Report - 101.178.12.212/

Report Overview

Submitted URL
101.178.12.212/
IP
101.178.12.212
ASN
#1221 Telstra Corporation Ltd
Submitted
2024-04-27 04:21:01
Access
public
Website Title
Telstra Login
Final URL
101.178.12.212/login.htm
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
242

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
101.178.12.212	unknown	unknown	No data	No data	24 kB	799 kB	101.178.12.212

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited
2024-04-26	medium	101.178.12.212/	Telstra Corporation Limited

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed
2024-04-27	medium	101.178.12.212	Sinkholed

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	101.178.12.212/js/subformvar.js	6.1 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/subformvar.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen92 Hash a46934eacc49db144369f12d1c877128 caf8364dd3fcb62912b0c6b9e4041ecdd944652a 866ded2fb8170fe699ac32ed2ec7eafdbb520d7ff073dbbb32cc1cb86b69e392 Loading...

	101.178.12.212/js/popup.js	5.8 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/popup.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:08 Last Seen2024-05-04 06:21:37 Times Seen46 Hash 379c3e84ab8d8a269fbef4ab1291aedc 6246ed43b1346191d114f3ba84e8eec562b19fa9 001915eac723ecf80011e95bcf60a53811637d9588989705bad00969d032d58a Loading...

	101.178.12.212/login.htm	52 B	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/login.htm IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-09 06:55:08 Last Seen2024-05-04 06:21:37 Times Seen47 Hash bb99fef3da2f0c8af8826d13121f3e17 37c5a98388b19ceb312dc14c42141c09939e887b 5491294a7e670222033a6399c4ffbae320ce4dda03f43f1bbf7f5082865cdca5 Loading...

	101.178.12.212/js/maxnum_define.js	3.5 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/maxnum_define.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:08 Last Seen2024-05-04 06:21:37 Times Seen92 Hash 88b9becbe5baf807a35ae9bbc4626118 09409e1dc9890d2925b2248835d62d78cfbc0cc4 da8518a5b3326eb2be13f42b94566dd87c37f6115535025188e153519cc4886a Loading...

	101.178.12.212/js/menu-super.js	3.4 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/menu-super.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen92 Hash 901413beae9660fcad0828fa5ad2289c 43bdb0573159ebb9e65c0b40be61624e17dcce4b 82af137ad40a6086b3239fbbd6609d0a53bb1e66ba8885657ba6b6187514abdd Loading...

	101.178.12.212/js/main-telstra-min.js	183 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/main-telstra-min.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:08 Last Seen2024-05-04 06:21:37 Times Seen92 Hash f43894471d2c0ec86eddb54379b895f7 53c8ffe3ea49eff613ff74109fa17524e713365d ff197e1efdea42d8286526cebb15d7c70019331903b78b833c57327e61e48e69 Loading...

	101.178.12.212/login.htm	20 kB	2024-02-14	2024-04-27
Pretty URL 101.178.12.212/login.htm IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-14 15:12:23 Last Seen2024-04-27 06:21:08 Times Seen4 Hash 966f9db19dae0a5e6369f1561169c551 ec1b33c4c7e633bda3d4b14d218ab388e07b0bb2 c38180252e7231fb446061a70870c888030df3c447e405bb7be40b8e7ed97178 Loading...

	unknown	175 B	2024-01-13	2024-05-04
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-01-13 14:30:16 Last Seen2024-05-04 06:21:37 Times Seen16 Hash 0a4e438ed51ca2a810c1ada3ef620466 0fde9ff88ff43efc607c67bd073894e4b5cfe155 a650f20dac38b6eaf68d63c3be89faba31f33ff29050cc3818f3df309f272c7c Loading...

	101.178.12.212/js/jquery-1.8.3.min.js	94 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/jquery-1.8.3.min.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen92 Hash efecd8d5bc48627b2e58f8bf5e85360b 665f3b4490729d593886e5bb6ccd346ea460b3f6 71d8fdeaaa2ec95163559db97d5c876f4db31491e8fcc6f373cd9f238a07b080 Loading...

	101.178.12.212/js/state.js	10 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/state.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:08 Last Seen2024-05-04 06:21:37 Times Seen46 Hash 11b4d147d5277b98070f2ff4df1bea61 edd371c4103700117bda75cb97381fcf0b901319 dca84bbddf1e907455ec5b47d0958a480ea0e7f252d1f95dc3d039fa5b318457 Loading...

	101.178.12.212/js/global.js	89 kB	2023-06-09	2024-05-04
Pretty URL 101.178.12.212/js/global.js IP 101.178.12.212 ASN #1221 Telstra Corporation Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 06:55:08 Last Seen2024-05-04 06:21:37 Times Seen88 Hash b0e0aaee0917c0a66ecd2091fab4b88f 82605abce4ad997453cf68f52a83ba6f8897dd67 759733aefce815675f5e22c37327e99d672ca0217e0c112dfba3545d836b1e31 Loading...

	unknown	11 B	2023-06-09	2024-05-04
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen47 Hash 1ad41f9752074848fbb9c7842db914d1 77a8010267f6402f0e6e44a70b1be49e40249ea0 6f0ab998cc0dd9ba8fdb77b309362d50e4dbbc5a399066a38d61ecb3af836635 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2977d36b9aca48cb7e73c47c25686705	2.2 kB	2024-04-27	2024-04-27
Pretty Observations First Seen2024-04-27 06:21:08 Last Seen2024-04-27 06:21:08 Times Seen2 Hash 2977d36b9aca48cb7e73c47c25686705 6bb9111f3dcf031b39b9675596961e2859fa1c7b 44bf8afedc06918cb40c7d586b71dbcef1c28fa7a50823a40ed02f2a4b3a8732 Loading...

	#2 Eval - b9f312dad819037c720a660f8bee318a	476 B	2023-06-09	2024-05-04
Pretty Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:38 Times Seen57 Hash b9f312dad819037c720a660f8bee318a fbd8aab635165427cc944e6dfbd12bb5f61f0e46 8b5cd68e66b067c0f77a9423a32d14b66287eba5d22cc09cf50caba95a55b273 Loading...

	#3 Eval - b29e7e6d9baa9380181999ff8431abf2	5.9 kB	2024-04-27	2024-04-27
Pretty Observations First Seen2024-04-27 06:21:08 Last Seen2024-04-27 06:21:08 Times Seen5 Hash b29e7e6d9baa9380181999ff8431abf2 8ee9b04b45e5dc900e2f66ba3149b149019b5e8c 6304d12d36a75d661210d02d375900c9855798332a4556299e1a2e65e6e01646 Loading...

	#4 Eval - 304338501b430c33aa2308b58b4c2c01	231 B	2023-06-09	2024-05-04
Pretty Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen46 Hash 304338501b430c33aa2308b58b4c2c01 3015f13ebbe71d1bf62330a0aa9219823a17d96f 8f58e24ba56415938721568be35d48d1952c50fe917ef71c6330f096469bf0a0 Loading...

		Size	First Seen	Last Seen
	#1 Write - 3f129c4d0dfecefea9892eedfce90231	63 B	2023-06-09	2024-05-04
Pretty Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen46 Hash 3f129c4d0dfecefea9892eedfce90231 d529a976e40709a1fb2ab1e05f733552a48ba173 54cfbaeca37685e2b46ea9a6543a5e48257002bd654e1ff930e8d94fb294f441 Loading...

	#2 Write - dc5a9ed44c9eef3f75321de1ac7340ee	66 B	2023-06-09	2024-05-04
Pretty Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen46 Hash dc5a9ed44c9eef3f75321de1ac7340ee ef865599c1b9bf525dd120c8fb7e645e71e438cb cccbbcd3b6d0e2948897afeb3b913a6a1ef044552821a81e2593af01503ae8bc Loading...

	#3 Write - 8b6fe2cbf62ef820f3ce7ca57d8b99ee	63 B	2023-06-09	2024-05-04
Pretty Observations First Seen2023-06-09 06:55:09 Last Seen2024-05-04 06:21:37 Times Seen46 Hash 8b6fe2cbf62ef820f3ce7ca57d8b99ee 189a4ea71e2d2e865b2d1b45d6799cd50254edee f83e5415dc8ead63fb856eeca5a566e746e041e17fa9fe2e47903cdfb359c1de Loading...

HTTP Transactions (62)

URL IP Response Size

101.178.12.212/

101.178.12.212

0 B

URL
101.178.12.212/
IP
101.178.12.212:0
ASN
#1221 Telstra Corporation Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:36 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-store
Location: /relogin.htm
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://mymodem.gateway:85

101.178.12.212/relogin.htm

101.178.12.212

494 B

URL
101.178.12.212/relogin.htm
IP
101.178.12.212:0
ASN
#1221 Telstra Corporation Ltd

File type
HTML document, ASCII text
Size
494 B (494 bytes)
Hash
5ff3f33aafa2fa75c683b900f02ab6be
0a45f23fc92a47ce34f6a18ea2cfcb67067ee5d5
726c6458b24cc624ba65df3202b3fce26c37c932d1d327d7c805a1c3908af504

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /relogin.htm HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:38 GMT
Content-Type: text/html
Content-Length: 494
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-store
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://mymodem.gateway:85

101.178.12.212/favicon.ico

101.178.12.212

0 B

URL
101.178.12.212/favicon.ico
IP
101.178.12.212:0
ASN
#1221 Telstra Corporation Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/relogin.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:38 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-store
Location: /relogin.htm
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/login.htm

