my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
104.21.25.78403 Forbidden 3.5 kB URL User Request GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
IP 104.21.25.78:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1625)
Hash 9e4395c85e17e99e566325fc62da69b9
48afbc8e2cca54e3b6340f5105bc737a9de4267e
80eabedca634f8fcd76c113fa0b0e494d53f7745ae1229c061d10f1e7776c78a
Analyzer Verdict Alert fortinet Phishing
GET /a1b2c3/31339703862ae1f68ecd090b561368f0/login/ HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 02 May 2023 00:28:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1BFamb98s8JVfy62Caonw7ta%2F%2Br85xoG8EVZ1moXZ9S3Tq%2BEnhauN9tpzZEGt1s%2F4UrDHtByp9Nfy3UzWcYmfHqRXaODcZN6BfOWH02UpjwCVd%2Fv%2B%2FnEP39ZLCNCjfvr6RTOkehALgC1Ef3LX7aIwbQ8mUgTUDbeYHvtTAS4cVgBDGrpzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c0c25291b3fb509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/styles/challenges.css
172.67.223.249200 OK 2.6 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/styles/challenges.css
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type ASCII text, with very long lines (6600), with no line terminators
Hash 9fa2f809c184b1f61b213cd4e503a226
5d7a209eb9da1e823ea6bdc9610005d7a224b35f
f47ef292aa20330e7c78dc476c33845afbc76cb0ba0901bc1f29492cfeb28437
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 00:28:36 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 25 Apr 2023 11:28:50 GMT
ETag: W/"6447b972-19c8"
Server: cloudflare
CF-RAY: 7c0c252a0dec1c06-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 02 May 2023 02:28:36 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7c0c25291b3fb509
172.67.223.249200 OK 42 B URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7c0c25291b3fb509
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7c0c25291b3fb509 HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 00:28:36 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Tue, 25 Apr 2023 11:28:50 GMT
ETag: "6447b972-2a"
Server: cloudflare
CF-RAY: 7c0c252a3e011c06-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 02 May 2023 02:28:36 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/orchestrate/captcha/v1?ray=7c0c25291b3fb509
172.67.223.249200 OK 54 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/orchestrate/captcha/v1?ray=7c0c25291b3fb509
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3f8f2e413ab00ba06ae25e1e46efb87a
2e25315952e5efedf064a968bf6023cdcc9ce562
1b8aa55e0d02774fd9199c25c838f069b0e39944dc2709f9ce0e88d6c380c845
GET /cdn-cgi/challenge-platform/h/g/orchestrate/captcha/v1?ray=7c0c25291b3fb509 HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/?__cf_chl_rt_tk=ZeydWMe3WFuUBa4YNqr5OBxtNQKwQelwiKmxv0g5NIg-1682987316-0-gaNycGzNBiU
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 00:28:36 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9TpPhGadZgAUKDwdr%2BaIWJxqqWRErxYzM2nzlh56OpxeHlRWkcLsMYZAEgstDBTIaTkYKAEqoGW6L98FPgFQ9S1gNTedqG1d0QKdEcAh2CWPxuTCI9ZFn4rXamQFRegwizqlmzpfBWkSeCTl3Ouiw1ERj2V6rxC8B62NqIJRAhfH5BYWvA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0c252a4e031c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
172.67.223.249403 Forbidden 3.4 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1540)
Hash 7d01d13026650a1c734e372da8a55c26
422dcfc7eedbe7a5aa00cec63a9c9356a6165cad
06252b348d4251a3093a1d4f2ff42cd74b7c1341ec2c57380ec31471e07d7a32
GET /favicon.ico HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 02 May 2023 00:28:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vTVZDj2N9MBCVSEC%2Bt7lee4AIBwZS34XCaDNta8GdE2%2BmebK699PJMVQBd34hq%2BfWg6vIxqViVmSFRGC5b1XQlPjarxVT3CDT8%2FrM%2B6%2FqaqKMb9nx0xQMmutij6Z1fL3%2BzZWVl3ZomqrDfnvgaYD9ksOBwHL34e%2FUOM3KwnpC4SNKb99RQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c0c252a7e101c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
172.67.223.249403 Forbidden 3.4 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1583)
Hash 74c9e5edf64878862167e9106dcb5bd8
89438acdb0e41a437799f0f5e4c5447a69a39cd1
d504b7b871952698269caa90ad3123a741c95c776bc61a388ec8dc6dff1bdc8d
GET /favicon.ico HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Connection: keep-alive
Cookie: cf_chl_2=26fdfc4f16d6d0f
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 02 May 2023 00:28:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FhMv%2BkLjnksAnMyirxjiF98uLqqaxWVBVElyRzKk%2F7mGchzPn5%2Fdf0HIezdjEobHxU33rdBlwiqqc2TNxVyv2q2J7n08TEvZb8T%2FiNHRLb0zyWgP1Cam0txk53vsXzuYvGRBY5kRiVKXL2emhfAihpogh8UK8H%2Fjx8zRAznTWA4T5Jobw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c0c252abdee0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/929057119:1682986082:dwjOXWDLHuHlhnZzluDhcDJpWA_FuMIlLBUsLAbG4gw/7c0c25291b3fb509/26fdfc4f16d6d0f
172.67.223.249200 OK 87 kB URL POST HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/929057119:1682986082:dwjOXWDLHuHlhnZzluDhcDJpWA_FuMIlLBUsLAbG4gw/7c0c25291b3fb509/26fdfc4f16d6d0f
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type ASCII text, with very long lines (65536), with no line terminators
Hash c8f80c527ccb1f2a737a3171442b18ec
e0e7b948c8794b64c70b724e1bdfd7bea7dec218
06e5a2e3e8a8191842097394746333c2707251ddb8a450934b5c510146cd05b7
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/929057119:1682986082:dwjOXWDLHuHlhnZzluDhcDJpWA_FuMIlLBUsLAbG4gw/7c0c25291b3fb509/26fdfc4f16d6d0f HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 26fdfc4f16d6d0f
Content-Length: 1824
Origin: http://my-netbank.commbank.application.com.au.pank.com.br
Connection: keep-alive
Cookie: cf_chl_2=26fdfc4f16d6d0f
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 00:28:37 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: HpaXmlnV4jtHriWUDsGJvNKwd1cUfM/A3tE1ImvsvnRCLie5EWFproUU8up7f7RT4ueTvl2txwNsIj9C9otsVbAjqaEWSfKZjvnlDfcZiOJeQZuIKCB6Mo6A0jAPvTSE44pEfJksp6jH0kTjU4QA6N6MxW0RfH3VH8kUzTDTPdzEfs8GV8+kZJCxQYcETYNsQajn8rCivNBCfJzTXhWvoKvps2u9ITPBKI/bY7HGK0rdNa5FAjAtsTkGy4SkxQfNfUSr/ZJKp86reKqObjx5N5DYJQXLvsiGdGRvYsA2+BcYl294ePgZf+Lg4+OsL/6/ZcHFqrU+4hCuJVcksTeem+2RtXyTouOZG421TvUQvu5r6D54fRSI9THMONZCVbIm$7Z2aBVuoHMihe7Z8NJl0LA==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cDm6AoajhU%2Bdsy%2FrLB4d2QsJusZmsMWdkqkcl1OommrHnJxXxUT24hlaHLnaWfBkxAfECmbc2VT81DHDG9LaBb7GrFGc2w9qPkD8R0WfRGvRpU8HXPaPvA1IhvEV7JY7LcfiTUITUAagj4J7bLHUvAENfbvOJnLt6oWhnlMw7Dy140UAtA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0c252ba9780b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/img/7c0c25291b3fb509/1682987317085/nV6kD8zIU8AOGkv
172.67.223.249200 OK 61 B URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/img/7c0c25291b3fb509/1682987317085/nV6kD8zIU8AOGkv
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type PNG image data, 53 x 4, 8-bit/color RGB, non-interlaced\012- data
Hash 0d58ad029a53e17b50510c08e21c3822
955a2746c62090d4bfdbdb78ae2b7f52af69c62c
cb0973b3a6b8b91636c948d3437ae986c46c1392be056b146f017375d44015f0
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/challenge-platform/h/g/img/7c0c25291b3fb509/1682987317085/nV6kD8zIU8AOGkv HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Connection: keep-alive
Cookie: cf_chl_2=26fdfc4f16d6d0f
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 00:28:37 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5uQP8ZVxumyy5Wp3%2FB44rbGW7VPXvma1ygu1k5nwSfzGXQOqA40JRuEA7rjvj9YunCrAhpmX4gBcf5%2FByEfjA95zBP64haos64S2dFzgN2ipm%2BGxFAUO0%2BMtFIjOIxYhx%2FjXv1108EMrL8nIfe9L40k3P9Zp7dluQtDeuxcLUfdAXpeW4g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0c252fba660b39-OSL
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/929057119:1682986082:dwjOXWDLHuHlhnZzluDhcDJpWA_FuMIlLBUsLAbG4gw/7c0c25291b3fb509/26fdfc4f16d6d0f
172.67.223.249200 OK 5.6 kB URL POST HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/929057119:1682986082:dwjOXWDLHuHlhnZzluDhcDJpWA_FuMIlLBUsLAbG4gw/7c0c25291b3fb509/26fdfc4f16d6d0f
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
File type ASCII text, with very long lines (7376), with no line terminators
Hash 75469e6fa62acdd999bdcd93f0f9299b
08b4e73204bdc28a81726ad95590c147481f778d
fd353fcb7c2e29ce5205264507b691bd7b403f2ab2a0302e965c98d814041cbe
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/929057119:1682986082:dwjOXWDLHuHlhnZzluDhcDJpWA_FuMIlLBUsLAbG4gw/7c0c25291b3fb509/26fdfc4f16d6d0f HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Content-type: application/x-www-form-urlencoded
CF-Challenge: 26fdfc4f16d6d0f
Content-Length: 16537
Origin: http://my-netbank.commbank.application.com.au.pank.com.br
Connection: keep-alive
Cookie: cf_chl_2=26fdfc4f16d6d0f
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 00:28:38 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: jaSnsBbMgtM9TUICj6p7H/aMOaGffzgxdKm2JuGI39NJf24VJaHKfU17bHdPBD4J$Ljy3KwC2ZSZ/q8dJMc1WEg==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=regqZSVz5f%2BlOPaLWC1Sfxpz2QETz2v4fAJhG2rEXPqxyzUp1J0613ntKqXvN6MWpbZvXdT8ycUlaoHP%2FRxG8LZ87rHzje6nG6HgMh4InbnM6RUzdLBv15t8cI2C9vuBNcLy%2BoZW9uE27ByJEHFkE%2BE3FLez26wtmX2UD0lV1eHmoKKR4w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0c25359bfe0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7c0c253608c5b517
104.18.6.185200 OK 152 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7c0c253608c5b517
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 152 kB (152545 bytes)
Hash 6ddbee473f3af9edac261d1c6b337a18
721d4d96a1bd0215ba4b6ebfa58309d8c8c4587d
d5922c9d8aa2c81f6020b99b25f73ecb088fd82a4848948debfd13822af08ea8
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7c0c253608c5b517 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 00:28:38 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
server: cloudflare
cf-ray: 7c0c2536a915b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
104.18.6.185200 OK 23 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
IP 104.18.6.185:443
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9343)
Hash 1e033397e670a8ce438a7da4ba7148de
4368b6209f763ea1bb6a2ef0a7d08cb9e3727e86
9b2b54122a2de730540f00b1ab2dfa715108de1f5192befdebb24f6fdadb1208
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 00:28:38 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7c0c253608c5b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/95964837:1682986247:WPcWZJy-JuE8akaACqUdCBRDH3v2QfNHUG9ggdpo5HU/7c0c253608c5b517/03cf421721bf8d6
104.18.6.185200 OK 75 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/95964837:1682986247:WPcWZJy-JuE8akaACqUdCBRDH3v2QfNHUG9ggdpo5HU/7c0c253608c5b517/03cf421721bf8d6
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8816a4b0a5850cd06d0753ce6ab355c0
b00acb885359704ddd9162c321c920040a64a82a
aacb42b5a5a93ee3f941e6a15040ac7b00c0db81677d3d904a81c719d86651cc
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/95964837:1682986247:WPcWZJy-JuE8akaACqUdCBRDH3v2QfNHUG9ggdpo5HU/7c0c253608c5b517/03cf421721bf8d6 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 03cf421721bf8d6
Content-Length: 2634
Origin: https://challenges.cloudflare.com
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 00:28:39 GMT
content-type: text/plain; charset=UTF-8
cf_chl_gen: nWqUgmV4mf5tZrL6Y1xoAJoka1WNKuJ2AhGy2W1pt4HW5UfshVIOjmW0HFR1p4AJHkV0uhZdOsdfnEemevMlTXt7rq0Irikx71rcN6PPbpthyMAdfcyB5FTeokY9YW8AflzYUieOmr3zSO/k4MO8aQgaoAQvZD15+1Oz6H20eEEKXbv4ww0+xLEEo6QK2DWBUDVyC4twirk4PbX4ubFWi04nidzyLuOpW8drpu1g9NgIBRSz7to8ZMNN6X3nEz4RmSwL2iS3+mT4iRKpqnA88QH6099a244bDpSEAXJbN5gBa8frj9OHUzeeabQVUs16VmcoDaNk/bZjM0jjcOCeaeZRmLBB8MmnGGdrEvIwmEU6L0xvyC1ZUYSk5hZPVEa3vmyHZlDovNJ1y+13JG+TNhb5EB9zyj05UR3tqxzjojQ=$z8cvLNANyBqZmdWnNLqsuQ==
server: cloudflare
cf-ray: 7c0c2537d98eb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7c0c253608c5b517/1682987319030/6wgLJ_FYaFAxnF8
104.18.6.185200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7c0c253608c5b517/1682987319030/6wgLJ_FYaFAxnF8
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type PNG image data, 29 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 04b3443db02710613067bca8e1667f38
92591060ab63a7b739ddab72bb773d6fe451e16e
26abc51ab93c3ce7fc7451b8193961ee532a6c55b5141fb6a3c7b340c9e626fc
GET /cdn-cgi/challenge-platform/h/g/img/7c0c253608c5b517/1682987319030/6wgLJ_FYaFAxnF8 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 00:28:39 GMT
content-type: image/png
server: cloudflare
cf-ray: 7c0c25398a1cb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/turnstile/v0/g/b5e45436/api.js?onload=_cf_chl_turnstile_l&render=explicit
104.18.6.185200 OK 16 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/g/b5e45436/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP 104.18.6.185:443
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login/
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (15685)
Hash a26b9f20dc634fffeabda90cec467fa1
bf3dd0fb148183a0250784dc298ba3e824d46394
5205e201bbd649a3a4af0ecb9b1e8a80f73aa8ea4aee1740302b1b8f7435b27f
GET /turnstile/v0/g/b5e45436/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://my-netbank.commbank.application.com.au.pank.com.br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 02 May 2023 00:28:36 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c0c252adc30b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/95964837:1682986247:WPcWZJy-JuE8akaACqUdCBRDH3v2QfNHUG9ggdpo5HU/7c0c253608c5b517/03cf421721bf8d6
104.18.6.185200 OK 10 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/95964837:1682986247:WPcWZJy-JuE8akaACqUdCBRDH3v2QfNHUG9ggdpo5HU/7c0c253608c5b517/03cf421721bf8d6
IP 104.18.6.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (10360), with no line terminators
Hash 80d0e6744a6fa9a739bc5980671a7613
48007386cbb22b0daaaba7cadd9c6b918923e6e9
2311e65725de1f1562fa5beffb1e8aecd9d22c721d9090aa112291922b3f802b
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/95964837:1682986247:WPcWZJy-JuE8akaACqUdCBRDH3v2QfNHUG9ggdpo5HU/7c0c253608c5b517/03cf421721bf8d6 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/8i34i/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 03cf421721bf8d6
Content-Length: 17852
Origin: https://challenges.cloudflare.com
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 00:28:39 GMT
content-type: text/plain; charset=UTF-8
cf_chl_gen: zUbf5OBo6S2CRMCIL0E2RjXM9HgduUl49YVjHn7wZGdm3x8dM2liyNn5tJhGJT2y$JyI4Xk3nYgDVuWY8ZzPlaQ==
server: cloudflare
cf-ray: 7c0c253aba8bb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400