Report - dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?

Report Overview

Submitted URL
dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
IP
20.26.209.133
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-09-07 09:36:12
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
40

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.39.175.179
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	50 kB	34.120.237.76
dkb-konto.digital-1.one	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	83 kB	20.26.209.133
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	325 B	1.6 kB	143.204.55.27
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-07	medium	dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/bower_components/jquery/dist/jquery.min.js	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/1ee670489f75dd6ea807765ada75310558e5d196.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/4d6cfa3b23c923a6ff461ca35648f21238265651.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/9c8bf4e8205bf61d35b8fb9d34449556f682914e.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/a0a628fa1d136767dfc96799bfff4f969e9b8638.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/b9b216637340489b71e138ef8af8a77d8ff4d638.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/a7a9ae59ec5545b759d8ce83efdec96fd262f0fd.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/9ffff3dcba74a06f908dcc216aff9945f2c794a7.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/69587e341aa8004c80fa8a6212b6f1ef4ea59ddf.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/f1c3726d133ea40cc4df65bc2ef3507461d6ae2f.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/327c9ccaea95787ff2bed3adee6c2bda61d66098.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/73321b88c86cde1be9540eebac3e131c15a2c5f6.svg	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/bower_components/ua-parser-js/dist/ua-parser.min.js	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/core/token/core_token.js	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/core/form/core_form.js	Phishing
2022-09-07	medium	dkb-konto.digital-1.one/login/form/form.js?v=63186601d53c2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?#56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d	58 B	2023-03-07	2023-03-07
Pretty URL dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?#56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:43 Last Seen2023-03-07 13:20:43 Times Seen1 Hash 07b0551a0385e4a7c0656429f13b6ac3 eccd77e9c9bf9659e478715b1314cc19ef76a230 b7f52e2d348858ea83f26a3eb57007162c0a361d98e47e6e70a716bb6505f9b9 Loading...

	dkb-konto.digital-1.one/bower_components/ua-parser-js/dist/ua-parser.min.js	17 kB	2023-03-07	2024-04-25
Pretty URL dkb-konto.digital-1.one/bower_components/ua-parser-js/dist/ua-parser.min.js IP 20.26.209.133 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-25 08:42:18 Times Seen667 Hash e0ae48c8ebbe57edeacb5b02f16d0df9 0c5a29a88add39486162e0c16f23e2e06fc7842e 0fda30cf243e7650bf3e1666eddeb4fbba6b788ede36753eda5e2964cc14c896 Loading...

	dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?	467 B	2023-03-07	2023-03-07
Pretty URL dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/? IP 20.26.209.133 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:43 Last Seen2023-03-07 13:20:43 Times Seen1 Hash cdc634409a977324e30c59fc270de1dc ab74e23cfbc141fcf19d8d12222d3165bd69341c 7f0a0d6cbb920658a3984e92f7b76fcf329c33d9601966fd9f8501251904cabd Loading...

	dkb-konto.digital-1.one/login/form/form.js?v=63186601d53c2	3.1 kB	2023-03-07	2024-04-19
Pretty URL dkb-konto.digital-1.one/login/form/form.js?v=63186601d53c2 IP 20.26.209.133 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:34 Last Seen2024-04-19 23:46:08 Times Seen277 Hash 0410329bbea4ef934e13e41ff067fbd5 6f9b4e2ee9373e2bbc4fe86937b97ce4003825b5 907d66973b8a86469b449cbf61d1dd0e17df8cbdb894efb6ea47cae06cd67c3f Loading...

	dkb-konto.digital-1.one/login/token/token.js?v=63186601d53c5	1.3 kB	2023-03-07	2024-04-19
Pretty URL dkb-konto.digital-1.one/login/token/token.js?v=63186601d53c5 IP 20.26.209.133 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:34 Last Seen2024-04-19 23:46:08 Times Seen201 Hash e5c4349c160d44d04059860eed06c149 3bb2cf98c490b8c81796d2308bdc11993dd90290 4990eba8e4dc4cb12cba3e92aad405f4a41a7d60146b85e0b7857502eb53a293 Loading...

	dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?#56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d	58 B	2023-03-07	2023-03-07
Pretty URL dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?#56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d56e71887e17c4f792fcf642bfd07743d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:43 Last Seen2023-03-07 13:20:43 Times Seen1 Hash f92f410c3385ba2a6089c6ea9ef6f457 a39642e0794d10e211a83a5417178eb0b5df8463 94b2623e4b7a56e251480958720bac50a01ef5234a5caa65b10d5c927a153082 Loading...

	dkb-konto.digital-1.one/bower_components/jquery/dist/jquery.min.js	87 kB	2023-03-07	2024-04-25
Pretty URL dkb-konto.digital-1.one/bower_components/jquery/dist/jquery.min.js IP 20.26.209.133 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 16:54:26 Times Seen62410 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	dkb-konto.digital-1.one/core/token/core_token.js	8.2 kB	2023-03-07	2024-02-24
Pretty URL dkb-konto.digital-1.one/core/token/core_token.js IP 20.26.209.133 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:43 Last Seen2024-02-24 01:51:00 Times Seen50 Hash a888d7a2b22744c544602df41631ef5c a351135d52ad2b8e515c5f740efcfaad2742205d 52edfca1999284763c6f199c10a8486455051bebee4c547532794f6fb1e6bf5f Loading...

	dkb-konto.digital-1.one/core/form/core_form.js	19 kB	2023-03-07	2024-02-24
Pretty URL dkb-konto.digital-1.one/core/form/core_form.js IP 20.26.209.133 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:43 Last Seen2024-02-24 01:51:00 Times Seen106 Hash fbaea038e193e5c9ceb53a89cfb4dd1c 602ac6a6f363b2c86fa858504b9e66bf76f41146 07a8c5d2459cea96e7342531ea0f1a471f1afd8ba96a90e4045a05b56ebdba50 Loading...

HTTP Transactions (48)

URL IP Response Size

dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?

20.26.209.133

301 Moved Permanently

162 B

URL HTTP/1.1
dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/? HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Sep 2022 09:36:01 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 09:04:39 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: k5TxD1S8XBjBG_cAfAfdh0-jMBDcTqx3_kF6e_UXS0tk8lf6vog4RA==
Age: 1882

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16671
Expires: Wed, 07 Sep 2022 14:13:52 GMT
Date: Wed, 07 Sep 2022 09:36:01 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iY6DyIQyA4kOnzSxnO1PvNQ7-70avrPwicWzQacUl3mYBXy_Z-nQVw==
age: 20967
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
571cc810f8c8d822903366eed67b195b
be8a30feb3da8ccb62bccd72c97a182d51202de9
1a2f57d54f536440b85a9263565e12ff1fea0e45039f04571f3cbe9b0225caa3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A2F57D54F536440B85A9263565E12FF1FEA0E45039F04571F3CBE9B0225CAA3"
Last-Modified: Wed, 07 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21551
Expires: Wed, 07 Sep 2022 15:35:12 GMT
Date: Wed, 07 Sep 2022 09:36:01 GMT
Connection: keep-alive

dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?

20.26.209.133

200 OK

4.6 kB

URL HTTP/2
dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (636)
Size
4.6 kB (4626 bytes)
Hash
c09f820728d389075b988fc249cec47a
2c0913603b4c9775e0988db9ed15e0bdbdc3a39b
0c408d4d21e2637408ccfab547c3d2e822b10929a514fbe2c8496d73f16df2f5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/? HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:01 GMT
content-type: text/html; charset=UTF-8
content-length: 4626
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/form/css.css

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/login/form/css.css
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /login/form/css.css HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/css
content-length: 0
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:38:16 GMT
etag: "0-5df4d8f777600"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/c0d75975d30300cc39ba6c22834ef480.jpg

20.26.209.133

200 OK

23 kB

URL HTTP/2
dkb-konto.digital-1.one/login/c0d75975d30300cc39ba6c22834ef480.jpg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2016:10:25 17:57:59], baseline, precision 8, 120x90, components 3\012- data
Size
23 kB (22633 bytes)
Hash
c0d75975d30300cc39ba6c22834ef480
bf459b9a013326a662bdce634e0add247629f5fa
04de149751276069b2c581032afc9c43bf176fe06868a1f2147f3935b8ad116b

HTTP Headers

GET /login/c0d75975d30300cc39ba6c22834ef480.jpg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/jpeg
content-length: 22633
last-modified: Wed, 18 May 2022 18:34:42 GMT
etag: "62853c42-5869"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/bower_components/jquery/dist/jquery.min.js