101.178.12.212

39 kB

URL User Request GET
101.178.12.212/login.htm
IP
101.178.12.212:0
ASN
#1221 Telstra Corporation Ltd

File type
HTML document, Unicode text, UTF-8 text
Size
39 kB (38645 bytes)
Hash
2d1bfb4e7bf62f6b0b56f9d81e6dab1e
004bc2492f1b125df6d4aa6f7e800d46bec912db
143e3cfb81ce5fe025535df1dab1a6a3f0b969643c0684f38948a3b041af5e19

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /login.htm HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://101.178.12.212/relogin.htm
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:41 GMT
Content-Type: text/html
Content-Length: 38645
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-store
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/state.js

101.178.12.212

200 OK

10 kB

URL GET HTTP/1.1
101.178.12.212/js/state.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (302)
Size
10 kB (10508 bytes)
Hash
aa5e6065d5aaac220cfd2fc91e48bc7d
009895b823613df3ecee87013e2bf58ab3c06c8e
54ce461354fbe492db18c93f75d8e74829e42a3e948ee6696fd2a9bf6f05a422

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/state.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:41 GMT
Content-Type: application/x-javascript
Content-Length: 10508
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/popup.js

101.178.12.212

200 OK

5.8 kB

URL GET HTTP/1.1
101.178.12.212/js/popup.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
Unicode text, UTF-8 (with BOM) text
Size
5.8 kB (5832 bytes)
Hash
1d88d6c3b64c8ed6044dfbc2c7b42a4f
fbccd7c65d16e8aa5ce7839874230829f160e1f1
6a009384f2c0aaa7a093d074b14a25e5c0c04f0e5d8c133cfaeec8f653589c1e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/popup.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:41 GMT
Content-Type: application/x-javascript
Content-Length: 5832
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/css/arc-landing-page.css

101.178.12.212

200 OK

13 kB

URL GET HTTP/1.1
101.178.12.212/css/arc-landing-page.css
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text, with CRLF line terminators
Size
13 kB (12699 bytes)
Hash
6cd913ea57a5aae9af1176468b12132c
78010b177b787bbfe2d62a9cd123b1bba38fdca3
b862089eeb0e166a7778593be6fd522a5d50373f2c3a761ee8089cf5b16fcce6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/arc-landing-page.css HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:41 GMT
Content-Type: text/css
Content-Length: 12699
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/global.js

101.178.12.212

200 OK

89 kB

URL GET HTTP/1.1
101.178.12.212/js/global.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
JavaScript source, ASCII text, with very long lines (532)
Size
89 kB (89386 bytes)
Hash
b0e0aaee0917c0a66ecd2091fab4b88f
82605abce4ad997453cf68f52a83ba6f8897dd67
759733aefce815675f5e22c37327e99d672ca0217e0c112dfba3545d836b1e31

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/global.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:41 GMT
Content-Type: application/x-javascript
Content-Length: 89386
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/jquery-1.8.3.min.js

101.178.12.212

200 OK

94 kB

URL GET HTTP/1.1
101.178.12.212/js/jquery-1.8.3.min.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
JavaScript source, ASCII text, with very long lines (65535)
Size
94 kB (93581 bytes)
Hash
efecd8d5bc48627b2e58f8bf5e85360b
665f3b4490729d593886e5bb6ccd346ea460b3f6
71d8fdeaaa2ec95163559db97d5c876f4db31491e8fcc6f373cd9f238a07b080

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:41 GMT
Content-Type: application/x-javascript
Content-Length: 93581
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/subformvar.js

101.178.12.212

200 OK

6.1 kB

URL GET HTTP/1.1
101.178.12.212/js/subformvar.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
6.1 kB (6137 bytes)
Hash
a46934eacc49db144369f12d1c877128
caf8364dd3fcb62912b0c6b9e4041ecdd944652a
866ded2fb8170fe699ac32ed2ec7eafdbb520d7ff073dbbb32cc1cb86b69e392

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/subformvar.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:42 GMT
Content-Type: application/x-javascript
Content-Length: 6137
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/maxnum_define.js

101.178.12.212

200 OK

3.5 kB

URL GET HTTP/1.1
101.178.12.212/js/maxnum_define.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
3.5 kB (3469 bytes)
Hash
88b9becbe5baf807a35ae9bbc4626118
09409e1dc9890d2925b2248835d62d78cfbc0cc4
da8518a5b3326eb2be13f42b94566dd87c37f6115535025188e153519cc4886a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/maxnum_define.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:42 GMT
Content-Type: application/x-javascript
Content-Length: 3469
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/menu-super.js

101.178.12.212

200 OK

3.4 kB

URL GET HTTP/1.1
101.178.12.212/js/menu-super.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
3.4 kB (3400 bytes)
Hash
901413beae9660fcad0828fa5ad2289c
43bdb0573159ebb9e65c0b40be61624e17dcce4b
82af137ad40a6086b3239fbbd6609d0a53bb1e66ba8885657ba6b6187514abdd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/menu-super.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:42 GMT
Content-Type: application/x-javascript
Content-Length: 3400
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/main-telstra-min.js

101.178.12.212

200 OK

183 kB

URL GET HTTP/1.1
101.178.12.212/js/main-telstra-min.js
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
JavaScript source, ASCII text, with very long lines (1542)
Size
183 kB (183010 bytes)
Hash
f43894471d2c0ec86eddb54379b895f7
53c8ffe3ea49eff613ff74109fa17524e713365d
ff197e1efdea42d8286526cebb15d7c70019331903b78b833c57327e61e48e69

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/main-telstra-min.js HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:41 GMT
Content-Type: application/x-javascript
Content-Length: 183010
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_phone_desktop.png

101.178.12.212

200 OK

1.9 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_phone_desktop.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
1.9 kB (1946 bytes)
Hash
5c1c80f4d3c3bd74b4fc01f00c53de96
85c23e2050164cd1e741d4c110444ef9130f9798
a8d89607d990f768e1cdb38eb14dfd12f4c452a1abca30338a6c2c08e07835d0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_phone_desktop.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 1946
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_status_phone.png

101.178.12.212

200 OK

495 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_status_phone.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
495 B (495 bytes)
Hash
9190633cda6d748b47d06dcaf414e48c
6a94d7a1a99c0f2cb729f725c215847a4444d89e
75d2dc7599d12fa13468bd86a864f76c4bf21d9c39786d92fb9f1244e1eab76a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_status_phone.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 495
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_wifi_desktop.png

101.178.12.212

200 OK

2.1 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_wifi_desktop.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
2.1 kB (2087 bytes)
Hash
917b670d2206627bc799437505b924fb
de844b5cca495cba4a05f34afdaa8567cc934407
437a5a06544054ade4b42e85572f10f52a8584a7170f352e734d951517723429

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_wifi_desktop.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 2087
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_telstra_air_desktop.png

101.178.12.212

200 OK

2.2 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_telstra_air_desktop.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2203 bytes)
Hash
187ccf1e8ff3c244be8bedc485b738bf
6971b8e606a6419386b80a0bde52212f910b93fe
66845a1d70060027717a79f7e3e9d0cf54c5c2c7f61d6aa7a6d122020cc7e70c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_telstra_air_desktop.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 2203
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/less_info.png

101.178.12.212

200 OK

3.5 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/less_info.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 165 x 45, 8-bit/color RGBA, non-interlaced
Size
3.5 kB (3467 bytes)
Hash
b3b0f83817554644de0e37ca20957e22
c96f0f91539b356e455c9b0436983b28a2ca5119
dabff903276c8017de768c4f9626fb4b923a8e85b8ddbc41da18d39d28e58132

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/less_info.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 3467
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/led_off.png

101.178.12.212

200 OK

323 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/led_off.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced
Size
323 B (323 bytes)
Hash
09f177cee8033bc6a783a1dd152d17c0
7d5720717d4f9c88034764f2f8d64e89ac2e280d
04d1e4fa7339ec275ba1d541324127a27d36843de57dd0977a9bba30c09b084f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/led_off.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/css/arc-landing-page.css
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 323
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/background2.png

101.178.12.212

200 OK

11 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/background2.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 1919 x 258, 8-bit/color RGBA, non-interlaced
Size
11 kB (10781 bytes)
Hash
867fa008107241fa41a1e85e4190ccd6
71cdbf16ebc4db89810798ae984eb546b8132d54
d775459ae2057841f1ae011183e1443616f6be913521eafb1938fbe77406fe98

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/background2.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/css/arc-landing-page.css
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 10781
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/background.png

101.178.12.212

200 OK

71 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/background.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 1440 x 456, 8-bit/color RGBA, non-interlaced
Size
71 kB (70889 bytes)
Hash
33a1fac35f6699d6c0ba4e5cff7d88f6
1685f11da1bf1d2e39d5fd6733753c3c2cce2210
7f72f5f21c09400fa86f106cebbaa7fd46b762fa9a665474199e2a3468e8904e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/background.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:44 GMT
Content-Type: image/png
Content-Length: 70889
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_status_online.png

101.178.12.212

200 OK

675 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_status_online.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
675 B (675 bytes)
Hash
3916eee9f9b242fc54ccfa2546e13841
1ca50e7eac3a8004ec6a28449bc4118e2c09e525
91ea45f3ccdb520aec44fef1c34132e873a525a756c8179eae5219105fad3b3d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_status_online.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 675
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_status_mobile.png

