www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
192.185.78.27301 Moved Permanently 4.7 kB URL User Request GET HTTP/1.1 www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
IP 192.185.78.27:80
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
GET /images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597 HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
last-modified: Thu, 06 Oct 2022 11:40:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4677
content-type: text/html
date: Sun, 04 Jun 2023 00:13:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
192.185.78.27301 Moved Permanently 434 B URL User Request GET HTTP/1.1 www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
IP 192.185.78.27:80
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f2f7c4115fceab69cc048be6be0cc44e
ff6bd30eceabd1dc05d0b7ffd9057c84d09fa8bc
153c2e204d38c23b1791c91f87953ae1f28bd38cc5c31766900be16df8b95d46
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
GET /images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597 HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Jun 2023 00:13:34 GMT
Server: Apache
Location: https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Content-Length: 434
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
192.185.78.27301 Moved Permanently 4.7 kB URL User Request GET HTTP/1.1 www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
IP 192.185.78.27:80
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
GET /images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597 HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 06 Oct 2022 11:40:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4677
content-type: text/html
date: Sun, 04 Jun 2023 00:13:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.strongangel.net/cgi-sys/images/x.png
192.185.78.27200 OK 2.7 kB URL GET HTTP/2 www.strongangel.net/cgi-sys/images/x.png
IP 192.185.78.27:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Certificate IssuerLet's Encrypt
Subject*.strongangel.net
Fingerprint90:C3:A0:F2:95:8C:C4:1F:1B:E5:B6:B1:08:3B:B4:B1:88:85:5A:E3
ValidityFri, 19 May 2023 20:41:24 GMT - Thu, 17 Aug 2023 20:41:23 GMT
File type PNG image data, 97 x 97, 8-bit colormap, non-interlaced\012- data
Hash f851db995b0253a71d638f779be88330
5f5319e016676e6b92f7e597b837677ddf52c0a5
2c024e287d53dcc084b60b01a69990c369e758dc7c91b0fe4791f02d18aae61a
GET /cgi-sys/images/x.png HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 11:37:14 GMT
accept-ranges: bytes
content-length: 2672
content-type: image/png
date: Sun, 04 Jun 2023 00:13:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.strongangel.net/cgi-sys/js/simple-expand.min.js
192.185.78.27200 OK 1.2 kB URL GET HTTP/2 www.strongangel.net/cgi-sys/js/simple-expand.min.js
IP 192.185.78.27:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Certificate IssuerLet's Encrypt
Subject*.strongangel.net
Fingerprint90:C3:A0:F2:95:8C:C4:1F:1B:E5:B6:B1:08:3B:B4:B1:88:85:5A:E3
ValidityFri, 19 May 2023 20:41:24 GMT - Thu, 17 Aug 2023 20:41:23 GMT
File type ASCII text, with very long lines (2608)
Hash 42cb9467fd660b25209863c072e69342
c4d32879d225f46588fba989f8a2afcb9b49a519
7989430e3c85121caa76c6da31aa38d43ef139062e2c3bd4f4350b62fe90d4d4
GET /cgi-sys/js/simple-expand.min.js HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 11:37:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1191
content-type: application/javascript
date: Sun, 04 Jun 2023 00:13:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.strongangel.net/cgi-sys/images/404mid.gif
192.185.78.27200 OK 120 B URL GET HTTP/2 www.strongangel.net/cgi-sys/images/404mid.gif
IP 192.185.78.27:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Certificate IssuerLet's Encrypt
Subject*.strongangel.net
Fingerprint90:C3:A0:F2:95:8C:C4:1F:1B:E5:B6:B1:08:3B:B4:B1:88:85:5A:E3
ValidityFri, 19 May 2023 20:41:24 GMT - Thu, 17 Aug 2023 20:41:23 GMT
File type GIF image data, version 89a, 868 x 4\012- data
Hash dc8055f43fbb4a4b6dfb298ec35188f2
1ffc540743de1cdb929d9d1218978005141e8d9d
b857737891b84293b3df526b48ce3d54fdcc5789c250eadff9dd38e3c2c68caf
GET /cgi-sys/images/404mid.gif HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 11:38:19 GMT
accept-ranges: bytes
content-length: 120
content-type: image/gif
date: Sun, 04 Jun 2023 00:13:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.strongangel.net/cgi-sys/images/404bottom.gif
192.185.78.27200 OK 537 B URL GET HTTP/2 www.strongangel.net/cgi-sys/images/404bottom.gif
IP 192.185.78.27:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Certificate IssuerLet's Encrypt
Subject*.strongangel.net
Fingerprint90:C3:A0:F2:95:8C:C4:1F:1B:E5:B6:B1:08:3B:B4:B1:88:85:5A:E3
ValidityFri, 19 May 2023 20:41:24 GMT - Thu, 17 Aug 2023 20:41:23 GMT
File type GIF image data, version 89a, 868 x 14\012- data
Hash 54eb288427acf79ed320efd4916fe0b7
67ba813ff74d52035d70fcda58b57563f01fb829
70e4a5f9f7d98c1564b17ecc69196fed4f74fe5afb2c61b4fb7045dd3309dc4f
GET /cgi-sys/images/404bottom.gif HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 11:37:44 GMT
accept-ranges: bytes
content-length: 537
content-type: image/gif
date: Sun, 04 Jun 2023 00:13:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.strongangel.net/cgi-sys/images/404top_w.jpg
192.185.78.27200 OK 4.3 kB URL GET HTTP/2 www.strongangel.net/cgi-sys/images/404top_w.jpg
IP 192.185.78.27:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Certificate IssuerLet's Encrypt
Subject*.strongangel.net
Fingerprint90:C3:A0:F2:95:8C:C4:1F:1B:E5:B6:B1:08:3B:B4:B1:88:85:5A:E3
ValidityFri, 19 May 2023 20:41:24 GMT - Thu, 17 Aug 2023 20:41:23 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 868x169, components 3\012- data
Hash de6ecbbb2471827d90bf32c47a0cbc45
ffeaafe8b9ca2752908c5d4e95e4803ef7ffdd18
5cae6c33f0f9d4449ce8539a60e7d40eba2ddc75979fc26284854a29c36d08cb
GET /cgi-sys/images/404top_w.jpg HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Oct 2022 12:44:18 GMT
accept-ranges: bytes
content-length: 4335
content-type: image/jpeg
date: Sun, 04 Jun 2023 00:13:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.strongangel.net/favicon.ico
192.185.78.27404 Not Found 4.7 kB URL GET HTTP/2 www.strongangel.net/favicon.ico
IP 192.185.78.27:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Certificate IssuerLet's Encrypt
Subject*.strongangel.net
Fingerprint90:C3:A0:F2:95:8C:C4:1F:1B:E5:B6:B1:08:3B:B4:B1:88:85:5A:E3
ValidityFri, 19 May 2023 20:41:24 GMT - Thu, 17 Aug 2023 20:41:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482
GET /favicon.ico HTTP/1.1
Host: www.strongangel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.strongangel.net/images/auth/BOAlastest/login.php?cmd=login_submit&id=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597&session=6b5ad5036d0c787cdaa7e6a9535275976b5ad5036d0c787cdaa7e6a953527597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 06 Oct 2022 11:40:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4677
content-type: text/html
date: Sun, 04 Jun 2023 00:13:35 GMT
server: Apache
X-Firefox-Spdy: h2