfzJm0BmlyVWnqVUJO77HofEKY9QrCnFbJrZppOm5ZPNdyujEeWBA9N%2Fh%2BQr27caLOYd40RiBWQm87eDaEO1%2FFMhnMEWTxvyoTxn6cco4iOkG%2BvuD500qAEQqFZje9G7Dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee7511ae8db529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/js/jquery.min.js | 172.67.198.29 | 200 OK | 87 kB |
URL GET HTTP/3giris-ziraat.info/js/jquery.min.js IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /js/jquery.min.js HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:52 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 00:07:28 GMT
etag: W/"66342ac0-152c6"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YF2hi3%2FSW40n7g6s6kgciF28OZjWHn1F1dX7c7rPIm0U%2FMTZ7s%2BjYo9OYOYO15IKhngYJnmWmnkXc3ZF7Wwke%2Bsp5RB%2BvFXSjGEi3p9HoA7Zz0o%2BUFSy92rMQtaEidELKX204Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74992fc3b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/js/plus.js | 172.67.198.29 | 200 OK | 3.0 kB |
URL GET HTTP/3giris-ziraat.info/js/plus.js IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3211), with no line terminators Hash4da1718355c51bb3ab5601c1d321b2d9 9f1028a44ed42fd4c199dc281d1827d324d6d636 d3ce1a9aa29cfe26fdceebf32e72217519335292ac1097274301eface355a5f2
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /js/plus.js HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:53 GMT
content-type: application/javascript
last-modified: Wed, 03 Apr 2024 23:42:50 GMT
etag: W/"660de97a-bac"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bmNj81m1KB7Uzn64ILqqUsmSgbRbHIyyviKJo4yDpWny7yTC8opjUkJd2Jbx2XG8gb1TkCKmdfZ64gPlMrJGcBK6XwEMN0C36bHXqm9iHekikXpPmmzcIRmLHevgf69FjQoNpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee74995ff5b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| giris-ziraat.info/images/dd-arrow.png | 172.67.198.29 | 200 OK | 3.0 kB |
URL GET HTTP/3giris-ziraat.info/images/dd-arrow.png IP172.67.198.29:443
Requested byhttps://giris-ziraat.info/ CertificateIssuerGoogle Trust Services LLC Subjectgiris-ziraat.info Fingerprint3A:28:E6:23:BF:24:E0:A4:E1:97:E6:40:4A:AE:89:EB:05:A8:9C:4E ValiditySat, 04 May 2024 07:28:59 GMT - Fri, 02 Aug 2024 07:28:58 GMT
File typePNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced Hashcc7ef63b610d66b8c8af2eb2bb1fa654 2105a438854bdc88c312faeda4af15ce1ebf2a18 2f2e0cc0f57a44db726dfad23c03df57b80d4df03adb02388151880033c84c4b
Analyzer | Verdict | Alert | OpenPhish | phishing | Ziraat Bank |
GET /images/dd-arrow.png HTTP/1.1
Host: giris-ziraat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/css/magiclick.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 05:50:53 GMT
content-type: image/png
content-length: 2973
last-modified: Fri, 03 May 2024 00:07:26 GMT
etag: "66342abe-b9d"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c1PGbSh8erm7dZJbFPtfituWtfP7%2BhikPt%2FGIoWfzKmdPSNDs3CnFlSe34%2BH0eV3W27keYkVOpYy7Njew8CqSlElAQRLI7a%2FFVMinHjbFJ%2BX%2BhO7qrcIU2nuh44Rm%2BJWcB%2F7dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ee749e6bc2b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| api.ziraatbank.com.tr/inbound/cbot/core/localstorage?client=ziraatbilge | 0.0.0.0 | | 0 B |
URL GET api.ziraatbank.com.tr/inbound/cbot/core/localstorage?client=ziraatbilge IP0.0.0.0:0
Requested byhttps://giris-ziraat.info/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /inbound/cbot/core/localstorage?client=ziraatbilge HTTP/1.1
Host: api.ziraatbank.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://giris-ziraat.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|