101.178.12.212

200 OK

835 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_status_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
835 B (835 bytes)
Hash
2ce2cede9aaa1f5f70aea155421de908
f41ab7c8d91982d454aaf3f58c40d6199294f927
385d59a671ecf9778417878e4b225aac26f010d0c76f6db9716b4cd1dc4cc4a6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_status_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 835
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_status_link.png

101.178.12.212

200 OK

377 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_status_link.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
377 B (377 bytes)
Hash
28a0bceb9d7a1591a6305bad6570c1dd
937916691493c978dbd85479175ec6cbba36dbce
b5fbcc76bddf689f9189f04611a697af9315afc1b7b9cb30564a2aebccec810c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_status_link.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 377
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_status_signal.png

101.178.12.212

200 OK

232 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_status_signal.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced
Size
232 B (232 bytes)
Hash
74ab859889f9b55c9be2f7ad4fdbff67
9452159b368e692bef65e4b07c2754cc7b1c0703
28d37d5da6a5a6927b06535e71bf1e89536d34e7b66642b751a29a0658420876

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_status_signal.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 232
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/sign_in_button_desktop.png

101.178.12.212

200 OK

2.1 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/sign_in_button_desktop.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 81 x 26, 8-bit/color RGBA, non-interlaced
Size
2.1 kB (2129 bytes)
Hash
375be4ca29a80045af145e03bb81f7fb
176506a8cd84fa2bd8915178bba08246620aba4c
9050d41d29c8897bc672a586918c50f28593116efe333fcdf0145be0565fa40c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/sign_in_button_desktop.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 2129
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/telstra_title.png

101.178.12.212

200 OK

20 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/telstra_title.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 1920 x 153, 8-bit/color RGBA, interlaced
Size
20 kB (20425 bytes)
Hash
51ef620b5d98b096166975a0edcfd6ed
818e19a2be4543581cd5d5a2f119d10fe7fd8486
7c87266c9155abb0837110fc43df9b15be1bcb579c17076a51d2a842d5e775f6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/telstra_title.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 20425
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/wifi_button_off.png

101.178.12.212

200 OK

973 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/wifi_button_off.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 35 x 37, 8-bit/color RGBA, non-interlaced
Size
973 B (973 bytes)
Hash
95df19bf9cd5bc20ebbae74495487512
850333e7d34d7842144953a3de16dd9e2ac38a69
0aff4caacf25dafb82233c4cb1315cd63dc1492f64c27c1bfc58414bfa57018a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/wifi_button_off.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 973
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/pair_button_off.png

101.178.12.212

200 OK

961 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/pair_button_off.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 33 x 38, 8-bit/color RGBA, non-interlaced
Size
961 B (961 bytes)
Hash
e4d926c3f0799abb4c66ceda0915309e
2eb86eed0e6d7fce513070a90df87cfff907484c
327188d28c62a4b4c20646423eebe0ef02b70677cd5840ea728da7c6de70b51b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/pair_button_off.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 961
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_broadband_desktop.png

101.178.12.212

200 OK

2.5 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_broadband_desktop.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
2.5 kB (2474 bytes)
Hash
3b442549f4f8443e846798888d0a6c0a
a3ea9d5f3273ad489c45c968758933c30964cf9a
935811779ca6f4681793227b609e00cec2dea4f08e12a77c581f1845da8b0a2c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_broadband_desktop.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 2474
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_optimiser_desktop.png

101.178.12.212

200 OK

2.0 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_optimiser_desktop.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced
Size
2.0 kB (1956 bytes)
Hash
dde641ba769d4dd8ca4e2cb00ec718ba
57aff0d6f49d63efc13122dc4167c65f60e65968
baf1af8ca9ecd94a144be85f46824d2210dc43dab80f7682d8545e05992acf92

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_optimiser_desktop.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 1956
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/Icon_DeviceSecurity.png

101.178.12.212

200 OK

1.1 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/Icon_DeviceSecurity.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 58 x 58, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1138 bytes)
Hash
bb79461ff11a2ee5f757190bf9e11f2f
d474ed60da049341e7d64c5b847f12f5c1f18d89
5ea13353d4ecad2f311e183f75b97339ca655cda59330d9dda1114d99ff07c73

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/Icon_DeviceSecurity.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 1138
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/more_info.png

101.178.12.212

200 OK

3.1 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/more_info.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 169 x 45, 8-bit/color RGBA, non-interlaced
Size
3.1 kB (3105 bytes)
Hash
d5a94c41e5d686efa1d2910759ff4a16
308dbaf2ae4137d674564e16f595626864a93673
9c0125f7a65667484aee45d9399f8f6dc37a5060533231ddee75bd592c8293ba

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/more_info.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 3105
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/device_info.png

101.178.12.212

200 OK

5.0 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/device_info.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 274 x 167, 8-bit/color RGBA, non-interlaced
Size
5.0 kB (5026 bytes)
Hash
535abad78c0e6c2e16f8b5eeedf759ce
844f8652983193a95389f37b33f7ba9e8120f620
3e05430cf1317dc90c425db1f7205afac0bbacbfd3851bbb10be6d55e5b4be05

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/device_info.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 5026
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/footer_desktop.png

101.178.12.212

200 OK

470 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/footer_desktop.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 1920 x 13, 8-bit/color RGBA, non-interlaced
Size
470 B (470 bytes)
Hash
00a6aeb6844e722762f206322bd3ef39
eaf164f9b4c454461474b2289d884c299d057a0a
9fa07009466be5425771a9815288f2853ff6586b97b51cc775c8c848621dc6fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/footer_desktop.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 470
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/sign_in_button_mobile.png

101.178.12.212

200 OK

6.7 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/sign_in_button_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 555 x 103, 8-bit/color RGBA, non-interlaced
Size
6.7 kB (6742 bytes)
Hash
b43c937e9cc1b94804c957915b1bf2f8
f0070f5178611e65f5a375fc1ad2ec5fe48cca71
eff03f083ad3ed4e26bf02a7bef41eae5aa854ef03ca519e0536e3907289a3fe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/sign_in_button_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 6742
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/telstra_logo.png

101.178.12.212

200 OK

1.5 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/telstra_logo.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 57 x 65, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1518 bytes)
Hash
c54b8efef2e2dd9b61fcfd66b3c5a750
3204f3e337ed41699efbf1dd3149fee869a256ad
3ef9905566933193aa027382a83aa60bdf330b8dfa1662e8eeb3c306f3095694

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/telstra_logo.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 1518
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_boradband_mobile.png

101.178.12.212

200 OK

3.3 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_boradband_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
3.3 kB (3291 bytes)
Hash
91e9dcdc7cf5973c87647af9b0fd0f44
ddff425f49e6f4e6d92ae7ca678c4506cb25012b
3f6b2406e5d64ec2cf2587b5e3605118f4600a941b89cf231227654ab3adce95

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_boradband_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 3291
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_wifi_mobile.png

101.178.12.212

200 OK

2.5 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_wifi_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
2.5 kB (2503 bytes)
Hash
e6d0399bd2628e39cb7325a2d9a58032
e2697a4fa5e90f6d519c10f92b0501932780edfa
59665c8e0c26de85f2afb05d2aff8911a04f1c03e96c5eabce4c67451bb5b979

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_wifi_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 2503
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_phone_mobile.png

101.178.12.212

200 OK

2.6 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_phone_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
2.6 kB (2572 bytes)
Hash
4755950dc57b4b898edc9c8ce99e281c
1c27ab8b91e4f6d34ced23b44cff95402521ace6
dd07e13f8197326f8396de57168d896e230dd8ca73cf79bda531b2647952d5f2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_phone_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 2572
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/Icon_DeviceSecurity-mobile.png

101.178.12.212

200 OK

3.4 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/Icon_DeviceSecurity-mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
3.4 kB (3392 bytes)
Hash
1e74452d7081cdb91dc9993836e70c51
93700b7be89b368149254d62e23e0492f0eb5e38
a2e76a88849a1203cf7fa59375f5ddc3b4999a0435d85849c3889dd809506300

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/Icon_DeviceSecurity-mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 3392
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_telstra_air_mobile.png

101.178.12.212

200 OK

2.9 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_telstra_air_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2860 bytes)
Hash
41885de1fc18b758078369dcb6909bef
33fcd1cce63afa54370792a91e2123262fe64bf5
ccaef252fd0ee5b2b0303335a782c0c02c4792b065167e9daa5e8269f3d82098

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_telstra_air_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 2860
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/icon_optimiser_mobile.png

101.178.12.212

200 OK

2.4 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/icon_optimiser_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 60 x 60, 8-bit colormap, non-interlaced
Size
2.4 kB (2350 bytes)
Hash
68b25dd59444b27d90a969fca0459730
95c35e2f03b2f738abcf032d287f3898af362d65
dbd4670e0a2aeba7095b9fe63aa1c5bed14dc5bd86baad35c08385b6067558cb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/icon_optimiser_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 2350
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/product_photo.png

101.178.12.212

200 OK

139 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/product_photo.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 750 x 720, 8-bit/color RGBA, non-interlaced
Size
139 kB (139162 bytes)
Hash
2dfb34eb8d613eaef742c12111a3794d
c845f3f517e35a90a52eceda50f4406347fa0c45
0296a9f8fc1612b08b6c497adf8d79537f1bafdfb66679a74ed5e2a6084fcf56

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/product_photo.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:45 GMT
Content-Type: image/png
Content-Length: 139162
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/footer_mobile.png

101.178.12.212

200 OK

307 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/footer_mobile.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 750 x 7, 8-bit/color RGBA, non-interlaced
Size
307 B (307 bytes)
Hash
837a2ff7bbae0b3a91dce455f2d9e11c
e797d75af3e4a200f8376bfb250b4028e4ef9e33
65270d470f5b8db7fdd9cdbe56ba42fbb11e93e87dbfa2b5f136d7ade5268629

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/footer_mobile.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 307
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/back_to_top.png

101.178.12.212

200 OK

3.1 kB

URL GET HTTP/1.1
101.178.12.212/img/landing-page/back_to_top.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 85 x 168, 8-bit/color RGBA, non-interlaced
Size
3.1 kB (3140 bytes)
Hash
cd60bfbbf212c5a8b865ae3203a55617
0f0e705296db48a6a6c89d8a03763596e43195f8
23d6fc328ce9640543648089b13d47db2e4972a9c85ddacefb0fcc09ef147267

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/back_to_top.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 3140
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/Telstra.png

101.178.12.212

200 OK

1.2 kB

URL GET HTTP/1.1
101.178.12.212/img/Telstra.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
4a14841cfb050ec0f5ea4faf30376250
4d0bc0e97e2730a6ba73fd95d31ef3d28693962c
6f245507a9629f03341a384a25d11e526152c8942834c62d34d6ffc9ab6952a6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/Telstra.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: image/png
Content-Length: 1150
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/fake_refresh.js?_tn=2103471542&_t=1714191646503&_=1714191646504

101.178.12.212

200 OK

0 B

URL GET HTTP/1.1
101.178.12.212/js/fake_refresh.js?_tn=2103471542&_t=1714191646503&_=1714191646504
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/fake_refresh.js?_tn=2103471542&_t=1714191646503&_=1714191646504 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: application/x-javascript
Content-Length: 0
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_init.js?_tn=2103471542&_t=1714191646506&_=1714191646506

101.178.12.212

200 OK

2.2 kB

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_init.js?_tn=2103471542&_t=1714191646506&_=1714191646506
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
2.2 kB (2162 bytes)
Hash
2977d36b9aca48cb7e73c47c25686705
6bb9111f3dcf031b39b9675596961e2859fa1c7b
44bf8afedc06918cb40c7d586b71dbcef1c28fa7a50823a40ed02f2a4b3a8732

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_init.js?_tn=2103471542&_t=1714191646506&_=1714191646506 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: application/x-javascript
Content-Length: 2162
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191646509&_=1714191646509

101.178.12.212

200 OK

476 B

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191646509&_=1714191646509
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
476 B (476 bytes)
Hash
b9f312dad819037c720a660f8bee318a
fbd8aab635165427cc944e6dfbd12bb5f61f0e46
8b5cd68e66b067c0f77a9423a32d14b66287eba5d22cc09cf50caba95a55b273

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191646509&_=1714191646509 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:46 GMT
Content-Type: application/x-javascript
Content-Length: 476
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191646507&_=1714191646508

101.178.12.212

200 OK

5.9 kB

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191646507&_=1714191646508
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
5.9 kB (5855 bytes)
Hash
b29e7e6d9baa9380181999ff8431abf2
8ee9b04b45e5dc900e2f66ba3149b149019b5e8c
6304d12d36a75d661210d02d375900c9855798332a4556299e1a2e65e6e01646

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_login.js?_tn=2103471542&_t=1714191646507&_=1714191646508 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:48 GMT
Content-Type: application/x-javascript
Content-Length: 5855
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191648447

101.178.12.212

200 OK

476 B

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191648447
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
476 B (476 bytes)
Hash
b9f312dad819037c720a660f8bee318a
fbd8aab635165427cc944e6dfbd12bb5f61f0e46
8b5cd68e66b067c0f77a9423a32d14b66287eba5d22cc09cf50caba95a55b273

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191648447 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:48 GMT
Content-Type: application/x-javascript
Content-Length: 476
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191648449

101.178.12.212

200 OK

5.9 kB

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191648449
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
5.9 kB (5855 bytes)
Hash
b29e7e6d9baa9380181999ff8431abf2
8ee9b04b45e5dc900e2f66ba3149b149019b5e8c
6304d12d36a75d661210d02d375900c9855798332a4556299e1a2e65e6e01646

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_login.js?_tn=2103471542&_t=1714191648449 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:50 GMT
Content-Type: application/x-javascript
Content-Length: 5855
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191648452&_=1714191648452

101.178.12.212

200 OK

5.9 kB

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191648452&_=1714191648452
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
5.9 kB (5855 bytes)
Hash
b29e7e6d9baa9380181999ff8431abf2
8ee9b04b45e5dc900e2f66ba3149b149019b5e8c
6304d12d36a75d661210d02d375900c9855798332a4556299e1a2e65e6e01646

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_login.js?_tn=2103471542&_t=1714191648452&_=1714191648452 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:50 GMT
Content-Type: application/x-javascript
Content-Length: 5855
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/wifi_button.png

101.178.12.212

200 OK

985 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/wifi_button.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 35 x 37, 8-bit/color RGBA, non-interlaced
Size
985 B (985 bytes)
Hash
68404fd2f2be8685fc10ad74bfd7adb0
b25344f40a0af2166a4b8d0d3c986578eeba60bf
c95d63ff2d348b99bf9e299a769321299d0abc74250845b31da7a5e32eb4e422

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/wifi_button.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:50 GMT
Content-Type: image/png
Content-Length: 985
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/led_orange.png

101.178.12.212

200 OK

327 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/led_orange.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 18 x 19, 8-bit/color RGBA, non-interlaced
Size
327 B (327 bytes)
Hash
62b615c747ee39683780576fcb671a6b
328b4f6316eb868c43e0dbd2b24dd3332cd212e6
56dcdaa8a45216bffd4c25dfe54d6eda223a08dac84e2d87bf282c26cab48022

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/led_orange.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/css/arc-landing-page.css
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:50 GMT
Content-Type: image/png
Content-Length: 327
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/led_green.png

101.178.12.212

200 OK

338 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/led_green.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 18 x 19, 8-bit/color RGBA, non-interlaced
Size
338 B (338 bytes)
Hash
73770302820173fed8954f1616ae9e38
cdc74cde1c04245014df3580d82f057e07ee2ffc
ca0c1725d8ae096c098eb85378f9483eef6b55b12c647783d7091293a6bbe89d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/led_green.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/css/arc-landing-page.css
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:50 GMT
Content-Type: image/png
Content-Length: 338
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/img/landing-page/led_red.png

101.178.12.212

200 OK

257 B

URL GET HTTP/1.1
101.178.12.212/img/landing-page/led_red.png
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced
Size
257 B (257 bytes)
Hash
bfb4d32d28dc4a8605414dac0a7a96d5
6a63e7dc9c12799776d86d32195db92661fdc1c5
3fb2c79905b9011960456c48e05fa6a04e1ca6923f0e4bde00bd3f1d7effdd27

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/landing-page/led_red.png HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/css/arc-landing-page.css
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:50 GMT
Content-Type: image/png
Content-Length: 257
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/fake_refresh.js?_tn=2103471542&_t=1714191651825&_=1714191651826

101.178.12.212

200 OK

0 B

URL GET HTTP/1.1
101.178.12.212/js/fake_refresh.js?_tn=2103471542&_t=1714191651825&_=1714191651826
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/fake_refresh.js?_tn=2103471542&_t=1714191651825&_=1714191651826 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:51 GMT
Content-Type: application/x-javascript
Content-Length: 0
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191653853

101.178.12.212

200 OK

476 B

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191653853
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
476 B (476 bytes)
Hash
b9f312dad819037c720a660f8bee318a
fbd8aab635165427cc944e6dfbd12bb5f61f0e46
8b5cd68e66b067c0f77a9423a32d14b66287eba5d22cc09cf50caba95a55b273

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_get_led_rear.js?_tn=2103471542&_t=1714191653853 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:54 GMT
Content-Type: application/x-javascript
Content-Length: 476
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191653858

101.178.12.212

200 OK

5.9 kB

URL GET HTTP/1.1
101.178.12.212/cgi/cgi_login.js?_tn=2103471542&_t=1714191653858
IP
101.178.12.212:80
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type
ASCII text
Size
5.9 kB (5855 bytes)
Hash
b29e7e6d9baa9380181999ff8431abf2
8ee9b04b45e5dc900e2f66ba3149b149019b5e8c
6304d12d36a75d661210d02d375900c9855798332a4556299e1a2e65e6e01646

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cgi/cgi_login.js?_tn=2103471542&_t=1714191653858 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:55 GMT
Content-Type: application/x-javascript
Content-Length: 5855
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

101.178.12.212/js/fake_refresh.js?_tn=2103471542&_t=1714191657154&_=1714191657156

101.178.12.212

0 B

URL GET
101.178.12.212/js/fake_refresh.js?_tn=2103471542&_t=1714191657154&_=1714191657156
IP
101.178.12.212:0
ASN
#1221 Telstra Corporation Ltd

Requested by
http://101.178.12.212/login.htm

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Telstra Corporation Limited
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/fake_refresh.js?_tn=2103471542&_t=1714191657154&_=1714191657156 HTTP/1.1
Host: 101.178.12.212
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: http://101.178.12.212/login.htm
Cookie: disableLogout=0
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.15.10
Date: Sat, 27 Apr 2024 04:20:57 GMT
Content-Type: application/x-javascript
Content-Length: 0
Connection: keep-alive
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: http://101.178.12.212

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL