Report - signup-live-com.o365.ams.skyfencenet.com/MobileError.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e

Report Overview

Submitted URL
signup-live-com.o365.ams.skyfencenet.com/MobileError.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e
IP
157.167.155.85
ASN
#16509 AMAZON-02
Submitted
2024-04-24 19:27:50
Access
public
Website Title
Microsoft account
Final URL
signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
signup-live-com.o365.ams.skyfencenet.com	unknown	2013-08-16	2023-04-14	2024-04-18	8.6 kB	150 kB	157.167.155.85
acctcdn-msftauth-net.o365.ams.skyfencenet.com	unknown	2013-08-16	2023-05-04	2024-04-18	2.3 kB	143 kB	157.167.155.85

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-01	medium	signup-live-com.o365.ams.skyfencenet.com/	Outlook
2024-04-01	medium	signup-live-com.o365.ams.skyfencenet.com/	Outlook
2024-04-01	medium	signup-live-com.o365.ams.skyfencenet.com/	Outlook
2024-04-01	medium	signup-live-com.o365.ams.skyfencenet.com/	Outlook
2024-04-01	medium	signup-live-com.o365.ams.skyfencenet.com/	Outlook
2024-04-01	medium	signup-live-com.o365.ams.skyfencenet.com/	Outlook
2024-04-01	medium	signup-live-com.o365.ams.skyfencenet.com/	Outlook

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_ajax_hook.js	6.3 kB	2023-03-08	2024-04-29
Pretty URL signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_ajax_hook.js IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:24:58 Last Seen2024-04-29 19:37:08 Times Seen320 Hash f969bab2aeac15ae39a5d1f81e7b5b76 3b2c77372698e7d3bc391f11d1c6632464973e33 198126ad3f4d583b32e828ed9c86a9ef0a3b7e2c8292b1422cd931a722da5418 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	305 B	2023-03-07	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 18:25:39 Last Seen2024-04-27 17:37:21 Times Seen1854 Hash 3d591b7b02497aa1481868ee69fdfcf7 2acbc8c0fe84c3d74b6232199b9e053bc26de1a9 c934c218e5c1689830b7e249ca59df67ef91b840b7ff00af63fe9cf18b20785c Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	52 kB	2023-04-29	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-29 08:17:22 Last Seen2024-04-27 17:37:21 Times Seen53 Hash 300a49a51be9ad2ffc80463c39d7e625 9df980842f756d6eeb20e562cd4880a7a18374c6 7988531d497800d857e07daadb27d8b81be55a13715ea70ce61b85aed0bc0ecf Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	924 B	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1800 Hash 0584085d6eae516f913f95f7589214cc 686833b94ddfa8a78f6c4b52f0764cf132f7e8b2 8e0b4809c8ab274fd0f5fe5df60a7a9c7ac87bd60a7efe1e8c7dc9ad172a8710 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	380 B	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1800 Hash f819a1193f4c0e58b3c8aa282f42aeda 6caff99b87f22e9d3becb75690b5f307e758f60a 59014816faf273673c791ffddd151f3427003a8da57b37779fb894212ab1d57d Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	183 B	2023-03-07	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 18:25:39 Last Seen2024-04-27 17:37:21 Times Seen561 Hash 65a6484cb6d6e4bb2d5b3bbe8a709e26 5677524d8051f415f06a2c967518a956734ad22f e840789aa61c23c5fd2d0d61673ab07491daa0bffc4447dceb5297d957fa1231 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	19 kB	2024-04-24	2024-04-24
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 21:27:51 Last Seen2024-04-24 21:27:51 Times Seen1 Hash c4bd63cf865c68978ea2f3b96ab57594 3ec7096b2b9494d19e0ff360dc5c9fd061f3b276 5be804db1225fe3ce8e47ea27b08b7ab4672ee4b27cba1e5f6ef344160d988e3 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	23 kB	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1353 Hash 5b06c4cf73af3d013f9da413636d1159 5edb2785582ede6965a54b7fe6be527316c1cbfd 306ceb2d94f6783ac4180170ff8a11eec72981f80efe5936d47d94bc1421d2e4 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	2.8 kB	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1353 Hash ad1f2d85fcbaf654deff01b6ebf730e4 26d9315d06f39b623ff877bb20cebb033fee6958 26445ab08ef4647c7cc2851d75f4860c1d9f798eb2d9c40b90dc588db641ec5c Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	2.7 kB	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1353 Hash 365a1cfb44b084b5a036f3a9d872eab9 55ae71029d8ce87d439f6ebbec83fa1ceb977747 b37b9fcd5cb2ec282d51a55a0df2577b883f32d8a2fa6a08f9829015fb56282e Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	60 kB	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1353 Hash da4ecb8ba81100d0d1f8edf158b1e9d4 40242f418681faf61ec2508cd1c97dc930a2a47e a5b9a25b02cfe63c9d1fb5145effa559f1700df55b5f42576b60368e90aa115f Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	115 B	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1360 Hash 43d51ed22cd8b1d95852dd0141df0eff 8dbf49b69c8c1d7a69f04e95808727d778673e2f a10ad6910d29dbd32ba2f5fa9b9c7d5d9cf0ceff19e234017711a31fbbc18c1b Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	885 B	2023-08-21	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-21 23:55:12 Last Seen2024-04-27 17:37:21 Times Seen19 Hash 8dcfa85103bc9c32e1c2b87dd8bc2496 da89644f280baaaf8f20371033556f570d260cee 3a5929c3fcc66f2c34bddd8f781bb610e6fe98e95fb4d36ef0358a800058c9d3 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	3.4 kB	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:21 Times Seen1797 Hash d08f0e1ac6ac6edb8b4b496de6676e45 a2067b3a76b41d7c7616438ab00fd0f3facab7dd 9ecb3187196c746c286ff291a45ae2be223a9e5b78847a819cf69aa40621f184 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	1.4 kB	2023-08-21	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-21 23:55:12 Last Seen2024-04-27 17:37:22 Times Seen1355 Hash 733b537f6eac98112fea19cf050b3a68 0dbaab7e1f1304a9095a134f4a01ba0d93f25bf4 9fa240bc761a221a99b7e4b1fb40b902244b8134b43ea2f5e2716db6d97993e5 Loading...

	signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_event_listener_hook.js	1.8 kB	2023-03-08	2024-04-29
Pretty URL signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_event_listener_hook.js IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:24:58 Last Seen2024-04-29 19:37:08 Times Seen548 Hash 1f737f56e7bdc64e8b061b77939eee2a e6f0b0fb1d97fbf1ad5b269ecdec27ca321c8da5 a860b9561b1615b3dca00ef253ebc8f398b346e13042dc6bef68ccac5da536ad Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	923 B	2024-04-24	2024-04-24
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 21:27:51 Last Seen2024-04-24 21:27:51 Times Seen1 Hash 7f4666313882a3ab8ba207e12618f064 ddd0051a317fa2db29f2cea341035961c3fb8b3a b7d5078df26eb818a174e722ac04c8e147994bf7cf8019f0576948a9f23cb711 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	18 kB	2023-07-13	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-13 00:54:26 Last Seen2024-04-27 17:37:22 Times Seen40 Hash 31fb192f22c7242843aac111b10e5602 93b22a32b6ff555e11e892346bc7721cdb14b416 d657ff10f89faff99857f00a1b4e6b5af6342acb9b54975ce14e07dd0897acd8 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	2.1 kB	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:22 Times Seen1359 Hash b564dd44b5cf39b312fc46567d68e80d 4d28d1fff35c98ff7cac149c3cfb3d3ddf1f95a4 1a0d251a0f587e7eb5ab9d4dc8e916deec5cac4558356b5063c92ff4a5dbf5b2 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	874 B	2024-02-20	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-20 12:39:07 Last Seen2024-04-27 17:37:22 Times Seen9 Hash 3a38f30054da0ffbd1e89a7eabca2403 8bb19cdb70f19726f6897ef648e122e517996095 362cb9d87a5a8e1f16757ab142e0e90390d0b0104feb7ad15bbe0b2b4cd9e0a6 Loading...

	acctcdn-msftauth-net.o365.ams.skyfencenet.com/datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js	8.1 kB	2023-03-07	2024-04-27
Pretty URL acctcdn-msftauth-net.o365.ams.skyfencenet.com/datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:25:39 Last Seen2024-04-27 17:37:22 Times Seen3533 Hash 87effb0bb533c1d79f5c94fd9e30c14d 4e4f5f3cddddbfddb46a1626d7ce579a639de389 617e32ca57507098771fd30af6b9dcab063448f6d7e0bc6d6557dd1895f80543 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	220 B	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:22 Times Seen1356 Hash e32d670c132a864676cec69f6fffd171 5a9ef940063dad29873fd569a6ad1178f9fec48b a3a86adebbe88f50160c791dde4c9730d45931c3217d7666f4744e653bc3ebf5 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	514 B	2023-10-30	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-30 19:16:07 Last Seen2024-04-27 17:37:22 Times Seen32 Hash 4a73739636bf14116f796ce58cb9d41d 4038579c30d00476682a1bec89170e5d87c74afe 6ad749cbc5c79019053f16b1b4874f0c939d56fdb2858675f9dc06b732778767 Loading...

	acctcdn-msftauth-net.o365.ams.skyfencenet.com/oneds_MC5gQfpbTUjLu60sQCwU1w2.js?v=1	273 kB	2023-06-22	2024-04-27
Pretty URL acctcdn-msftauth-net.o365.ams.skyfencenet.com/oneds_MC5gQfpbTUjLu60sQCwU1w2.js?v=1 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-22 13:18:06 Last Seen2024-04-27 17:37:22 Times Seen88 Hash afba278001bec18bb958b37906f3e761 62249fd3f29df66c5d496f790640091b82d5fef2 59ab8a81f52e7786ef4e7e5a7b717295b8b1f9d633a790f5ac820fabc98699ab Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	4.0 kB	2023-03-12	2024-04-27
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 19:04:14 Last Seen2024-04-27 17:37:22 Times Seen1344 Hash 2bfa43ba4cf703617c5e91267aeaee21 cd35b37ec7039c168436015a9936e5f4d9442a17 dd46615be0e31d201311c45c09fc1ee1e0fc5f8e56e63d04b6389e4160d32d88 Loading...

	signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404	614 B	2023-03-08	2024-04-29
Pretty URL signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 IP 157.167.155.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 00:24:58 Last Seen2024-04-29 19:37:08 Times Seen189 Hash eaff8e995f4ab0dbba805800480dbc11 8bb01c892a8bc5a088c6eb3560bfef156feff0db 33d3f130db9110b568682402a697d7982649e49b21f885492a580a21d81f08fc Loading...

		Size	First Seen	Last Seen
	#1 Write - aeaf311f7c9c4fb33a72c9d4cda55e2f	62 B	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 01:28:04 Last Seen2024-05-04 01:28:44 Times Seen3015 Hash aeaf311f7c9c4fb33a72c9d4cda55e2f c6ef54340c06b2b0d1920b45d279439d101c77e3 9060f7f21935005d8aa85f5d626dcdc17518492b8f3f6c7208b9f2dfc3db68ce Loading...

HTTP Transactions (11)

URL IP Response Size

signup-live-com.o365.ams.skyfencenet.com/MobileError.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e

157.167.155.85

302 Found

238 B

URL User Request GET HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/MobileError.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
238 B (238 bytes)
Hash
43262f7a6357a696c7820d8899230074
01d3e0f279410b649a98b81f4c38f30a7f20c68d
f4d7cd024a719e0760959cc2f79714e3214ad9198882dfed2b33bffd8b9d3323

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /MobileError.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
P3P: CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR
X-Frame-Options: deny
X-UA-Compatible: IE=edge, chrome=1
x-ms-amserver: eusXXXX00LG (2.0.3302.0)
x-ms-amserver-tm: 0ms
x-ms-request-id: 9b4330be-624e-4ca1-a347-76f9861630fd
Referrer-Policy: strict-origin-when-cross-origin
AMServer: eusXXXXgn0000LG
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 6893A500F57A469BA23D198D6668856E Ref B: LON04EDGE0816 Ref C: 2024-04-24T19:27:24Z
Date: Wed, 24 Apr 2024 19:27:24 GMT
Set-Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; Domain=o365.ams.skyfencenet.com; Path=/; Secure; HttpOnly
__SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; Domain=.o365.ams.skyfencenet.com; Path=/; Secure; HttpOnly
Transfer-Encoding: chunked

signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404

157.167.155.85

200 OK

99 kB

URL User Request GET HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (10314), with CRLF, LF line terminators
Size
99 kB (98979 bytes)
Hash
3f25de3c9eb97466f6977cbf539de90c
b997a3900e916bb37a921bf9bb1c0a92cc6a914a
376bc93edab614dbdd93ce235fc7e94689a83a29fe37dcea39d6fd03c25495d8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
P3P: CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR
X-Frame-Options: deny
X-UA-Compatible: IE=edge, chrome=1
x-ms-amserver: SCUXXXX0008 (2.0.3311.1)
x-ms-amserver-tm: 62ms
x-ms-request-id: f370a8f1-4a4d-4f62-9b97-7c69a1d971b0
Link: <https://acctcdn.msftauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msftauth.net>; rel=preconnect; crossorigin, <https://acctcdn.msftauth.net>; rel=dns-prefetch, <https://acctcdn.msauth.net>; rel=dns-prefetch, <https://acctcdnmsftuswe2.azureedge.net>; rel=dns-prefetch, <https://acctcdnvzeuno.azureedge.net>; rel=dns-prefetch
X-DNS-Prefetch-Control: on
Referrer-Policy: strict-origin-when-cross-origin
AMServer: SCUXXXXIG000008
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: F370A8F14A4D4F629B977C69A1D971B0 Ref B: LON04EDGE0816 Ref C: 2024-04-24T19:27:24Z
Date: Wed, 24 Apr 2024 19:27:24 GMT
Content-Security-Policy-Report-Only: frame-src cert.ams.skyfencenet.com auth.ams.skyfencenet.com 'self'; base-uri 'self'; report-uri https://csp-microsoft-com.o365.ams.skyfencenet.com/report/MSA-UX-All
Set-Cookie: amcanary=0; path=/; secure; HttpOnly; SameSite=None
__SF__sfbid=1YwFpONcuzcf9b0f00; Domain=ams.skyfencenet.com; Path=/; Expires=Sat, 22 Apr 2034 19:27:25 GMT; SameSite=Lax; Secure; HttpOnly
Transfer-Encoding: chunked

signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_event_listener_hook.js

157.167.155.85

200 OK

1.8 kB

URL GET HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_event_listener_hook.js
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.8 kB (1849 bytes)
Hash
1f737f56e7bdc64e8b061b77939eee2a
e6f0b0fb1d97fbf1ad5b269ecdec27ca321c8da5
a860b9561b1615b3dca00ef253ebc8f398b346e13042dc6bef68ccac5da536ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /__sf_resource/_/__sf_event_listener_hook.js HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; amcanary=0; __SF__sfbid=1YwFpONcuzcf9b0f00
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Cache-Control: max-age=21600
X-Content-Type-Options: nosniff
Content-Length: 1849

signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_ajax_hook.js

157.167.155.85

200 OK

6.3 kB

URL GET HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/__sf_resource/_/__sf_ajax_hook.js
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
6.3 kB (6334 bytes)
Hash
f969bab2aeac15ae39a5d1f81e7b5b76
3b2c77372698e7d3bc391f11d1c6632464973e33
198126ad3f4d583b32e828ed9c86a9ef0a3b7e2c8292b1422cd931a722da5418

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /__sf_resource/_/__sf_ajax_hook.js HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; amcanary=0; __SF__sfbid=1YwFpONcuzcf9b0f00
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Cache-Control: max-age=21600
X-Content-Type-Options: nosniff
Content-Length: 6334

acctcdn-msftauth-net.o365.ams.skyfencenet.com/images/favicon.ico?v=2

157.167.155.85

200 OK

17 kB

URL GET HTTP/1.1
acctcdn-msftauth-net.o365.ams.skyfencenet.com/images/favicon.ico?v=2
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
Size
17 kB (17174 bytes)
Hash
12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

HTTP Headers

GET /images/favicon.ico?v=2 HTTP/1.1
Host: acctcdn-msftauth-net.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; __SF__sfbid=1YwFpONcuzcf9b0f00
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Age: 308695
Cache-Control: public, max-age=604800
Content-MD5: EuPayFgGHQiAI7K9SOL6lg==
Content-Type: image/x-icon
Date: Wed, 24 Apr 2024 19:27:25 GMT
Etag: 0x8DC61C017611702
Last-Modified: Sun, 21 Apr 2024 05:01:23 GMT
Server: ECAcc (lhc/78AE)
X-Cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 0ad754d0-601e-00d9-2dae-931d53000000
x-ms-version: 2009-09-19
Content-Length: 17174
Set-Cookie: __SF__sfbid=1YwFpONcuzcf9b0f00; Domain=ams.skyfencenet.com; Path=/; Expires=Sat, 22 Apr 2034 19:27:25 GMT; SameSite=Lax; Secure; HttpOnly

signup-live-com.o365.ams.skyfencenet.com/Resources/images/favicon.ico

157.167.155.85

200 OK

17 kB

URL GET HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/Resources/images/favicon.ico
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
Size
17 kB (17174 bytes)
Hash
12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /Resources/images/favicon.ico HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; amcanary=0; __SF__sfbid=1YwFpONcuzcf9b0f00
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Length: 17174
Content-Type: image/x-icon
Last-Modified: Wed, 10 Apr 2024 03:41:32 GMT
Accept-Ranges: bytes
ETag: "0fe7efaf88ada1:0"
P3P: CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR
AMServer: eusXXXXgn0000LD
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 2746471A3B5B43C088BDBC2544232286 Ref B: LON04EDGE0816 Ref C: 2024-04-24T19:27:25Z
Date: Wed, 24 Apr 2024 19:27:25 GMT
Set-Cookie: __SF__sfbid=1YwFpONcuzcf9b0f00; Domain=ams.skyfencenet.com; Path=/; Expires=Sat, 22 Apr 2034 19:27:25 GMT; SameSite=Lax; Secure; HttpOnly

acctcdn-msftauth-net.o365.ams.skyfencenet.com/datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js

157.167.155.85

200 OK

3.7 kB

URL GET HTTP/1.1
acctcdn-msftauth-net.o365.ams.skyfencenet.com/datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (746)
Size
3.7 kB (3719 bytes)
Hash
87effb0bb533c1d79f5c94fd9e30c14d
4e4f5f3cddddbfddb46a1626d7ce579a639de389
617e32ca57507098771fd30af6b9dcab063448f6d7e0bc6d6557dd1895f80543

HTTP Headers

GET /datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js HTTP/1.1
Host: acctcdn-msftauth-net.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/
Origin: https://signup-live-com.o365.ams.skyfencenet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Encoding: gzip
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Age: 309014
Cache-Control: public, max-age=604800
Content-MD5: GpB463eVzCq5vobQLSGoUw==
Content-Type: application/javascript
Date: Wed, 24 Apr 2024 19:27:25 GMT
Etag: 0x8DC61C00E1BF22D
Last-Modified: Sun, 21 Apr 2024 05:01:07 GMT
Server: ECAcc (lhc/7914)
Vary: Accept-Encoding
X-Cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: f51be461-301e-007c-7cad-935c3f000000
x-ms-version: 2009-09-19
Set-Cookie: __SF__sessionId=5b5a2a9a1b76a64362e1bb8dcdf64d; Domain=.o365.ams.skyfencenet.com; Path=/; Secure; HttpOnly
Transfer-Encoding: chunked

acctcdn-msftauth-net.o365.ams.skyfencenet.com/oneds_MC5gQfpbTUjLu60sQCwU1w2.js?v=1

157.167.155.85

200 OK

119 kB

URL GET HTTP/1.1
acctcdn-msftauth-net.o365.ams.skyfencenet.com/oneds_MC5gQfpbTUjLu60sQCwU1w2.js?v=1
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (54994), with CRLF, LF line terminators
Size
119 kB (119321 bytes)
Hash
afba278001bec18bb958b37906f3e761
62249fd3f29df66c5d496f790640091b82d5fef2
59ab8a81f52e7786ef4e7e5a7b717295b8b1f9d633a790f5ac820fabc98699ab

HTTP Headers

GET /oneds_MC5gQfpbTUjLu60sQCwU1w2.js?v=1 HTTP/1.1
Host: acctcdn-msftauth-net.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; __SF__sfbid=1YwFpONcuzcf9b0f00
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Encoding: gzip
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
Age: 308726
Cache-Control: public, max-age=604800
Content-MD5: aLM4Wm3/yNZOAZgyrMkY7Q==
Content-Type: application/javascript
Date: Wed, 24 Apr 2024 19:27:25 GMT
Etag: 0x8DC61C024BDDFEE
Last-Modified: Sun, 21 Apr 2024 05:01:45 GMT
Server: ECAcc (lhc/792B)
Vary: Accept-Encoding
X-Cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a8b75949-d01e-00f6-6bae-93057f000000
x-ms-version: 2009-09-19
Set-Cookie: __SF__sfbid=1YwFpONcuzcf9b0f00; Domain=ams.skyfencenet.com; Path=/; Expires=Sat, 22 Apr 2034 19:27:25 GMT; SameSite=Lax; Secure; HttpOnly
Transfer-Encoding: chunked

signup-live-com.o365.ams.skyfencenet.com/API/ReportClientEvent?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404

157.167.155.85

200 OK

499 B

URL POST HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/API/ReportClientEvent?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
JSON text data
Size
499 B (499 bytes)
Hash
002d0d59c0c6409e8e98ee6806d07044
16c701b3fa469589951c6d610054b6cd19121b09
cfd724685f080b3d942523f62813843f91d94d54b473100a745a450aa527a0b8

HTTP Headers

POST /API/ReportClientEvent?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404 HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Content-Type: application/json
canary: Z/Jc3s8jJwdfKy56I42eQrCihdPy20yc30nUVDbDnrXozDoApQWNx+e2MCjF+rqw2eR1w7tBiABCz2Lr4hXCwf780URxhxGgXitNOp5BvVX7urDzTw53SoI8azVrecu0hmcfLra5d5J6EjBj6QciruupOkqeTgmvS/hR9cN37x3sn6WKLw3KX6HRPTP0l871p9YW5y/nMMrVxnCkBu9aumkXIVlgS9EgzUM2Go2UsAKx2thm+6hp4O5cI4YTf4CJ:2:3c
x-ms-apiVersion: 2
x-ms-apiTransport: xhr
uiflvr: 1001
scid: 100145
hpgid: 200202
uaid: 3af78085f773465f9635760a38b9ca9e
tcxt: aljTB39hoRh150NBCZyQQSlaSh6J2PAqfuldYp7nRMQlP1R/kLDwm1hldPVdVRkGjzlBak2xpKYUxUYfalQJkOdLzdx9WCucqcoovWrBxiwtL8Dad5+mOfO73WWmtfWXv/ol9Ie334O6Fc/NmH9JVA==:2:3
Content-Length: 575
Origin: https://signup-live-com.o365.ams.skyfencenet.com
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; amcanary=0; __SF__sfbid=1YwFpONcuzcf9b0f00
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
P3P: CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR
X-Frame-Options: deny
x-ms-amserver: WUSXXXX009C (2.0.3302.0)
x-ms-amserver-tm: 140ms
x-ms-request-id: 3387b4ec-2afe-49e5-b955-70856aeac32a
Referrer-Policy: strict-origin-when-cross-origin
AMServer: WUSXXXXIG00009C
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 3387B4EC2AFE49E5B95570856AEAC32A Ref B: LON04EDGE0816 Ref C: 2024-04-24T19:27:25Z
Date: Wed, 24 Apr 2024 19:27:25 GMT
Set-Cookie: __SF__.live.com/amsc=T4j4vbs8UIeKKOCS6rwxBr20d5yYnBUldmmcC+zhpEhzx5TsmhkczUwEGaIldjXjxU0h6Pvmh8GgrBi9qOIU8JoGhqqkQdQGVOF4L9aqPa/h1nICOL2EoKk/tABnWJAOf67x4BYViAlc8WAT3APaHdVXi4ouXXpCEqhGV5hCXi+uySzpkqrPoaePW4kCvfDNoJah42zZFYW6ueDslMcdMM61Yyst8XEA6hgW3qMZnXE9UjM85uQmMtUrHSC72u5UBd2C0NrmFEy5YgcEvIZZfRGLOs49sUymQKRoLXGEwiScjeG78kAXkeuR2Cyx0W+U:2:3c; Domain=o365.ams.skyfencenet.com; Path=/; Secure; HttpOnly
__SF__sfbid=1YwFpONcuzcf9b0f00; Domain=ams.skyfencenet.com; Path=/; Expires=Sat, 22 Apr 2034 19:27:25 GMT; SameSite=Lax; Secure; HttpOnly
Transfer-Encoding: chunked

signup-live-com.o365.ams.skyfencenet.com/API/ClientEvents

157.167.155.205

200 OK

611 B

URL POST HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/API/ClientEvents
IP
157.167.155.205:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
JSON text data
Size
611 B (611 bytes)
Hash
8cc15c14153eeda083cc5824145b06c9
807d46317e4a399b2925a705fd713a384d31915c
7f8ebd9f2f1f5e771f369b8ee74f606f2871291bf349592c93f24bdf84b39157

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

POST /API/ClientEvents HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
hpgid: 200202
canary: Z/Jc3s8jJwdfKy56I42eQrCihdPy20yc30nUVDbDnrXozDoApQWNx+e2MCjF+rqw2eR1w7tBiABCz2Lr4hXCwf780URxhxGgXitNOp5BvVX7urDzTw53SoI8azVrecu0hmcfLra5d5J6EjBj6QciruupOkqeTgmvS/hR9cN37x3sn6WKLw3KX6HRPTP0l871p9YW5y/nMMrVxnCkBu9aumkXIVlgS9EgzUM2Go2UsAKx2thm+6hp4O5cI4YTf4CJ:2:3c
uaid: 3af78085f773465f9635760a38b9ca9e
tcxt: aljTB39hoRh150NBCZyQQSlaSh6J2PAqfuldYp7nRMQlP1R/kLDwm1hldPVdVRkGjzlBak2xpKYUxUYfalQJkOdLzdx9WCucqcoovWrBxiwtL8Dad5+mOfO73WWmtfWXv/ol9Ie334O6Fc/NmH9JVA==:2:3
x-ms-apiVersion: 3
x-ms-apiTransport: fetch
Content-Type: application/json; charset=utf-8
Content-Length: 5084
Origin: https://signup-live-com.o365.ams.skyfencenet.com
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=ti2Kc02hCFQ8Ylj5ctuTWyBW4Lglsr2y3m9hTPztiWgNhyEqERA5MzaOF4/PlL7GOrYxS/fFCKqwxpnvB4u/ilU2obkUnkUjyVEK+RMj7bewfWUnqCdnPwXCG9O/wTn/jwYkm44Gh2SQ5xuhv8ehK3+++l5VQaYLWaQxoLvBZz7GbwkMOI2GI2zaqcTDFhbgzVwwuGDKkQ+40XsGoWGodncT0ehY4kE2anH/Dqdq36NsAeBMoYMT2+5dz1aDUNER:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; amcanary=0; __SF__sfbid=1YwFpONcuzcf9b0f00; MicrosoftApplicationsTelemetryDeviceId=1e5b4bed-d27d-486e-ab65-0be91b9b8a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
P3P: CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR
X-Frame-Options: deny
x-ms-amserver: wusXXXX000E (2.0.3302.0)
x-ms-amserver-tm: 203ms
x-ms-request-id: 40f14b21-71a3-4031-96a1-0372bc60e0a6
Referrer-Policy: strict-origin-when-cross-origin
AMServer: wusXXXXig00000E
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 40F14B2171A3403196A10372BC60E0A6 Ref B: LTSEDGE1817 Ref C: 2024-04-24T19:27:26Z
Date: Wed, 24 Apr 2024 19:27:25 GMT
Set-Cookie: __SF__.live.com/amsc=CQILjcZOCqYXYIvkKqUnyX7H12wHCJipDmSMTRcZfmPkILO14kxd57HkRnlwhwRxNX3BpC40c9JbielTBcxNpesj98J4/tZGHGjoJWitSqq9nI00w3xy9OthKAzOARAlXa8GfosBpjqfRSKlYx+qPLZ+FwYVlHtKl00lZJWzXONEul2OA7RHXHq5c7YQg5kDlUr1aPISVGBC+ICj5XweLCpb46nhq0UoshGO25/mQnXxgr5QT1m5jWrTnmn2rLpnUq+50KPnr3RfLPXQDac6u+BeuoDkVCsuonAC6q2QdC1uIJyLLcS/TtPC7Flj8PpM:2:3c; Domain=o365.ams.skyfencenet.com; Path=/; Secure; HttpOnly
__SF__sfbid=1YwFpONcuzcf9b0f00; Domain=ams.skyfencenet.com; Path=/; Expires=Sat, 22 Apr 2034 19:27:26 GMT; SameSite=Lax; Secure; HttpOnly
Transfer-Encoding: chunked

signup-live-com.o365.ams.skyfencenet.com/Resources/images/favicon.ico

157.167.155.85

200 OK

17 kB

URL GET HTTP/1.1
signup-live-com.o365.ams.skyfencenet.com/Resources/images/favicon.ico
IP
157.167.155.85:443
ASN
#16509 AMAZON-02

Requested by
https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
Certificate
IssuerSectigo Limited
Subjectskyfencenet.com
Fingerprint78:7F:A3:D7:B5:99:CA:23:86:A4:0D:AC:53:D4:50:74:9C:31:2E:50
ValidityThu, 28 Sep 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors
Size
17 kB (17174 bytes)
Hash
12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /Resources/images/favicon.ico HTTP/1.1
Host: signup-live-com.o365.ams.skyfencenet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://signup-live-com.o365.ams.skyfencenet.com/error.aspx?sru=https&uaid=3af78085f773465f9635760a38b9ca9e&e=404
DNT: 1
Connection: keep-alive
Cookie: __SF__.live.com/amsc=CQILjcZOCqYXYIvkKqUnyX7H12wHCJipDmSMTRcZfmPkILO14kxd57HkRnlwhwRxNX3BpC40c9JbielTBcxNpesj98J4/tZGHGjoJWitSqq9nI00w3xy9OthKAzOARAlXa8GfosBpjqfRSKlYx+qPLZ+FwYVlHtKl00lZJWzXONEul2OA7RHXHq5c7YQg5kDlUr1aPISVGBC+ICj5XweLCpb46nhq0UoshGO25/mQnXxgr5QT1m5jWrTnmn2rLpnUq+50KPnr3RfLPXQDac6u+BeuoDkVCsuonAC6q2QdC1uIJyLLcS/TtPC7Flj8PpM:2:3c; __SF__sessionId=5b5a2a9a903ba64362e1bb8dcdf30a; amcanary=0; __SF__sfbid=1YwFpONcuzcf9b0f00; MicrosoftApplicationsTelemetryDeviceId=1e5b4bed-d27d-486e-ab65-0be91b9b8a7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Length: 17174
Content-Type: image/x-icon
Last-Modified: Wed, 10 Apr 2024 03:41:32 GMT
Accept-Ranges: bytes
ETag: "0fe7efaf88ada1:0"
P3P: CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR
AMServer: eusXXXXgn0000LG
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: EBA71EB4F4FB4ED29CBE8CD3975960DC Ref B: LON04EDGE0816 Ref C: 2024-04-24T19:27:33Z
Date: Wed, 24 Apr 2024 19:27:32 GMT
Set-Cookie: __SF__sfbid=1YwFpONcuzcf9b0f00; Domain=ams.skyfencenet.com; Path=/; Expires=Sat, 22 Apr 2034 19:27:33 GMT; SameSite=Lax; Secure; HttpOnly

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML