Report - activacionproductosenlinea.online.focodistribuidora.com.br/

Report Overview

Visited public
2023-11-26 13:15:20
Tags
URL
activacionproductosenlinea.online.focodistribuidora.com.br/
Finishing URL
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
IP / ASN
144.217.28.12
#16276 OVH SAS
Title
Bancolombia Sucursal Vrtual Personas

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ka-f.fontawesome.com	3598	2012-10-18	2019-12-17 07:36:13	2023-11-26 09:42:00	2.3 kB	33 kB	172.64.204.20
kit.fontawesome.com	1868	2012-10-18	2019-12-16 20:51:31	2023-11-26 05:09:04	537 B	12 kB	104.18.40.68
activacionproductosenlinea.online.focodistribuidora.com.br	unknown	unknown	No data	No data	20 kB	99 kB	144.217.28.12

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia
2023-11-26	medium	activacionproductosenlinea.online.focodistribuidora.com.br/	Bancolombia

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	kit.fontawesome.com/45b9078c9f.js	ScriptElement	12 kB	2023-08-03	2023-11-27
Pretty URL kit.fontawesome.com/45b9078c9f.js IP 104.18.40.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-03 05:21 Last Seen2023-11-27 05:17 Times Seen185 Hash e8e4f917ed26e3a1d2f26077eee3f73c b37c96d5deda15c3754f058f8f42ecc4fb9e4970 8212039d17d158453c6305a5ca08559ca48007be17b5fc214a00b57461e9d8a4 Loading...

HTTP Transactions (42)

URL IP Response Size

activacionproductosenlinea.online.focodistribuidora.com.br/

144.217.28.12

302 Found

0 B

URL User Request GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET / HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:01 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia

144.217.28.12

301 Moved Permanently

707 B

URL User Request GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sun, 26 Nov 2023 13:15:01 GMT
location: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/

144.217.28.12

200 OK

1.5 kB

URL User Request GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
1.5 kB (1467 bytes)
Hash
ecfff33c0df76be0ef910295c7bc5939
e4a13329fdf508fe8660a12aae82c38257681c93
10147ec2a2c320a5542c0ab92b538e118a3135c748aaae2d2548d2c8305fbad8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/ HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 1467
content-encoding: br
vary: Accept-Encoding
date: Sun, 26 Nov 2023 13:15:02 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/style.css

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/style.css
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/style.css HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:02 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/js/jquery-3.6.0.min.js

144.217.28.12

200 OK

30 kB

URL GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/js/jquery-3.6.0.min.js
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
ASCII text, with very long lines (65447)
Size
30 kB (30267 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/js/jquery-3.6.0.min.js HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Mon, 25 Nov 2024 13:15:02 GMT
content-type: application/x-javascript
last-modified: Thu, 17 Aug 2023 23:03:02 GMT
etag: "15d9d-64dea726-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30267
date: Sun, 26 Nov 2023 13:15:02 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/js/functions.js

144.217.28.12

200 OK

627 B

URL GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/js/functions.js
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
627 B (627 bytes)
Hash
8af5abaceb7aab4d3712364a8674c91e
513aad31ff5433feeae96d5a1e680e9809e9c94b
358971313397aed8ff6e3fa426350df56a66af33a92fa19d453539dffb5532e4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/js/functions.js HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Mon, 25 Nov 2024 13:15:02 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Aug 2023 02:53:24 GMT
etag: "a88-64e96924-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 627
date: Sun, 26 Nov 2023 13:15:02 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/assets/css/styles.css

144.217.28.12

200 OK

818 B

URL GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/assets/css/styles.css
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
ASCII text, with CRLF line terminators
Size
818 B (818 bytes)
Hash
5cb225fa9ab6c9221aaa33de5bc298c8
e3179335b46a6167a415211ee549f2fa051f14b8
679e86681ead4fb5cf742f76c17c594ec69c1adaa1c8f43ce5fe972681c47551

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /assets/css/styles.css HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Mon, 25 Nov 2024 13:15:02 GMT
content-type: text/css
last-modified: Tue, 25 Jul 2023 20:55:00 GMT
etag: "ba2-64c036a4-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 818
date: Sun, 26 Nov 2023 13:15:02 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/assets/css/usuario.css

144.217.28.12

200 OK

348 B

URL GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/assets/css/usuario.css
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
ASCII text, with CRLF line terminators
Size
348 B (348 bytes)
Hash
a411945916fc432a9576dcbbda99d211
f2be927c3ac3d3c2c4c475f209a15b2267faed84
90f7316713b7d96ed7aa0275fe98c48c961e570b6c3bfa90816bcb8e5a1d6b6e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /assets/css/usuario.css HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Mon, 25 Nov 2024 13:15:02 GMT
content-type: text/css
last-modified: Tue, 25 Jul 2023 20:55:00 GMT
etag: "4b1-64c036a4-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 348
date: Sun, 26 Nov 2023 13:15:02 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/img/logo.png

144.217.28.12

200 OK

32 kB

URL GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/img/logo.png
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
PNG image data, 2000 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Size
32 kB (31864 bytes)
Hash
76044090b872a8f6c4d073d96fb79808
782f78f226bcc3d2cf62888b7f1332df2683f3eb
b496c92cdecbef982ef0c50fd9de5cb3bd20fc480aeb3b3050df92d37b1f5d6a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/img/logo.png HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Mon, 25 Nov 2024 13:15:02 GMT
content-type: image/png
last-modified: Tue, 25 Jul 2023 20:55:06 GMT
etag: "7c78-64c036aa-0;;;"
accept-ranges: bytes
content-length: 31864
date: Sun, 26 Nov 2023 13:15:02 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/img/lineas.png

144.217.28.12

200 OK

22 kB

URL GET HTTP/2
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/img/lineas.png
IP
144.217.28.12:443
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type
PNG image data, 1366 x 514, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22022 bytes)
Hash
0cd46d2be51308a91c4b49a79442fd89
c5216da51257f35ff08351ab3b6eb48905bc6bb5
c42609679db76a5e156fdb90c0dd4b3e4bea76b8d3f4da90fcc472257fe70361

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/img/lineas.png HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Mon, 25 Nov 2024 13:15:02 GMT
content-type: image/png
last-modified: Tue, 25 Jul 2023 20:55:04 GMT
etag: "5606-64c036a8-0;;;"
accept-ranges: bytes
content-length: 22022
date: Sun, 26 Nov 2023 13:15:02 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/stylesheet.css

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/stylesheet.css
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/stylesheet.css HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:03 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:03 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:04 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:04 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:05 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-shims.min.css?token=45b9078c9f

172.64.204.20

200 OK

4.3 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-shims.min.css?token=45b9078c9f
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (27377)
Size
4.3 kB (4332 bytes)
Hash
da06df503ced6ee507b5fb4fa0999f74
d10d67ffa9c263e24c43b1df7fa3ba8f2dee2c36
236e285339a2a692e9491d356489cdf83513cfb1add049a0620123d644e47554

HTTP Headers

GET /releases/v6.4.2/css/free-v4-shims.min.css?token=45b9078c9f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://activacionproductosenlinea.online.focodistribuidora.com.br
DNT: 1
Connection: keep-alive
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 13:15:02 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"da06df503ced6ee507b5fb4fa0999f74"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 890956aa1c00640d3d3a57403fa234d0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: ApDHOdngM2Z6nboVedsBWh6NKGsKTZlM0jb9QfM2YJjILvh_ZeJW1g==
age: 16786
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37qVTZDR1nqlevF0WYlLltlOe1xrndQk0jWaIraIAdMQCb39AKdE99WrdW1Nid7Jbq2ps%2B151Xiiai%2B93NFQUt3qo78pHaayKacf%2BNkSbaOJRAnBTmkPMlqxWE38nOys70cqWza82A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c265df7b597780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:06 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:06 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:07 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:07 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:08 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:08 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:09 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:09 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:10 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-font-face.min.css?token=45b9078c9f

172.64.204.20

200 OK

628 B

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.4.2/css/free-v4-font-face.min.css?token=45b9078c9f
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (1560)
Size
628 B (628 bytes)
Hash
9b853b50f37dd0ca770ce0f294d427df
06cafaca197afda406bc5a72bcd6474758e51e65
6c58c4804370b9c347d517491c450416ca371fb1403aceaa1d6f751403b07c48

HTTP Headers

GET /releases/v6.4.2/css/free-v4-font-face.min.css?token=45b9078c9f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://activacionproductosenlinea.online.focodistribuidora.com.br
DNT: 1
Connection: keep-alive
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 13:15:02 GMT
content-type: text/css
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"9b853b50f37dd0ca770ce0f294d427df"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: fa-kit-token
access-control-max-age: 3000
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 329cb27be8d7871661ed5a94ecaacb28.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: DfXfb1aZOAgdfpR8Z42sKNsj3kEAIY_e0JrGL30Rpe9LY7YM1fGakA==
age: 16786
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gfhS5hDPXOOhVdPxO5WOBx5VLe9%2BtX3yr1d78W5n5ycLvetc63ap93Ke6SK1SvfkWNzkfcZTe83YuC6j%2Fn7shRwmNO5Vvi1w4fk9QCK0mEisvPN4qgNIaGAOvHrFkr1OWuTeyhLxXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c265df7b5c7780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:11 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:11 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:12 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:12 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.4.2/css/free.min.css?token=45b9078c9f

172.64.204.20

200 OK

23 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.4.2/css/free.min.css?token=45b9078c9f
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (65321)
Size
23 kB (23234 bytes)
Hash
ae737a19e46fd502ba9cbe9e33213861
a4b5d757af122c49259d4398807e62d4ca6f2493
5e0821588462d15b0ff8e911760fc041332c162e2e30ab4b1071bcc8eb6c8223

HTTP Headers

GET /releases/v6.4.2/css/free.min.css?token=45b9078c9f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://activacionproductosenlinea.online.focodistribuidora.com.br
DNT: 1
Connection: keep-alive
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 13:15:02 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"ae737a19e46fd502ba9cbe9e33213861"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3c40a0775e2798dc9f20a237d0225e44.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: I0zlB294FAbQHrnfkc-1sygu8LT2aMy6kOZ0OzOn97mSrN0n5x8KOQ==
age: 16786
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A6t0lGzTnYXh6HGz%2Bm6gm17V%2FzuhiGPQy5mhxkI4mJ%2FcIzmpFn509EAqnlRhZdz0%2Bm2Xt1Ja5oaVI75OGH3p%2Bkr9Qr%2F9ODsgRkvKJFmUJv8a0eKEAcgQ5uOzveBh7SIIkH8MBHGw2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c265df7b517780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:13 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:14 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:14 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:15 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:15 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:16 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:16 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:17 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia

144.217.28.12

0 B

URL GET
activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/css/bancolombia
IP
144.217.28.12:0
ASN
#16276 OVH SAS

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerLet's Encrypt
Subjectwww.mobile-segure.focodistribuidora.com.br
FingerprintF4:EE:A4:3F:34:D6:31:6C:02:4A:3A:88:79:5B:D7:B8:F5:B2:B7:2D
ValiditySat, 25 Nov 2023 23:45:18 GMT - Fri, 23 Feb 2024 23:45:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Bancolombia

HTTP Headers

GET /bancolombia/css/bancolombia HTTP/1.1
Host: activacionproductosenlinea.online.focodistribuidora.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
location: bancolombia
content-type: text/html; charset=UTF-8
content-length: 0
date: Sun, 26 Nov 2023 13:15:17 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.4.2/css/free-v5-font-face.min.css?token=45b9078c9f

172.64.204.20

200 OK

823 B

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.4.2/css/free-v5-font-face.min.css?token=45b9078c9f
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (845), with no line terminators
Size
823 B (823 bytes)
Hash
60f771d70194eee2f6ca53f652629c57
80569fe18344d0c3f526479a886fba91d2de0aca
64d1a9645b5b437137ca6c04f5aa6bedd4fe5d102c592894411232a7121e7b02

HTTP Headers

GET /releases/v6.4.2/css/free-v5-font-face.min.css?token=45b9078c9f HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://activacionproductosenlinea.online.focodistribuidora.com.br
DNT: 1
Connection: keep-alive
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 13:15:02 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
etag: W/"dbf296002d53e56d340b105d9d764940"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 d6030d5ab753695c0198f874d4276eb2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: 67UKxubzRaNN1yu4k82_sb20a7KYkbmma355xU7fIvzw0h0mM5rq9A==
age: 16786
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=szga%2BeI4FIzUDqkgSSX3bYzOPihlAaf%2FrHt6TLkF7O2Ea%2B70IMWdkLv%2BkVTNjSv1SaSEbr9lTcmH%2BchFlH1QYwtOaIixyWIgHMHlkzHguX3OZsGUQqmu3Exr2bMx1zwbDBuhVJizew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c265df7b577780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

kit.fontawesome.com/45b9078c9f.js

104.18.40.68

200 OK

12 kB

URL GET HTTP/2
kit.fontawesome.com/45b9078c9f.js
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://activacionproductosenlinea.online.focodistribuidora.com.br/bancolombia/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (11213)
Size
12 kB (11642 bytes)
Hash
e8e4f917ed26e3a1d2f26077eee3f73c
b37c96d5deda15c3754f058f8f42ecc4fb9e4970
8212039d17d158453c6305a5ca08559ca48007be17b5fc214a00b57461e9d8a4

HTTP Headers

GET /45b9078c9f.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://activacionproductosenlinea.online.focodistribuidora.com.br
DNT: 1
Connection: keep-alive
Referer: https://activacionproductosenlinea.online.focodistribuidora.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 13:15:02 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F5sulTnAsVoe5X6UKeih
cf-cache-status: MISS
server: cloudflare
cf-ray: 82c265dd8861712a-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (42)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP