ggg55.simplestate.repl.co/
200 OK 92 kB URL User Request GET HTTP/1.1 ggg55.simplestate.repl.co/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18845)
Hash f2d9ff7e53dc902f028c9070a1e01251
b8314593becd9daddfd82d81c3a5f6b1bb5ee24b
527d6018b0f08bbd30bec4f3526f5d657525db5fce4efd51643a8830202c8632
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET / HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 91530
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:02 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440381; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/keyboard.css
200 OK 492 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/keyboard.css
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
Hash cde47bbdcc48b7a1883bfa6ff9461e1b
df0ffcc2e83ba3da25ffdb9e4dfe70165e1f34a8
612a237e8ee113c28afb5b58bce39eed244dc31b6d2127b45da334edca204b85
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/keyboard.css HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 492
Content-Type: text/css; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/analytics.js.descarga
200 OK 53 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/analytics.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (2343)
Hash 575b5480531da4d14e7453e2016fe0bc
e5c5f3134fe29e60b591c87ea85951f0aea36ee1
de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/analytics.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 52916
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/bootstrap.min.css
200 OK 124 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/bootstrap.min.css
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (65371)
Size 124 kB (123758 bytes)
Hash 65d518a9dc19eee2880f149ad8696734
473bab8d212a1f5f374dd5fcf66c9882ea0625d2
38c2ceafd2e0319b0249ad97ab59932dd54971afd9422bb5bbff40ab7069d763
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/bootstrap.min.css HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 123758
Content-Type: text/css; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:02 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440381; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/simple-keyboard.css
200 OK 2.8 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/simple-keyboard.css
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
Hash 7ac8b1ce1d4560506b4ddaace5546637
ec9cf772f643b3583aa07012f94715a4c55c22ed
c46e9d5b86e7a9c0405f4edb56d1f7f8a4a463dca80ff9b99b916da39064a233
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/simple-keyboard.css HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 2790
Content-Type: text/css; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/hotjar-584153.js.descarga
200 OK 8.8 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/hotjar-584153.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (7579)
Hash 33e0f5ae0a00c03ae2fa4249499d825e
3404dc7f2c5d32ef9bb3c1a6df97bc4e226ba403
a6619282281eb6de49e182bd10face1613aa35dd273b14028066cc3ef9f168d2
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/hotjar-584153.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 8811
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/js
200 OK 266 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/js
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (5955)
Size 266 kB (266057 bytes)
Hash 87c50af8ccce74c1af2014b060be98d0
99d30699fa342dec969e14f3deef575ced1d4ed6
369d15157c3adf32f18cdd7d070b083fdcd736d57ddc3d85e1f8228092fd431e
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/js HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 266057
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/FrontFunctions.min.js.descarga
200 OK 34 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/FrontFunctions.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type Unicode text, UTF-8 text, with very long lines (34310), with no line terminators
Hash 9809568371cd4a80cf86a11a813c2271
bfb012ba701d2705cf1037815b25bfec89860cba
97c62448493ad03009b1152aec5f237119235c3c5567f1525df5483448de61f8
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/FrontFunctions.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 34321
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/customcarousel.min.css
200 OK 1.9 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/customcarousel.min.css
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (1920)
Hash 507cddc424365cfc443858856b1747fa
74f55054e13021d5b5c6331778e42dc42c80d6d4
f397778bb003ff2d647f5d7d90050f9b50f43622fb02637c8537f159f460bbad
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/customcarousel.min.css HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1949
Content-Type: text/css; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:04 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/js(1)
200 OK 212 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/js(1)
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (3026)
Size 212 kB (212070 bytes)
Hash e7e714d54eed36ec795bbbef76300369
a4529a08f53847ceabd0f1ff057e7370885a4636
00b482af0eeb468bea82a91511e5f28ba52d30d755f593e9ecf0cefc8e1f81ed
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/js(1) HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 212070
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/seguloginclientless
200 OK 436 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/seguloginclientless
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (436), with no line terminators
Hash b5b11848c082822cdadac05e9f169809
d4373a43ca4cc74d1e3a9a1da6fc1c61853c38c1
b8f28cd9cc6257cdefca49414abb41ad8eabfaf681b33663da840e88d72ebfbd
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/seguloginclientless HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 436
Date: Sun, 26 Nov 2023 17:17:04 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440379; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/saved_resource
200 OK 959 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/saved_resource
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (959), with no line terminators
Hash e839bf471a5c6d390d59f37d139722ef
b76fd31a1a820997e39399dbbe71448047f4ae43
c93153ac3f59a9b53b5ae04c99bded904698ebed8ee2c9303b9503eabfc73631
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/saved_resource HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 959
Date: Sun, 26 Nov 2023 17:17:04 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440379; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/RC66fa2a34a0a9451089445bfcda97f3fc-source.min.js.descarga
200 OK 1.0 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/RC66fa2a34a0a9451089445bfcda97f3fc-source.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (864)
Hash badb81fb55c7af8017b86a6921d54b15
d1e6d2db1749eee0b910bb2a819377213b6ca629
cc4cf80e5154288e27d526b74c7d9b12b4d343e016dd0ccb65518b0d15f7b0f7
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/RC66fa2a34a0a9451089445bfcda97f3fc-source.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1011
Date: Sun, 26 Nov 2023 17:17:04 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440379; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/sharedout
200 OK 387 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/sharedout
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type Unicode text, UTF-8 text, with very long lines (65435), with no line terminators
Size 387 kB (386613 bytes)
Hash 9861fa51e74a108f05a388c4bc7547ec
6227ce8903aafc40485e4adda69f945bcd25ed4e
c4145a9e8ffd7f6e600cb97e9d5b54488499fec84e99b147ee7c48d171314395
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/sharedout HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 386613
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/RC1699ac92c9d8400891bfa4b6e7a932be-source.min.js.descarga
200 OK 580 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/RC1699ac92c9d8400891bfa4b6e7a932be-source.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (433)
Hash 4b49a908e03544ef3e4a57c4db091aae
ed045d3aeb8df70b6f5587b00386b897f3a0b0d2
df987e21da23e13ef071bd4b0be5b837d67a9bbf0f3716d30d600138d613d3ff
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/RC1699ac92c9d8400891bfa4b6e7a932be-source.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 580
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/RCa6a6f4ccacd34f08a039964c04e81646-source.min.js.descarga
200 OK 350 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/RCa6a6f4ccacd34f08a039964c04e81646-source.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
Hash ace734f8666cc629135a45654e3c03b9
c68132e1cfd283f3eccc71ed0e4279440e607257
496aab6e593239f4df30f339227a5e8f21c19b5dc6aefd1ffee619a90e744f5b
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/RCa6a6f4ccacd34f08a039964c04e81646-source.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 350
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/launch-121f57795303.min.js.descarga
200 OK 276 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/launch-121f57795303.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (32749)
Size 276 kB (276199 bytes)
Hash 966ff920f29d2ed30b7391f1b6570ac2
a219d97bb2b9702a84f404e1f7b05ff640e99667
a2c32bed5840fed0ad32ff8728bc853def8a6d681eb8f779643bf168f6f06f3b
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/launch-121f57795303.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 276199
Date: Sun, 26 Nov 2023 17:17:04 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440379; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/RCb36db8e494f24d869aef5b3f3bd32cf0-source.min.js.descarga
200 OK 398 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/RCb36db8e494f24d869aef5b3f3bd32cf0-source.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
Hash 0312e7492e576d6fc99b42ee44f722fa
776588ba5c029c424f923797016f21eacbe5b729
6f3b5a87e9762b17f9577bb0df9488b03061232d6f11bc7b70e9c0a2dada23c4
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/RCb36db8e494f24d869aef5b3f3bd32cf0-source.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 398
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/f.txt
200 OK 3.1 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/f.txt
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (3079), with no line terminators
Hash b4c1b5b3d9880a002d53224b1f6f2a19
ed467968f3286e3fd949fbcbd29a58d52a1fc8a5
53e98c883d70a7e45debf42472ae26c911653c3113f3f95684ac24ff36e24670
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/f.txt HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 3079
Content-Type: text/plain; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/gtm.js.descarga
200 OK 572 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/gtm.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (65316)
Size 572 kB (572155 bytes)
Hash e1d020d3f077017833b0f512d0ae3f6f
a2e6d981b872592e310f2fb1096446168f1a8fbd
b15b3a6172803128598c8ec28b7b44f8ebaf8c94b217be3567d2e7bf491330bd
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/gtm.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 572155
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/81630000.js.descarga
200 OK 125 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/81630000.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type core file (Xenix)\012- , ASCII text
Hash 82e6d8421d893ce68d9bb32d26b20975
34065163d1bd93c6e69eb70169ec2c65c015f429
d2f65b5b23c8346bf2a6a561789dd547803405f7291e517798c2f048dd0e7318
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/81630000.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 125
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/dispatcher-v3.js.descarga
200 OK 5.0 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/dispatcher-v3.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
Hash ff46bff054ea5901b77922bfcce5a6b1
4d66ddf88684fc255bcaec9f6afc2cdb5e187b56
80eb5bb22c350b6e7d6b0d133860eb4ed3cb91a3b8cd301ac00f2aecef47c903
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/dispatcher-v3.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 5010
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/cp-v3.js.descarga
200 OK 31 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/cp-v3.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with no line terminators
Hash c5e7e3bebd7356c2687e9e2992e6b4f9
06f8feac9c07d86f55d2de36a7864f0b0c303c91
d06288f3de255c3b6644bbf86671b832958096f727c9efa9daa10a11bac8aa01
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/cp-v3.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 31
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/yahoo-min.js.descarga
200 OK 7.1 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/yahoo-min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (6013)
Hash 839e18c2abe9817eb0b63acb4f014aa4
f63225ad08c2769101b7db1604bb84eef07d6747
c642c7ca52f6c1109ae4f95cc996868b27c2aa5d230bb2fae8b73969093eac17
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/yahoo-min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 7083
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/json-min.js.descarga
200 OK 4.9 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/json-min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (4764)
Hash 59d3be5741942c7fca3daff0b2d977ef
b8a39edc1977cd9c21cdb771c43961e14732e2c6
f9c6a26ce3e203ceae1433c8c1618f7c93d695131a53262ff72f8154421fde40
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/json-min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 4919
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/keyboard.js.descarga
200 OK 6.2 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/keyboard.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 21c7aea664b35e76ff9fe0c579b23f0b
f2c369d97b8e1a4cf2e4688ad4c878348fa420cc
ea4068cbd9eeb14497343b7f0584a42a42f9d64909aa38c781bb76ac0d9dc372
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/keyboard.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 6244
Date: Sun, 26 Nov 2023 17:17:06 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440377; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/polyfill.js.descarga
200 OK 1.8 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/polyfill.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with CRLF line terminators
Hash 96e73c05372bbc98095ff79e40cf62ec
11592b8d0a68d3eba515bd5e1dbfb9aeb99b5a42
5673590a864ab325ebe5ae1ebd0abbd38ee3cc3713c3bc8a0a72a3cc3ccd73cf
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/polyfill.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1782
Date: Sun, 26 Nov 2023 17:17:06 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440377; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/simple-keyboard.min.js.descarga
200 OK 20 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/simple-keyboard.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (19664), with CRLF line terminators
Hash a612f43ac7a772299cd22ae00fe4b155
63bd384f651a4b40e9455dbc7994eb60f9029329
7e921853f362fcf37da6f2eb321fd8934d0106ee76d1e0af3741089580410257
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/simple-keyboard.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 20223
Date: Sun, 26 Nov 2023 17:17:06 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440377; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/modules.28e3191d8757c557b4b7.js.descarga
200 OK 232 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/modules.28e3191d8757c557b4b7.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (65450)
Size 232 kB (232178 bytes)
Hash 73f0d23092ee09d9630c98baf5db04ad
92ac4b50d42c8babc5d217b3ae0544cee31b1f37
77a17bd55486aef26d2fbbe92b56672398378b1ad7ba7975c79742b4772d52b1
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/modules.28e3191d8757c557b4b7.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 232178
Date: Sun, 26 Nov 2023 17:17:05 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440378; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/ad1a29c5.js.descarga
200 OK 796 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/ad1a29c5.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (62720), with CRLF, LF line terminators
Size 796 kB (795703 bytes)
Hash 0bd05d53df5901a841a2a8e8a0144927
f4a51c3ec979bce7d403467a80c06b8ee34299a4
d617b2ed166c6f6077f17c914df68f4e3baf32001bcfb4ec4efc796155c4dd79
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/ad1a29c5.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 795703
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/eluminate.js.descarga
200 OK 155 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/eluminate.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (65268), with CRLF line terminators
Size 155 kB (154804 bytes)
Hash 82754229ae2b4d08d206919834f63ada
61a96975ba7b7ab8b52f11c6d75075029b1a0927
fb8a87578d53d4e1796baa4871baa10872f23b846aa4f2f4070a7a4828c66497
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /iindex_files/eluminate.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 154804
Date: Sun, 26 Nov 2023 17:17:06 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440377; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/iindex_files/f(1).txt
200 OK 51 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/f(1).txt
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (3258)
Hash 5e4696e49e700e8dc5240339a1044845
214b7b292dc311df1bc122f02dc7c26b9046a32d
e3cff4209a6680ff5f33ddd55bbe904beeb1cc8483bebd0072452fcb2f901c06
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/f(1).txt HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 51345
Content-Type: text/plain; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:06 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440377; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/default.min.css
200 OK 1.2 MB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/default.min.css
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.2 MB (1248903 bytes)
Hash a8957208ede7f6603c54123655bb3d2f
2793f2ca64a0ea4e5eb509c71f888c584a6eb801
bf4932d857490d7fe4fa4e7af711972adf2dbb48075ed371a7fb033587887258
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/default.min.css HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1248903
Content-Type: text/css; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:03 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440380; includeSubDomains
www.googletagmanager.com/gtm.js?id=GTM-M6B9RZQ>m_auth=En2Tx4QzRBluIcijUPWN-w>m_preview=env-2>m_cookies_win=x
200 OK 143 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M6B9RZQ>m_auth=En2Tx4QzRBluIcijUPWN-w>m_preview=env-2>m_cookies_win=x
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (65316)
Size 143 kB (142646 bytes)
Hash 3a69a9a75831d9837d6d4cc782b889da
61c13439e5e61ed64cc2a5a3a7b5ad7569de6376
ece02d4268d99c7c48189c421503c602452a32ff967e00e4aad0d4bda376d95c
GET /gtm.js?id=GTM-M6B9RZQ>m_auth=En2Tx4QzRBluIcijUPWN-w>m_preview=env-2>m_cookies_win=x HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: gzip
vary: *
date: Sun, 26 Nov 2023 17:17:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 142646
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ggg55.simplestate.repl.co/images/default/logo.svg
404 Not Found 556 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/images/default/logo.svg
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b6ddaf6e005cc5a4bbf7dba238d75937
aaf2d71a287a0403a54de12c091a9a3d11d212b7
4957933f2bd1cc8e1411c346825d64b6af5dfbb8f306efa619175bdd856a4714
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /images/default/logo.svg HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.3.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 556
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/Content/fonts/galicia-ui.ttf?8esgb8
404 Not Found 568 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/galicia-ui.ttf?8esgb8
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 58c2e0bbe57fa5d7bd313410caefb952
e90e198dc4ab392ab2dd23414c21215b81e5d92d
b882e713f03501ddccc54ebdcbaecee8e0e0fba24ff80a9646044cc29c5ba8ee
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/galicia-ui.ttf?8esgb8 HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.3.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 568
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
gal.bgsensors.co/api/wb/b3f76076-f760-49d8-ab30-437b9b182ac7/60a375cb-568d-41f6-a2d9-0e5d6c6ad549/1244/?rfr=&hash=&dom=ggg55.simplestate.repl.co&href=https://ggg55.simplestate.repl.co/
200 OK 67 B URL GET HTTP/2 gal.bgsensors.co/api/wb/b3f76076-f760-49d8-ab30-437b9b182ac7/60a375cb-568d-41f6-a2d9-0e5d6c6ad549/1244/?rfr=&hash=&dom=ggg55.simplestate.repl.co&href=https://ggg55.simplestate.repl.co/
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subject*.bgsensors.co
Fingerprint7C:A9:E7:28:31:55:2B:0D:A2:10:8D:53:9F:59:84:4F:62:70:8F:0D
ValidityFri, 06 Oct 2023 02:49:44 GMT - Thu, 04 Jan 2024 02:49:43 GMT
File type PNG image data, 1 x 1, 1-bit grayscale, non-interlaced\012- data
Hash 06707af2ef27f407df4958d3abf2a9f7
874a600942cc18a6c71a96ee2e19fecd42886bfb
089ad5bf4831b6758e9907db43bc5ebba2e9248a9929dad6132c49932e538278
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
GET /api/wb/b3f76076-f760-49d8-ab30-437b9b182ac7/60a375cb-568d-41f6-a2d9-0e5d6c6ad549/1244/?rfr=&hash=&dom=ggg55.simplestate.repl.co&href=https://ggg55.simplestate.repl.co/ HTTP/1.1
Host: gal.bgsensors.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 17:17:07 GMT
content-type: image/png
content-length: 67
x-frame-options: SAMEORIGIN
vary: Accept-Language,Cookie,Origin
content-language: en
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z58zfaXZ5E5zZrarXdqza%2FSkIh8Gkb3g%2FwxTiPJIQds9yFDlCzl781ggPrprbRs%2By38xpOglPfi2u9Uh%2BXYdNYh3w2KfdjOzY7HSzdqbMD2wvPVNd87QRlkwOq4C8PGSeU0v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c3c878ec4e56ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ggg55.simplestate.repl.co/Content/fonts/Inter-Regular.woff2
404 Not Found 566 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/Inter-Regular.woff2
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dc341220dcc2f5080af43f87ecce7393
d442a54eb912c602db97d0cced1c4e8f4d8b35e5
aae6af03e586040e21df8b08464500d604e214afcb73a7935d6fe096fd2bbb31
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/Inter-Regular.woff2 HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.3.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 566
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/logogalicia.html
200 OK 5.2 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/logogalicia.html
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bed63276851798fc1fe0c7116149e46e
f5368038f3adfbd1101a998d908522b5b8b41349
6ad4bd0891e06c1cd7d7c56119b95a9c125c528605b223cb3d854f3121cc43e3
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/logogalicia.html HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.3.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 5238
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/Content/fonts/fontawesome-webfont.woff2
404 Not Found 572 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/fontawesome-webfont.woff2
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3938e8fc5bf391880292ec8b0be7be04
2154a5a7ce69b80a78ff66a39ca646bdbea66bc1
023ba0f15c223d6987e8d10220f5e8e102eb67a891a53f23a4b205bc85bf8492
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.3.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 572
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/iindex_files/dest5.html
200 OK 7.1 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/dest5.html
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash 335580440d594480e146eab15e4f992e
f3a35ec673a9e57dadfdf0f5b08db9d07a752e1f
460f57e490fecc4bcbf5c93e1e54821e1f34eba7975c8373e114c8c8580fa071
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/dest5.html HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.3.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 7113
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/launch-121f57795303.min.js
200 OK 88 kB URL GET HTTP/2 assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/launch-121f57795303.min.js
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32749)
Hash 966ff920f29d2ed30b7391f1b6570ac2
a219d97bb2b9702a84f404e1f7b05ff640e99667
a2c32bed5840fed0ad32ff8728bc853def8a6d681eb8f779643bf168f6f06f3b
GET /87fc8b53a8b1/118d2b304f55/launch-121f57795303.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "966ff920f29d2ed30b7391f1b6570ac2:1683572444.025424"
last-modified: Mon, 08 May 2023 19:00:44 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 88183
cache-control: max-age=3600
expires: Sun, 26 Nov 2023 18:17:07 GMT
date: Sun, 26 Nov 2023 17:17:07 GMT
access-control-allow-origin: https://ggg55.simplestate.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2
ggg55.simplestate.repl.co/iindex_files/launch-121f57795303.min.js.descarga
200 OK 276 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/launch-121f57795303.min.js.descarga
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type ASCII text, with very long lines (32749)
Size 276 kB (276199 bytes)
Hash 966ff920f29d2ed30b7391f1b6570ac2
a219d97bb2b9702a84f404e1f7b05ff640e99667
a2c32bed5840fed0ad32ff8728bc853def8a6d681eb8f779643bf168f6f06f3b
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/launch-121f57795303.min.js.descarga HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.3.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 276199
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
Content-Type: text/plain; charset=utf-8
ggg55.simplestate.repl.co/Content/fonts/fontawesome-webfont.woff
404 Not Found 571 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/fontawesome-webfont.woff
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e02c3f958180ef7ffc4180aba3e08b58
ae93bae83c7ae42b7dc643878347417b7c700934
4b57d445b854cc2a9b8e64c14f686ce7342684bf527c27846b474ae5f68abdeb
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/fontawesome-webfont.woff HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.1.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/; AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=179643557%7CMCIDTS%7C19688%7CMCMID%7C85013074796906982004858993613707423755%7CvVersion%7C5.5.0; _ga_NK1ZTDWVWL=GS1.1.1701019030.1.0.1701019030.60.0.0; _ga_R462ZWFJX5=GS1.1.1701019030.1.0.1701019030.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 571
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/Content/fonts/galicia-ui.woff?8esgb8
404 Not Found 569 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/galicia-ui.woff?8esgb8
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7896fefede0c9b2e59bf0dbc9de98f3e
7238934fd2d3dd4e2db38c561cfc5601a3b2698c
37f565c92c8d3a1c163957aee0c402ee9b7a8d81d5b04bc71d7debd88d573c2e
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/galicia-ui.woff?8esgb8 HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.1.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/; AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=179643557%7CMCIDTS%7C19688%7CvVersion%7C5.5.0; _ga_NK1ZTDWVWL=GS1.1.1701019030.1.0.1701019030.60.0.0; _ga_R462ZWFJX5=GS1.1.1701019030.1.0.1701019030.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 569
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/Scripts/eluminate.js
404 Not Found 553 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Scripts/eluminate.js
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 39977b0c0b0a8ee720733d5a6b8837a6
1b2631e73689e751bbfa577a6c9ae1f4df486308
29a965f6a5870b3fbb2e0cd1fd9ee0441387aff1a338af7645c790734e278240
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
OpenPhish phishing Banco Galicia
GET /Scripts/eluminate.js HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.1.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/; AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=179643557%7CMCIDTS%7C19688%7CvVersion%7C5.5.0; _ga_NK1ZTDWVWL=GS1.1.1701019030.1.0.1701019030.60.0.0; _ga_R462ZWFJX5=GS1.1.1701019030.1.0.1701019030.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 553
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/Content/fonts/Inter-Regular.woff
404 Not Found 565 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/Inter-Regular.woff
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1fcc2dd07e9f796191954a3a4d88d590
9353b1dc9f8bb6caa59da95e163da066f908f04a
1c4c7eac5a71c476435280d15aa5f7b71b6d8ea063c1f456f3b58b718509983f
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/Inter-Regular.woff HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.1.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/; AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=179643557%7CMCIDTS%7C19688%7CvVersion%7C5.5.0; _ga_NK1ZTDWVWL=GS1.1.1701019030.1.0.1701019030.60.0.0; _ga_R462ZWFJX5=GS1.1.1701019030.1.0.1701019030.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 565
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/Content/fonts/fontawesome-webfont.ttf
404 Not Found 570 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/fontawesome-webfont.ttf
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash df46422d0202a539a471b93d3d1466bd
730865c810c9852bc952a6bdafb98e1ace7f5a1e
0ecc5d073d8510ec6ee153276e6532a8f930d9cdf752d7b0af9ab2035c63fb6f
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/fontawesome-webfont.ttf HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.1.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/; AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=179643557%7CMCIDTS%7C19688%7CMCMID%7C85013074796906982004858993613707423755%7CMCOPTOUT-1701026231s%7CNONE%7CvVersion%7C5.5.0; _ga_NK1ZTDWVWL=GS1.1.1701019030.1.0.1701019030.60.0.0; _ga_R462ZWFJX5=GS1.1.1701019030.1.0.1701019030.0.0.0; AMCVS_DF3360B65E15FFB70A495C4A%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 570
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:07 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RC66fa2a34a0a9451089445bfcda97f3fc-source.min.js
200 OK 543 B URL GET HTTP/2 assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RC66fa2a34a0a9451089445bfcda97f3fc-source.min.js
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (864)
Hash badb81fb55c7af8017b86a6921d54b15
d1e6d2db1749eee0b910bb2a819377213b6ca629
cc4cf80e5154288e27d526b74c7d9b12b4d343e016dd0ccb65518b0d15f7b0f7
GET /87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RC66fa2a34a0a9451089445bfcda97f3fc-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c21ed28776cae49f6f75eeeb64c8ef02:1683572444.875534"
last-modified: Mon, 08 May 2023 19:00:44 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 543
cache-control: max-age=3600
expires: Sun, 26 Nov 2023 18:17:07 GMT
date: Sun, 26 Nov 2023 17:17:07 GMT
access-control-allow-origin: https://ggg55.simplestate.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RC1699ac92c9d8400891bfa4b6e7a932be-source.min.js
200 OK 356 B URL GET HTTP/2 assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RC1699ac92c9d8400891bfa4b6e7a932be-source.min.js
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (433)
Hash 4b49a908e03544ef3e4a57c4db091aae
ed045d3aeb8df70b6f5587b00386b897f3a0b0d2
df987e21da23e13ef071bd4b0be5b837d67a9bbf0f3716d30d600138d613d3ff
GET /87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RC1699ac92c9d8400891bfa4b6e7a932be-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c21ed28776cae49f6f75eeeb64c8ef02:1683572444.875534"
last-modified: Mon, 08 May 2023 19:00:44 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 356
cache-control: max-age=3600
expires: Sun, 26 Nov 2023 18:17:08 GMT
date: Sun, 26 Nov 2023 17:17:08 GMT
access-control-allow-origin: https://ggg55.simplestate.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RCa6a6f4ccacd34f08a039964c04e81646-source.min.js
200 OK 220 B URL GET HTTP/2 assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RCa6a6f4ccacd34f08a039964c04e81646-source.min.js
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash ace734f8666cc629135a45654e3c03b9
c68132e1cfd283f3eccc71ed0e4279440e607257
496aab6e593239f4df30f339227a5e8f21c19b5dc6aefd1ffee619a90e744f5b
GET /87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RCa6a6f4ccacd34f08a039964c04e81646-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c21ed28776cae49f6f75eeeb64c8ef02:1683572444.875534"
last-modified: Mon, 08 May 2023 19:00:44 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 220
cache-control: max-age=3600
expires: Sun, 26 Nov 2023 18:17:08 GMT
date: Sun, 26 Nov 2023 17:17:08 GMT
access-control-allow-origin: https://ggg55.simplestate.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2
wup-ad1a29c5.us.v2.we-stats.com/client/v3.1/web/wup?cid=gamora
200 OK 609 B URL POST HTTP/2 wup-ad1a29c5.us.v2.we-stats.com/client/v3.1/web/wup?cid=gamora
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoDaddy.com, Inc.
Subject*.us.v2.we-stats.com
Fingerprint92:3F:49:C7:68:63:84:E4:9C:88:00:7F:F5:BD:A6:40:37:54:9C:9A
ValidityThu, 29 Jun 2023 18:52:04 GMT - Tue, 30 Jul 2024 18:52:04 GMT
File type JSON data\012- , ASCII text, with very long lines (609), with no line terminators
Hash 1f67d7b72fd14556311dfd1607c5ba94
b4434dd123d578b9e6019d3f68c6fee6661ced1b
68e9c49c27b10f662ae5356cd94d3da7cd41d8617dc41647af60318100f6d345
POST /client/v3.1/web/wup?cid=gamora HTTP/1.1
Host: wup-ad1a29c5.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 609
date: Sun, 26 Nov 2023 17:17:07 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 6e5dc584-212f-4e5d-a564-4d8a6ebc432e
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RCb36db8e494f24d869aef5b3f3bd32cf0-source.min.js
200 OK 258 B URL GET HTTP/2 assets.adobedtm.com/87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RCb36db8e494f24d869aef5b3f3bd32cf0-source.min.js
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash 0312e7492e576d6fc99b42ee44f722fa
776588ba5c029c424f923797016f21eacbe5b729
6f3b5a87e9762b17f9577bb0df9488b03061232d6f11bc7b70e9c0a2dada23c4
GET /87fc8b53a8b1/118d2b304f55/0e1c1ad17111/RCb36db8e494f24d869aef5b3f3bd32cf0-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "c21ed28776cae49f6f75eeeb64c8ef02:1683572444.875534"
last-modified: Mon, 08 May 2023 19:00:44 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 258
cache-control: max-age=3600
expires: Sun, 26 Nov 2023 18:17:08 GMT
date: Sun, 26 Nov 2023 17:17:08 GMT
access-control-allow-origin: https://ggg55.simplestate.repl.co
timing-allow-origin: *
X-Firefox-Spdy: h2
ggg55.simplestate.repl.co/iindex_files/saved_resource.html
200 OK 149 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/saved_resource.html
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3c2ccda97c47ede0b1c91b11efd575ea
0a348c4b61c961aba7618f909beb87f740a81983
97f9b10039b05e1af4a3c9b778fc72ba44cf68a376e4ec1d55f2558f16cf3e50
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/saved_resource.html HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.1.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/; AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=179643557%7CMCIDTS%7C19688%7CMCMID%7C85013074796906982004858993613707423755%7CMCOPTOUT-1701026231s%7CNONE%7CvVersion%7C5.5.0; _ga_NK1ZTDWVWL=GS1.1.1701019030.1.0.1701019030.60.0.0; _ga_R462ZWFJX5=GS1.1.1701019030.1.0.1701019030.0.0.0; AMCVS_DF3360B65E15FFB70A495C4A%40AdobeOrg=1; cmTPSet=Y
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 149
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:08 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440376; includeSubDomains
ggg55.simplestate.repl.co/Content/fonts/Inter-Regular.ttf
404 Not Found 564 B URL GET HTTP/1.1 ggg55.simplestate.repl.co/Content/fonts/Inter-Regular.ttf
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e9a104cd6498b200a1ebc9657753e31d
8a6b6bc18dfb88a07fd14bf783bd25e38e59798e
86e0bca725da0fe475b390b6fe6b4a53d9aa051dcd189920673429e7af1e04b5
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /Content/fonts/Inter-Regular.ttf HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/iindex_files/default.min.css
Cookie: cdContextId=1; bmuid=1701019030540-E535FEAE-0136-4281-A2DF-CDBFE8820AB7; _ga=GA1.1.1808331885.1701019031; _gid=GA1.3.1515698308.1701019031; _dc_gtm_UA-62726172-14=1; onb2_isreload=false; onb2_prevpath=/; AMCV_DF3360B65E15FFB70A495C4A%40AdobeOrg=179643557%7CMCIDTS%7C19688%7CMCMID%7C85013074796906982004858993613707423755%7CMCOPTOUT-1701026231s%7CNONE%7CvVersion%7C5.5.0; _ga_NK1ZTDWVWL=GS1.1.1701019030.1.0.1701019030.60.0.0; _ga_R462ZWFJX5=GS1.1.1701019030.1.0.1701019030.0.0.0; AMCVS_DF3360B65E15FFB70A495C4A%40AdobeOrg=1; cmTPSet=Y
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 564
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:08 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440375; includeSubDomains
logo.prismasystems.com.ar/db_carga5.php
200 OK 2 B URL POST HTTP/1.1 logo.prismasystems.com.ar/db_carga5.php
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectlogo.prismasystems.com.ar
Fingerprint77:D9:9D:10:16:4E:7E:FC:8D:98:74:21:B9:00:E6:D3:AB:AA:F5:C2
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 18 Oct 2024 23:59:59 GMT
Hash e1c06d85ae7b8b032bef47e42e4c08f9
71853c6197a6a7f222db0f1978c7cb232b87c5ee
75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
POST /db_carga5.php HTTP/1.1
Host: logo.prismasystems.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 213
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 17:17:08 GMT
Server: Apache/2.4.56 (Amazon) OpenSSL/1.0.2k-fips PHP/7.3.30
X-Powered-By: PHP/7.3.30
Set-Cookie: PHPSESSID=t0hettptrs41ok0pi0j98efc2s; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 2
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
analytics.google.com/g/collect?v=2&tid=G-NK1ZTDWVWL>m=45je3b81v879611137z877028928&_p=1701019030548&_gaz=1&gcd=11l1l1l1l1&dma=0&cid=1808331885.1701019031&ul=en-us&sr=1280x1024&_s=1&dt=Ingreso&dl=https%3A%2F%2Fggg55.simplestate.repl.co%2F&dp=%2F&sid=1701019030&sct=1&seg=0&en=page_view&_fv=1&_ss=2&tfd=5615
204 No Content 0 B URL POST HTTP/2 analytics.google.com/g/collect?v=2&tid=G-NK1ZTDWVWL>m=45je3b81v879611137z877028928&_p=1701019030548&_gaz=1&gcd=11l1l1l1l1&dma=0&cid=1808331885.1701019031&ul=en-us&sr=1280x1024&_s=1&dt=Ingreso&dl=https%3A%2F%2Fggg55.simplestate.repl.co%2F&dp=%2F&sid=1701019030&sct=1&seg=0&en=page_view&_fv=1&_ss=2&tfd=5615
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NK1ZTDWVWL>m=45je3b81v879611137z877028928&_p=1701019030548&_gaz=1&gcd=11l1l1l1l1&dma=0&cid=1808331885.1701019031&ul=en-us&sr=1280x1024&_s=1&dt=Ingreso&dl=https%3A%2F%2Fggg55.simplestate.repl.co%2F&dp=%2F&sid=1701019030&sct=1&seg=0&en=page_view&_fv=1&_ss=2&tfd=5615 HTTP/1.1
Host: analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ggg55.simplestate.repl.co
date: Sun, 26 Nov 2023 17:17:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com.ar/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NK1ZTDWVWL&cid=1808331885.1701019031>m=45je3b81v879611137z877028928&aip=1&dma=0&gcd=11l1l1l1l1&z=1131418288
200 OK 42 B URL GET HTTP/2 www.google.com.ar/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NK1ZTDWVWL&cid=1808331885.1701019031>m=45je3b81v879611137z877028928&aip=1&dma=0&gcd=11l1l1l1l1&z=1131418288
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com.ar
Fingerprint76:9E:FD:5A:09:1F:88:60:89:3C:F6:1A:5E:C3:93:82:D6:D1:9A:E5
ValidityMon, 23 Oct 2023 11:26:29 GMT - Mon, 15 Jan 2024 11:26:28 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NK1ZTDWVWL&cid=1808331885.1701019031>m=45je3b81v879611137z877028928&aip=1&dma=0&gcd=11l1l1l1l1&z=1131418288 HTTP/1.1
Host: www.google.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 26 Nov 2023 17:17:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com.ar/pagead/1p-user-list/936934836/?random=1700930112675&cv=9&fst=1700928000000&num=1&guid=ON&eid=375603261%2C466465925%2C512247839&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_his=11&u_tz=-360&u_java=false&u_nplug=5&u_nmime=2&sendb=1&frm=0&url=https%3A%2F%2Fonlinebanking.bancogalicia.com.ar%2Flogin&ref=https%3A%2F%2Fwww.galicia.ar%2F&tiba=Online%20Banking&fmt=3&is_vtc=1&cid=CAQSKQDICaaNNabP5kyZnoB_3Cnu4TGP9m8ViIZjolxQbT54J69BXdKoxzg_&random=4035246800&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL GET HTTP/2 www.google.com.ar/pagead/1p-user-list/936934836/?random=1700930112675&cv=9&fst=1700928000000&num=1&guid=ON&eid=375603261%2C466465925%2C512247839&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_his=11&u_tz=-360&u_java=false&u_nplug=5&u_nmime=2&sendb=1&frm=0&url=https%3A%2F%2Fonlinebanking.bancogalicia.com.ar%2Flogin&ref=https%3A%2F%2Fwww.galicia.ar%2F&tiba=Online%20Banking&fmt=3&is_vtc=1&cid=CAQSKQDICaaNNabP5kyZnoB_3Cnu4TGP9m8ViIZjolxQbT54J69BXdKoxzg_&random=4035246800&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com.ar
Fingerprint76:9E:FD:5A:09:1F:88:60:89:3C:F6:1A:5E:C3:93:82:D6:D1:9A:E5
ValidityMon, 23 Oct 2023 11:26:29 GMT - Mon, 15 Jan 2024 11:26:28 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/936934836/?random=1700930112675&cv=9&fst=1700928000000&num=1&guid=ON&eid=375603261%2C466465925%2C512247839&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_his=11&u_tz=-360&u_java=false&u_nplug=5&u_nmime=2&sendb=1&frm=0&url=https%3A%2F%2Fonlinebanking.bancogalicia.com.ar%2Flogin&ref=https%3A%2F%2Fwww.galicia.ar%2F&tiba=Online%20Banking&fmt=3&is_vtc=1&cid=CAQSKQDICaaNNabP5kyZnoB_3Cnu4TGP9m8ViIZjolxQbT54J69BXdKoxzg_&random=4035246800&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 26 Nov 2023 17:17:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/936934836/?random=1700930112675&cv=9&fst=1700928000000&num=1&guid=ON&eid=375603261%2C466465925%2C512247839&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_his=11&u_tz=-360&u_java=false&u_nplug=5&u_nmime=2&sendb=1&frm=0&url=https%3A%2F%2Fonlinebanking.bancogalicia.com.ar%2Flogin&ref=https%3A%2F%2Fwww.galicia.ar%2F&tiba=Online%20Banking&fmt=3&is_vtc=1&cid=CAQSKQDICaaNNabP5kyZnoB_3Cnu4TGP9m8ViIZjolxQbT54J69BXdKoxzg_&random=4035246800&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
200 OK 42 B URL GET HTTP/2 www.google.com/pagead/1p-user-list/936934836/?random=1700930112675&cv=9&fst=1700928000000&num=1&guid=ON&eid=375603261%2C466465925%2C512247839&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_his=11&u_tz=-360&u_java=false&u_nplug=5&u_nmime=2&sendb=1&frm=0&url=https%3A%2F%2Fonlinebanking.bancogalicia.com.ar%2Flogin&ref=https%3A%2F%2Fwww.galicia.ar%2F&tiba=Online%20Banking&fmt=3&is_vtc=1&cid=CAQSKQDICaaNNabP5kyZnoB_3Cnu4TGP9m8ViIZjolxQbT54J69BXdKoxzg_&random=4035246800&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/936934836/?random=1700930112675&cv=9&fst=1700928000000&num=1&guid=ON&eid=375603261%2C466465925%2C512247839&u_h=720&u_w=1280&u_ah=680&u_aw=1280&u_cd=24&u_his=11&u_tz=-360&u_java=false&u_nplug=5&u_nmime=2&sendb=1&frm=0&url=https%3A%2F%2Fonlinebanking.bancogalicia.com.ar%2Flogin&ref=https%3A%2F%2Fwww.galicia.ar%2F&tiba=Online%20Banking&fmt=3&is_vtc=1&cid=CAQSKQDICaaNNabP5kyZnoB_3Cnu4TGP9m8ViIZjolxQbT54J69BXdKoxzg_&random=4035246800&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 26 Nov 2023 17:17:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sifo.bancogalicia.com.ar/requestserver/script/v1/be34xe/login.js?clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
200 145 kB URL GET HTTP/1.1 sifo.bancogalicia.com.ar/requestserver/script/v1/be34xe/login.js?clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectsifo.bancogalicia.com.ar
Fingerprint2A:06:ED:39:AD:DE:39:C2:98:A7:C8:7B:6E:19:09:6C:27:62:A6:DB
ValidityWed, 22 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (938)
Size 145 kB (144678 bytes)
Hash 995e63148e893ff870bbce06c698cda3
ec09ea137db853d5cb0deef7c6c480a607545673
1c774ae39467c3d6c64e656ea11b665eeed255d518caad4467ddaf398d491853
GET /requestserver/script/v1/be34xe/login.js?clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61 HTTP/1.1
Host: sifo.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Sun, 26 Nov 2023 17:17:08 GMT
Content-Type: application/javascript
Content-Length: 144678
Connection: keep-alive
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff
www.galicia.ar/content/dam/galicia/banco-galicia/personas/canales/onb/ONBGallery/obras-viejas/IMG%201%20CON%20BORDES.jpg
200 OK 134 kB URL GET HTTP/2 www.galicia.ar/content/dam/galicia/banco-galicia/personas/canales/onb/ONBGallery/obras-viejas/IMG%201%20CON%20BORDES.jpg
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectwww.galicia.ar
Fingerprint88:40:8E:39:C0:65:85:02:4A:FF:EB:D4:D2:8E:9B:50:B8:5B:F5:6C
ValidityThu, 09 Mar 2023 00:00:00 GMT - Fri, 08 Mar 2024 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 1000x1309, components 3\012- data
Size 134 kB (134420 bytes)
Hash 017f1b2de9b867ff63a0d419358fb326
ca76a2165e81e1369e16c417eeb2fc873db8d5eb
9566bd22b002f8925892378afd07b8a157c137e71aa5f7b233a06dd092876485
GET /content/dam/galicia/banco-galicia/personas/canales/onb/ONBGallery/obras-viejas/IMG%201%20CON%20BORDES.jpg HTTP/1.1
Host: www.galicia.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Mon, 30 Oct 2023 19:17:25 GMT
etag: "0x8DBD97CD9C6A926"
access-control-allow-origin: *
cache-control: max-age=7200,s-maxage=86400,stale-while-revalidate=43200,stale-if-error=43200
content-security-policy: object-src 'none' ;style-src 'self' 'unsafe-inline' https://*.bancogalicia.com.ar https://*.hotjar.com https://*.galicia.ar https://maps.googleapis.com https://*.nera-agro.com https://fonts.googleapis.com https://maps.gstatic.com https://fonts.googleapis.com ;connect-src 'self' 'unsafe-inline' 'unsafe-eval' https://cm.everesttech.net https://assets.adobedtm.com https://*.demdex.net https://*.omtrdc.net https://*.bancogalicia.com.ar https://*.galicia.ar https://www.googleapis.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://maps.googleapis.com https://*.nera-agro.com https://maps.gstatic.com ;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cm.everesttech.net https://assets.adobedtm.com https://*.2o7.net https://*.demdex.net https://*.omtrdc.net https://*.sc.omtrdc.net https://*.tt.omtrdc.net https://*.adobedtm.com https://*.adobeaemcloud.com https://*.bancogalicia.com.ar https://*.galicia.ar https://*.adobeaemcloud.com https://www.google.com/recaptcha/ https://maps.googleapis.com https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com/recaptcha/ https://maps.gstatic.com https://*.hotjar.com https://*.nera-agro.com https://www.facebook.com https://*.facebook.net ;img-src 'self' data: https://cm.everesttech.net https://assets.adobedtm.com https://*.demdex.net https://*.bancogalicia.com.ar https://*.galicia.ar https://i.ytimg.com https://*.bancogalicia.com https://*.hotjar.com https://maps.googleapis.com https://*.nera-agro.com https://maps.gstatic.com https://www.facebook.com https://*.facebook.net https://googleads.g.doubleclick.net https://www.google.com https://www.google.com.br ;frame-src 'self' https://*.demdex.net https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/ https://www.youtube.com/ https://*.bancogalicia.com.ar/ https://*.galicia.ar https://*.hotjar.com https://maps.googleapis.com https://*.nera-agro.com https://maps.gstatic.com ;frame-ancestors 'self' https://*.bancogalicia.com.ar ;font-src 'self' data: https://*.bancogalicia.com.ar https://*.galicia.ar https://*.hotjar.com https://maps.googleapis.com https://*.nera-agro.com https://maps.gstatic.com https://fonts.gstatic.com https://fonts.googleapis.com
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-disposition: inline
permissions-policy: geolocation=(self "https://*.adobeaemcloud.com\ https://*.bancogalicia.com.ar\ https://*.galicia.ar")
referrer-policy: strict-origin-when-cross-origin
x-vhost: galiciapublish
accept-ranges: bytes
date: Sun, 26 Nov 2023 17:17:08 GMT
age: 10103
strict-transport-security: max-age=31557600
x-served-by: cache-eze2230058-EZE
x-cache: HIT
x-timer: S1701019028.194176,VS0,VS0,VE0
content-length: 134420
X-Firefox-Spdy: h2
sifo.bancogalicia.com.ar/requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
200 0 B URL POST HTTP/1.1 sifo.bancogalicia.com.ar/requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectsifo.bancogalicia.com.ar
Fingerprint2A:06:ED:39:AD:DE:39:C2:98:A7:C8:7B:6E:19:09:6C:27:62:A6:DB
ValidityWed, 22 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61 HTTP/1.1
Host: sifo.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ggg55.simplestate.repl.co/
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Sun, 26 Nov 2023 17:17:09 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://ggg55.simplestate.repl.co
access-control-allow-methods: POST, OPTIONS
access-control-max-age: 3600
access-control-allow-headers: x-requested-with, content-type
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff
sifo.bancogalicia.com.ar/requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
200 115 B URL POST HTTP/1.1 sifo.bancogalicia.com.ar/requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectsifo.bancogalicia.com.ar
Fingerprint2A:06:ED:39:AD:DE:39:C2:98:A7:C8:7B:6E:19:09:6C:27:62:A6:DB
ValidityWed, 22 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 41b8c417a1ab4e514a2626c6fd7d7aeb
8a2d3e9a376e2e2845d3f6ad7fac2dd3ee949ce2
d27fa8b30ecfd8ac672b815e8b7f7618a66ead46aeba89499dc28c3ae8919640
POST /requestserver/rest/v1/pageFeatures?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61 HTTP/1.1
Host: sifo.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 25166
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Sun, 26 Nov 2023 17:17:09 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://ggg55.simplestate.repl.co
access-control-allow-methods: POST, OPTIONS
access-control-max-age: 3600
access-control-allow-headers: x-requested-with, content-type
p3p: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
set-cookie: herok=2886860804al3QaBYoxM8uuAzYXl94S95IAb6Oyg; Expires=Sun, 26-Nov-2023 17:47:09 GMT; SameSite=None; Secure
kirby=2886860804al3QaBYoxM8uuAzYXl94S95IAb6Oyg; SameSite=None; Secure
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff
sifo.bancogalicia.com.ar/requestserver/rest/v1/screenshot?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
200 0 B URL POST HTTP/1.1 sifo.bancogalicia.com.ar/requestserver/rest/v1/screenshot?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectsifo.bancogalicia.com.ar
Fingerprint2A:06:ED:39:AD:DE:39:C2:98:A7:C8:7B:6E:19:09:6C:27:62:A6:DB
ValidityWed, 22 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /requestserver/rest/v1/screenshot?sessionId=x&clientId=4f610b72-bc0d-4cb6-9bca-9142006dfa61 HTTP/1.1
Host: sifo.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------2362215023146666969501606552
Content-Length: 115758
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Cookie: herok=2886860804al3QaBYoxM8uuAzYXl94S95IAb6Oyg; kirby=2886860804al3QaBYoxM8uuAzYXl94S95IAb6Oyg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Sun, 26 Nov 2023 17:17:09 GMT
Content-Length: 0
Connection: keep-alive
access-control-allow-credentials: true
access-control-allow-origin: https://ggg55.simplestate.repl.co
access-control-allow-methods: POST, OPTIONS
access-control-max-age: 3600
access-control-allow-headers: x-requested-with, content-type
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: no-referrer-when-downgrade
content-security-policy: script-src 'self'
permissions-policy: fullscreen=();microphone=();camera=();speaker=();
x-xss-protection: 1;mode=block
x-frame-options: DENY
x-content-type-options: nosniff
onlinebanking.bancogalicia.com.ar/images/assets/logo_ios_152x152.png
200 OK 3.7 kB URL GET HTTP/1.1 onlinebanking.bancogalicia.com.ar/images/assets/logo_ios_152x152.png
IP
ASN #13474 Banco de Galicia y Buenos Aires
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectonlinebanking.bancogalicia.com.ar
Fingerprint45:8D:B8:44:DA:8F:A9:26:71:75:AF:65:7D:A2:C7:B7:15:C8:6C:9E
ValidityTue, 19 Sep 2023 00:00:00 GMT - Wed, 18 Sep 2024 23:59:59 GMT
File type PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Hash 44833eb3871f5915ed3b03557937c593
6a2c0daa8577d261dc4f3fa8864a0bd00f3262e3
516214aaaf58a361362c9abf9818810f7e34358ed54aacb3c8450128754f900a
GET /images/assets/logo_ios_152x152.png HTTP/1.1
Host: onlinebanking.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 15 Nov 2023 14:27:04 GMT
Accept-Ranges: bytes
ETag: "40303acecf17da1:0"
Date: Sun, 26 Nov 2023 17:17:08 GMT
Content-Length: 3728
onlinebanking.bancogalicia.com.ar/Images/favicon.ico
200 OK 1.6 kB URL GET HTTP/1.1 onlinebanking.bancogalicia.com.ar/Images/favicon.ico
IP
ASN #13474 Banco de Galicia y Buenos Aires
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectonlinebanking.bancogalicia.com.ar
Fingerprint45:8D:B8:44:DA:8F:A9:26:71:75:AF:65:7D:A2:C7:B7:15:C8:6C:9E
ValidityTue, 19 Sep 2023 00:00:00 GMT - Wed, 18 Sep 2024 23:59:59 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash b700b544f2fa87e37e6b728fef00fcb0
c0735fa743392c2f3032c22d241854b88832cdb7
f20a33fd40173f122bec15a105374059fb3ec612d51146485ed84ef0001f2f03
GET /Images/favicon.ico HTTP/1.1
Host: onlinebanking.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Wed, 15 Nov 2023 14:27:03 GMT
Accept-Ranges: bytes
ETag: "e0b295cdcf17da1:0"
Date: Sun, 26 Nov 2023 17:17:08 GMT
Content-Length: 1559
onlinebanking.bancogalicia.com.ar/images/assets/logo_ios_152x152.png
200 OK 3.7 kB URL GET HTTP/1.1 onlinebanking.bancogalicia.com.ar/images/assets/logo_ios_152x152.png
IP
ASN #13474 Banco de Galicia y Buenos Aires
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectonlinebanking.bancogalicia.com.ar
Fingerprint45:8D:B8:44:DA:8F:A9:26:71:75:AF:65:7D:A2:C7:B7:15:C8:6C:9E
ValidityTue, 19 Sep 2023 00:00:00 GMT - Wed, 18 Sep 2024 23:59:59 GMT
File type PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Hash 44833eb3871f5915ed3b03557937c593
6a2c0daa8577d261dc4f3fa8864a0bd00f3262e3
516214aaaf58a361362c9abf9818810f7e34358ed54aacb3c8450128754f900a
GET /images/assets/logo_ios_152x152.png HTTP/1.1
Host: onlinebanking.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 15 Nov 2023 14:27:04 GMT
Accept-Ranges: bytes
ETag: "40303acecf17da1:0"
Date: Sun, 26 Nov 2023 17:17:09 GMT
Content-Length: 3728
onlinebanking.bancogalicia.com.ar/Images/favicon.ico
200 OK 1.6 kB URL GET HTTP/1.1 onlinebanking.bancogalicia.com.ar/Images/favicon.ico
IP
ASN #13474 Banco de Galicia y Buenos Aires
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerDigiCert Inc
Subjectonlinebanking.bancogalicia.com.ar
Fingerprint45:8D:B8:44:DA:8F:A9:26:71:75:AF:65:7D:A2:C7:B7:15:C8:6C:9E
ValidityTue, 19 Sep 2023 00:00:00 GMT - Wed, 18 Sep 2024 23:59:59 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash b700b544f2fa87e37e6b728fef00fcb0
c0735fa743392c2f3032c22d241854b88832cdb7
f20a33fd40173f122bec15a105374059fb3ec612d51146485ed84ef0001f2f03
GET /Images/favicon.ico HTTP/1.1
Host: onlinebanking.bancogalicia.com.ar
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Wed, 15 Nov 2023 14:27:03 GMT
Accept-Ranges: bytes
ETag: "e0b295cdcf17da1:0"
Date: Sun, 26 Nov 2023 17:17:09 GMT
Content-Length: 1559
log-ad1a29c5.us.v2.we-stats.com/api/v1/sendLogs?cid=gamora&cdsnum=1701019028004-sjn0000983-14acbdfd-ead2-40b5-9375-1081cf36f22a&csid=null&ds=js&sdkVer=2.28.1.1391.3ece7f2
204 No Content 0 B URL POST HTTP/2 log-ad1a29c5.us.v2.we-stats.com/api/v1/sendLogs?cid=gamora&cdsnum=1701019028004-sjn0000983-14acbdfd-ead2-40b5-9375-1081cf36f22a&csid=null&ds=js&sdkVer=2.28.1.1391.3ece7f2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoDaddy.com, Inc.
Subject*.us.v2.we-stats.com
Fingerprint92:3F:49:C7:68:63:84:E4:9C:88:00:7F:F5:BD:A6:40:37:54:9C:9A
ValidityThu, 29 Jun 2023 18:52:04 GMT - Tue, 30 Jul 2024 18:52:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
POST /api/v1/sendLogs?cid=gamora&cdsnum=1701019028004-sjn0000983-14acbdfd-ead2-40b5-9375-1081cf36f22a&csid=null&ds=js&sdkVer=2.28.1.1391.3ece7f2 HTTP/1.1
Host: log-ad1a29c5.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1212
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Sun, 26 Nov 2023 17:17:10 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
analytics.google.com/g/collect?v=2&tid=G-NK1ZTDWVWL>m=45je3b81v879611137&_p=1701019030548&gcd=11l1l1l1l1&dma=0&cid=1808331885.1701019031&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701019030&sct=1&seg=0&dl=https%3A%2F%2Fggg55.simplestate.repl.co%2F&dt=Ingreso&en=scroll&epn.percent_scrolled=90&tfd=10627
204 No Content 0 B URL POST HTTP/3 analytics.google.com/g/collect?v=2&tid=G-NK1ZTDWVWL>m=45je3b81v879611137&_p=1701019030548&gcd=11l1l1l1l1&dma=0&cid=1808331885.1701019031&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701019030&sct=1&seg=0&dl=https%3A%2F%2Fggg55.simplestate.repl.co%2F&dt=Ingreso&en=scroll&epn.percent_scrolled=90&tfd=10627
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NK1ZTDWVWL>m=45je3b81v879611137&_p=1701019030548&gcd=11l1l1l1l1&dma=0&cid=1808331885.1701019031&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701019030&sct=1&seg=0&dl=https%3A%2F%2Fggg55.simplestate.repl.co%2F&dt=Ingreso&en=scroll&epn.percent_scrolled=90&tfd=10627 HTTP/1.1
Host: analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://ggg55.simplestate.repl.co
date: Sun, 26 Nov 2023 17:17:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
wup-ad1a29c5.us.v2.we-stats.com/client/v3.1/web/wup?cid=gamora
200 OK 626 B URL POST HTTP/2 wup-ad1a29c5.us.v2.we-stats.com/client/v3.1/web/wup?cid=gamora
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoDaddy.com, Inc.
Subject*.us.v2.we-stats.com
Fingerprint92:3F:49:C7:68:63:84:E4:9C:88:00:7F:F5:BD:A6:40:37:54:9C:9A
ValidityThu, 29 Jun 2023 18:52:04 GMT - Tue, 30 Jul 2024 18:52:04 GMT
File type JSON data\012- , ASCII text, with very long lines (626), with no line terminators
Hash 179cfb13ba78db84d473cd67fd91bcad
a6a5f26e8f344ee70b31adc1246383db49b47485
61a5d65887ea5651a96eb4a6a34b1f52f6ad892dae0a9f7cb18503e7ed544616
POST /client/v3.1/web/wup?cid=gamora HTTP/1.1
Host: wup-ad1a29c5.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3702
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 626
date: Sun, 26 Nov 2023 17:17:12 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: b262977b-cd59-4392-b1ed-9b7d800fcdc8
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
log-ad1a29c5.us.v2.we-stats.com/api/v1/sendLogs?cid=gamora&cdsnum=1701019028004-sjn0000983-14acbdfd-ead2-40b5-9375-1081cf36f22a&csid=null&ds=js&sdkVer=2.28.1.1391.3ece7f2
204 No Content 0 B URL POST HTTP/2 log-ad1a29c5.us.v2.we-stats.com/api/v1/sendLogs?cid=gamora&cdsnum=1701019028004-sjn0000983-14acbdfd-ead2-40b5-9375-1081cf36f22a&csid=null&ds=js&sdkVer=2.28.1.1391.3ece7f2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoDaddy.com, Inc.
Subject*.us.v2.we-stats.com
Fingerprint92:3F:49:C7:68:63:84:E4:9C:88:00:7F:F5:BD:A6:40:37:54:9C:9A
ValidityThu, 29 Jun 2023 18:52:04 GMT - Tue, 30 Jul 2024 18:52:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Galicia
POST /api/v1/sendLogs?cid=gamora&cdsnum=1701019028004-sjn0000983-14acbdfd-ead2-40b5-9375-1081cf36f22a&csid=null&ds=js&sdkVer=2.28.1.1391.3ece7f2 HTTP/1.1
Host: log-ad1a29c5.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 84
Origin: https://ggg55.simplestate.repl.co
DNT: 1
Connection: keep-alive
Referer: https://ggg55.simplestate.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 26 Nov 2023 17:17:13 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ggg55.simplestate.repl.co/iindex_files/dest5.html
200 OK 7.1 kB URL GET HTTP/1.1 ggg55.simplestate.repl.co/iindex_files/dest5.html
IP
Requested by https://ggg55.simplestate.repl.co/
Certificate IssuerGoogle Trust Services LLC
Subjectsimplestate.repl.co
FingerprintFE:2B:E2:8E:8F:42:2F:5D:E9:54:76:24:53:41:07:F6:3F:55:A9:26
ValidityWed, 22 Nov 2023 20:03:25 GMT - Tue, 20 Feb 2024 20:03:24 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash 335580440d594480e146eab15e4f992e
f3a35ec673a9e57dadfdf0f5b08db9d07a752e1f
460f57e490fecc4bcbf5c93e1e54821e1f34eba7975c8373e114c8c8580fa071
Analyzer Verdict Alert OpenPhish phishing Banco Galicia
GET /iindex_files/dest5.html HTTP/1.1
Host: ggg55.simplestate.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 7113
Content-Type: text/html; charset=UTF-8
Date: Sun, 26 Nov 2023 17:17:19 GMT
Expect-Ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
Host: ggg55.simplestate.repl.co
Replit-Cluster: global
Strict-Transport-Security: max-age=7440364; includeSubDomains
34.227.254.206
23.38.200.237
151.101.219.10
188.114.96.1
0.0.0.0