| |  199.36.158.100 | 200 OK | 190 B |
URL User Request GET HTTP/2IP199.36.158.100:443
CertificateIssuerGoogle Trust Services LLC Subjectweb.app Fingerprint6C:B8:FC:5E:5B:DF:AB:31:E6:02:C5:A6:D8:E2:D0:77:BB:5D:BC:7B ValidityThu, 21 Mar 2024 15:14:42 GMT - Wed, 19 Jun 2024 15:14:41 GMT
File typeHTML document, ASCII text, with very long lines (512), with no line terminators Hasha019bcceaf579b98eda6a0c84fef1045 5de014e593f98af4f71bcd69d8f6d3a0fd32c248 f330e88873ac123451f4f49a3c339dc9d7c0daee08b60803373eccd61a982610
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | America First Credit Union |
GET / HTTP/1.1
Host: am22fcu.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "a0ffd04569be39957374de62cf5dd2785d8d8549b60e9bd29a373801bff7a90f-br"
last-modified: Sun, 15 Jan 2023 21:32:27 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 Apr 2024 04:02:51 GMT
x-served-by: cache-hel1410033-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714104172.589691,VS0,VE339
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 190
X-Firefox-Spdy: h2
|
|
| am22fcu.web.app/static/js/main.a7b8f871.js | 199.36.158.100 | 200 OK | 130 kB |
URL GET HTTP/3am22fcu.web.app/static/js/main.a7b8f871.js IP199.36.158.100:443
CertificateIssuerGoogle Trust Services LLC Subjectweb.app Fingerprint6C:B8:FC:5E:5B:DF:AB:31:E6:02:C5:A6:D8:E2:D0:77:BB:5D:BC:7B ValidityThu, 21 Mar 2024 15:14:42 GMT - Wed, 19 Jun 2024 15:14:41 GMT
File typeJavaScript source, ASCII text, with very long lines (65465) Size130 kB (129549 bytes) Hash384c7e20230bd8925565d11bb781010c 555b6af3f4bf805eee352ae3c42eda1ddd9f2ca7 2ec16fcb4f858f762bdc51b97b6668589809d34924cec4bb45e86aedac763a37
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | America First Credit Union |
GET /static/js/main.a7b8f871.js HTTP/1.1
Host: am22fcu.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am22fcu.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 129549
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "713fa47c1b65fe66f5072851a75a6129f69f2703098d643a84e94a4953d0dcb2-br"
last-modified: Sun, 15 Jan 2023 21:32:27 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 Apr 2024 04:02:52 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714104172.148446,VS0,VE218
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| am22fcu.web.app/static/css/main.6a11e502.css | 199.36.158.100 | 200 OK | 105 kB |
URL GET HTTP/3am22fcu.web.app/static/css/main.6a11e502.css IP199.36.158.100:443
CertificateIssuerGoogle Trust Services LLC Subjectweb.app Fingerprint6C:B8:FC:5E:5B:DF:AB:31:E6:02:C5:A6:D8:E2:D0:77:BB:5D:BC:7B ValidityThu, 21 Mar 2024 15:14:42 GMT - Wed, 19 Jun 2024 15:14:41 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size105 kB (104770 bytes) Hash6ae0b6b5315b4f106db005cf8b62e4ae cb12fa41441b847ef1f5f9be9aeb7fdd8ed117d7 f18e9e3b268d943ff5d279198daf270f0d2ffe06faa25175e64e68e363703548
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | America First Credit Union |
GET /static/css/main.6a11e502.css HTTP/1.1
Host: am22fcu.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am22fcu.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 104770
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "98f4cab0d8076feaaeb53fdb1ec3f3acc2c7fe34a5575051556aeb30738c72f5-br"
last-modified: Sun, 15 Jan 2023 21:32:27 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 Apr 2024 04:02:52 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714104172.148989,VS0,VE301
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| am22fcu.web.app/static/media/S6uyw4BMUTPHjx4wXg.be36596da218e1eec01c.woff2 | 199.36.158.100 | 200 OK | 24 kB |
URL GET HTTP/3am22fcu.web.app/static/media/S6uyw4BMUTPHjx4wXg.be36596da218e1eec01c.woff2 IP199.36.158.100:443
CertificateIssuerGoogle Trust Services LLC Subjectweb.app Fingerprint6C:B8:FC:5E:5B:DF:AB:31:E6:02:C5:A6:D8:E2:D0:77:BB:5D:BC:7B ValidityThu, 21 Mar 2024 15:14:42 GMT - Wed, 19 Jun 2024 15:14:41 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | America First Credit Union |
GET /static/media/S6uyw4BMUTPHjx4wXg.be36596da218e1eec01c.woff2 HTTP/1.1
Host: am22fcu.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://am22fcu.web.app/static/css/main.6a11e502.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 23580
cache-control: max-age=3600
content-type: font/woff2
etag: "2ff73f27b8019051f7034d7c314a06ba325e8f0d28cfd843ed39d3ae3f7e1a75"
last-modified: Sun, 15 Jan 2023 21:32:27 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 Apr 2024 04:02:52 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714104173.679579,VS0,VE263
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| am22fcu.web.app/favicon.ico | 199.36.158.100 | 200 OK | 523 B |
URL GET HTTP/3am22fcu.web.app/favicon.ico IP199.36.158.100:443
CertificateIssuerGoogle Trust Services LLC Subjectweb.app Fingerprint6C:B8:FC:5E:5B:DF:AB:31:E6:02:C5:A6:D8:E2:D0:77:BB:5D:BC:7B ValidityThu, 21 Mar 2024 15:14:42 GMT - Wed, 19 Jun 2024 15:14:41 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash5f0fb15bba173e0aa54bd6434418f8fe fc16c82f44707eb5045be0f68cfcfce4a4ac29d9 0534a1a2f971f20a153479d5e01ad4051a8af96221bb5f7c80ff06a759d1ea2e
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | America First Credit Union |
GET /favicon.ico HTTP/1.1
Host: am22fcu.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am22fcu.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 523
cache-control: max-age=3600
content-encoding: br
content-type: image/x-icon
etag: "c6a1f0948b67ec1456d1bb8f5b1ed0976c3359092965ccb79204913994085bea-br"
last-modified: Sun, 15 Jan 2023 21:32:27 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 Apr 2024 04:02:52 GMT
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714104173.879218,VS0,VE105
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| apcnt.com/page/init |  0.0.0.0 | | 0 B |
IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
OPTIONS /page/init HTTP/1.1
Host: apcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-page-name,x-token-id
Referer: https://am22fcu.web.app/
Origin: https://am22fcu.web.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|