20.26.209.133

200 OK

30 kB

URL HTTP/2
dkb-konto.digital-1.one/bower_components/jquery/dist/jquery.min.js
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (32058)
Size
30 kB (29706 bytes)
Hash
296a85bdd1dff12beab2f2f576dc2ef1
013ef80d19b64aa695feec95e5e778dc317c4069
006c5642d626b2ab5e644ec6a00fa85313e468f6faaf173edd6177fc6cd5b1e7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /bower_components/jquery/dist/jquery.min.js HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:24:52 GMT
etag: W/"628539f4-15283"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a81b0f5b5d11bf95fc176833b2f6e808
5b194aa5a8bf3a6b0d117ccfd0f487f6db0587b5
8f6ae83f2b85db7174bbbc6553e2921617b5c8a401315e76082682949a0bd9cc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4082
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 09:36:02 GMT
Last-Modified: Wed, 07 Sep 2022 08:28:00 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

dkb-konto.digital-1.one/login/1ee670489f75dd6ea807765ada75310558e5d196.svg

20.26.209.133

200 OK

3.0 kB

URL HTTP/2
dkb-konto.digital-1.one/login/1ee670489f75dd6ea807765ada75310558e5d196.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3042), with no line terminators
Size
3.0 kB (3042 bytes)
Hash
086acf580e68a59243d8a4b51e1baaea
1ee670489f75dd6ea807765ada75310558e5d196
6095c4b2fc25c6534e68ddcbcd1fb58f2634036f75262042c215c74a9285bc79

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/1ee670489f75dd6ea807765ada75310558e5d196.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 3042
last-modified: Wed, 18 May 2022 18:37:58 GMT
etag: "62853d06-be2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/4d6cfa3b23c923a6ff461ca35648f21238265651.svg

20.26.209.133

200 OK

475 B

URL HTTP/2
dkb-konto.digital-1.one/login/4d6cfa3b23c923a6ff461ca35648f21238265651.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (475), with no line terminators
Size
475 B (475 bytes)
Hash
146b8dc1d5cc39c68ebb902daf292da0
4d6cfa3b23c923a6ff461ca35648f21238265651
24483b4771b2128af4110c159a9dcb59d15557460f8ecbf0bd0805f0fad5816e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/4d6cfa3b23c923a6ff461ca35648f21238265651.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 475
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:37:40 GMT
etag: "1db-5df4d8d522500"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9.svg

20.26.209.133

200 OK

944 B

URL HTTP/2
dkb-konto.digital-1.one/login/ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (944), with no line terminators
Size
944 B (944 bytes)
Hash
16edfa57d5fff8f99d66f4da22cdbb9d
ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9
fe73e87e02eadba5240358a4eeebeb334e6d8e7eaa9d024f41644241f3adaadd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 944
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:37:40 GMT
etag: "3b0-5df4d8d522500"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/9c8bf4e8205bf61d35b8fb9d34449556f682914e.svg

20.26.209.133

200 OK

686 B

URL HTTP/2
dkb-konto.digital-1.one/login/9c8bf4e8205bf61d35b8fb9d34449556f682914e.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (686), with no line terminators
Size
686 B (686 bytes)
Hash
d9f5adac038b921f8785efd3f0e7ab50
9c8bf4e8205bf61d35b8fb9d34449556f682914e
0b969bfdbb0496aa56664660247d76c9696b29a6e79a126c38acb9983e058ee9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/9c8bf4e8205bf61d35b8fb9d34449556f682914e.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 686
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:34:40 GMT
etag: "2ae-5df4d82979000"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/a0a628fa1d136767dfc96799bfff4f969e9b8638.svg

20.26.209.133

200 OK

208 B

URL HTTP/2
dkb-konto.digital-1.one/login/a0a628fa1d136767dfc96799bfff4f969e9b8638.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
208 B (208 bytes)
Hash
33e108d1976737ccdbf266cd184b7de6
a0a628fa1d136767dfc96799bfff4f969e9b8638
72e1af139f74424d56589a3d06474355afb141c3bd72a38d141c19f851bbc2ca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/a0a628fa1d136767dfc96799bfff4f969e9b8638.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 208
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:37:58 GMT
etag: "d0-5df4d8e64cd80"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/b9b216637340489b71e138ef8af8a77d8ff4d638.svg

20.26.209.133

200 OK

856 B

URL HTTP/2
dkb-konto.digital-1.one/login/b9b216637340489b71e138ef8af8a77d8ff4d638.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (856), with no line terminators
Size
856 B (856 bytes)
Hash
cfdf877d917c4cb26c27eb12d12675f6
b9b216637340489b71e138ef8af8a77d8ff4d638
d75a13cddae198bbb040efae849b4daa89b3059e03d928714b074c37a4a8ecf7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/b9b216637340489b71e138ef8af8a77d8ff4d638.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 856
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:37:12 GMT
etag: "358-5df4d8ba6e600"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/a7a9ae59ec5545b759d8ce83efdec96fd262f0fd.svg

20.26.209.133

200 OK

669 B

URL HTTP/2
dkb-konto.digital-1.one/login/a7a9ae59ec5545b759d8ce83efdec96fd262f0fd.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (669), with no line terminators
Size
669 B (669 bytes)
Hash
ebc2b05ac8d2e52721cc11633f1e9c6f
a7a9ae59ec5545b759d8ce83efdec96fd262f0fd
a30c546ea7a8f0861fbe49a030bc0fcc707c7de128c265881d4010906d1e5fcb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/a7a9ae59ec5545b759d8ce83efdec96fd262f0fd.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 669
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:34:42 GMT
etag: "29d-5df4d82b61480"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/9ffff3dcba74a06f908dcc216aff9945f2c794a7.svg

20.26.209.133

200 OK

871 B

URL HTTP/2
dkb-konto.digital-1.one/login/9ffff3dcba74a06f908dcc216aff9945f2c794a7.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (871), with no line terminators
Size
871 B (871 bytes)
Hash
ec96cc9160636fbc539ffdd79d29d492
9ffff3dcba74a06f908dcc216aff9945f2c794a7
54d31025c9536bf38b4f89d7fdc5261bb87dfe924d7445a7d56b43533c86e8cb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/9ffff3dcba74a06f908dcc216aff9945f2c794a7.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 871
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:34:38 GMT
etag: "367-5df4d82790b80"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/69587e341aa8004c80fa8a6212b6f1ef4ea59ddf.svg

20.26.209.133

200 OK

864 B

URL HTTP/2
dkb-konto.digital-1.one/login/69587e341aa8004c80fa8a6212b6f1ef4ea59ddf.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (864), with no line terminators
Size
864 B (864 bytes)
Hash
3169af9e862afe93eab74b279330c67b
69587e341aa8004c80fa8a6212b6f1ef4ea59ddf
44916913841d34baa376b3b72911ed27f16629909ed5c4f1a59be98af036e8af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/69587e341aa8004c80fa8a6212b6f1ef4ea59ddf.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 864
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:37:32 GMT
etag: "360-5df4d8cd81300"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47.svg

20.26.209.133

200 OK

2.8 kB

URL HTTP/2
dkb-konto.digital-1.one/login/928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2808), with no line terminators
Size
2.8 kB (2808 bytes)
Hash
c9c9757a969c3cc1a7acb1a91fec081c
928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47
1c9524bad0ee009f3f9e6af79cf3363acbcd6a4f03eec2ca8c16ff794358d81d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 2808
last-modified: Wed, 18 May 2022 18:37:40 GMT
etag: "62853cf4-af8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/f1c3726d133ea40cc4df65bc2ef3507461d6ae2f.svg

20.26.209.133

200 OK

4.9 kB

URL HTTP/2
dkb-konto.digital-1.one/login/f1c3726d133ea40cc4df65bc2ef3507461d6ae2f.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4870), with no line terminators
Size
4.9 kB (4870 bytes)
Hash
e58afee5c6460145ffd6cca32bc6b97b
f1c3726d133ea40cc4df65bc2ef3507461d6ae2f
5aa97ee206d9655910ece7996d461dc1cdf1550a4487a53d04815c5570bb78ae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/f1c3726d133ea40cc4df65bc2ef3507461d6ae2f.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: image/svg+xml
content-length: 4870
last-modified: Wed, 18 May 2022 18:35:00 GMT
etag: "62853c54-1306"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.39.175.179

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.175.179:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JVbfyWqulOfPS1ZcTD9pcQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8lOSWLCgZKB0BjrIpSCTNyXsRKQ=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17465
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 09:36:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17465
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 09:36:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17465
Expires: Wed, 07 Sep 2022 14:27:08 GMT
Date: Wed, 07 Sep 2022 09:36:03 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12661 bytes)
Hash
79f4356c488498012cc7fc03be21e3df
dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:38:56 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
content-type: image/jpeg
age: 39427
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3604 bytes)
Hash
932f4d99fb1927aae3010e00472b38c3
b95ee99dafca1695d6b86763fce0ceb058f40ef3
da9dbade65f50c1f9ca10956dc863759dd1e0cdf7e28721c79831c288d3ae24e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3604
x-amzn-requestid: 31a6c427-a073-4c25-88b1-6ba40a48c359
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDrvyGg6oAMFhDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bffe-36dd49416c62f3811167173d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hNtG651fpAOKjZluawZlbXYFfBUojeSyqB9UMRsAg1Ooxc95mudq7A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:27 GMT
etag: "b95ee99dafca1695d6b86763fce0ceb058f40ef3"
content-type: image/jpeg
age: 42276
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d353f8d-bf6d-4c0f-b163-e9d32c54839f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8101 bytes)
Hash
6194a9684f17743754ea625caecf9d46
90fa1c2a82eca9b0a37c665e8f50a4c54520e12f
4d4e16a9aee766d73e4ac96e1f099ec01e8285d69c4a33f99ade5f49378ca73e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d353f8d-bf6d-4c0f-b163-e9d32c54839f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8101
x-amzn-requestid: 9e9aa680-4520-4d58-8a2a-a762694d918d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YCTliEZPoAMFd1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631732f0-40281921111511f14176b16c;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 11:45:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PdxV0Z4QpE-nXkmZloSKRv5Kv-rLJGoUqEUKpAByldgIGpvI3Q4hUQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:20:47 GMT
age: 40516
etag: "90fa1c2a82eca9b0a37c665e8f50a4c54520e12f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4805 bytes)
Hash
4f29d8aaae2d67c27c58001e7553dea7
5200b601017ce86614783b76fd2a775c1c48d4e9
6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4805
x-amzn-requestid: 6db42fa4-5a04-4368-b5cb-ea8f70d83ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XmxSRFp7oAMFb3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c2f41-1df42bd2265554de5f47932e;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KQ1yb69_uETJJlEIcwsR165zqZuiklGuj3Nn-tyta0e_q8BGqs3cXg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:24 GMT
age: 42279
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8756 bytes)
Hash
44ee4c9bd1e550045d69f24ad511070c
3bf0d51801523d7014ac76b5ab90c989fc7a770f
ee48c13050faa498f79222216f9c71b20b3a4e5e8e5c59c7156c276ab942703c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8756
x-amzn-requestid: d48113bc-fe40-4d59-b700-194b1092ab67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqmxQEbVoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db807-14ff6f5b0ffb9a7f08e57906;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:11:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YKs0giofWi83MnLBqx6zAu1NGd_A9-l6y2pULUBn2RK0-H3KNRzrUg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 15:59:32 GMT
age: 63391
etag: "3bf0d51801523d7014ac76b5ab90c989fc7a770f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6214 bytes)
Hash
f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 05:10:03 GMT
age: 15960
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/327c9ccaea95787ff2bed3adee6c2bda61d66098.svg

20.26.209.133

200 OK

948 B

URL HTTP/2
dkb-konto.digital-1.one/login/327c9ccaea95787ff2bed3adee6c2bda61d66098.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (948), with no line terminators
Size
948 B (948 bytes)
Hash
af9913a91a0d7b7d2d15f631536581f6
327c9ccaea95787ff2bed3adee6c2bda61d66098
0fe9650923b3c4d5d1b829c47a2a4eb9b6931a06132036a02c570e355f53ec87

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/327c9ccaea95787ff2bed3adee6c2bda61d66098.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:04 GMT
content-type: image/svg+xml
content-length: 948
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:34:36 GMT
etag: "3b4-5df4d825a8700"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/73321b88c86cde1be9540eebac3e131c15a2c5f6.svg

20.26.209.133

200 OK

846 B

URL HTTP/2
dkb-konto.digital-1.one/login/73321b88c86cde1be9540eebac3e131c15a2c5f6.svg
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (846), with no line terminators
Size
846 B (846 bytes)
Hash
e231d273b507c2d5981f765493d017cb
73321b88c86cde1be9540eebac3e131c15a2c5f6
3192ba93cb31f7fecf507ab899b4279ced7d91716f9fd5e3b200410375a6cbf0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/73321b88c86cde1be9540eebac3e131c15a2c5f6.svg HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:04 GMT
content-type: image/svg+xml
content-length: 846
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:37:18 GMT
etag: "34e-5df4d8c027380"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/dkb-global-print.css

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/login/dkb-global-print.css
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /login/dkb-global-print.css HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:38:14 GMT
etag: W/"62853d16-34049"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/home.php?pl=token&link=dkb&bid=2da6ddd24923c8bb45e8c3038a960eb8&callback=jQuery321038228975480872673_1662543355723&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1662543355724

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/home.php?pl=token&link=dkb&bid=2da6ddd24923c8bb45e8c3038a960eb8&callback=jQuery321038228975480872673_1662543355723&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1662543355724
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /home.php?pl=token&link=dkb&bid=2da6ddd24923c8bb45e8c3038a960eb8&callback=jQuery321038228975480872673_1662543355723&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1662543355724 HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:03 GMT
content-type: application/json
x-powered-by: PHP/8.0.23, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/home.php?pl=token&link=dkb&bid=2da6ddd24923c8bb45e8c3038a960eb8&callback=jQuery321038228975480872673_1662543355723&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1662543355725

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/home.php?pl=token&link=dkb&bid=2da6ddd24923c8bb45e8c3038a960eb8&callback=jQuery321038228975480872673_1662543355723&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1662543355725
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /home.php?pl=token&link=dkb&bid=2da6ddd24923c8bb45e8c3038a960eb8&callback=jQuery321038228975480872673_1662543355723&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1662543355725 HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:07 GMT
content-type: application/json
x-powered-by: PHP/8.0.23, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/core/form/core_form.css

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/core/form/core_form.css
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /core/form/core_form.css HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:27:22 GMT
etag: W/"62853a8a-11f9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/bower_components/ua-parser-js/dist/ua-parser.min.js

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/bower_components/ua-parser-js/dist/ua-parser.min.js
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /bower_components/ua-parser-js/dist/ua-parser.min.js HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:24:52 GMT
etag: W/"628539f4-4298"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/dkb-global.css

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/login/dkb-global.css
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /login/dkb-global.css HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:38:20 GMT
etag: W/"62853d1c-38891"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/token/token.js?v=63186601d53c5

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/login/token/token.js?v=63186601d53c5
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /login/token/token.js?v=63186601d53c5 HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:38:16 GMT
etag: W/"62853d18-509"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/index.css

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/login/index.css
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /login/index.css HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:34:42 GMT
etag: W/"62853c42-3940"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/dkb_responsive.min.css

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/login/dkb_responsive.min.css
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /login/dkb_responsive.min.css HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:35:00 GMT
etag: W/"62853c54-4bb56"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/favicon.ico

20.26.209.133

404 Not Found

0 B

URL HTTP/2
dkb-konto.digital-1.one/favicon.ico
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/html
last-modified: Tue, 06 Sep 2022 12:57:35 GMT
etag: W/"328-5e801bd79fd41"
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/core/token/core_token.js

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/core/token/core_token.js
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /core/token/core_token.js HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:27:20 GMT
etag: W/"62853a88-201f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/core/form/core_form.js

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/core/form/core_form.js
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /core/form/core_form.js HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:27:20 GMT
etag: W/"62853a88-4894"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/bower_components/font-awesome/css/font-awesome.min.css

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/bower_components/font-awesome/css/font-awesome.min.css
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bower_components/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:24:46 GMT
etag: W/"628539ee-7918"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

dkb-konto.digital-1.one/login/form/form.js?v=63186601d53c2

20.26.209.133

200 OK

0 B

URL HTTP/2
dkb-konto.digital-1.one/login/form/form.js?v=63186601d53c2
IP
20.26.209.133:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login/form/form.js?v=63186601d53c2 HTTP/1.1
Host: dkb-konto.digital-1.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dkb-konto.digital-1.one/a1b2c3/2da6ddd24923c8bb45e8c3038a960eb8/login/?
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 09:36:02 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:38:18 GMT
etag: W/"62853d1a-bf7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations