cs--33129-view-mail-ups.web.app/
199.36.158.100 84 B URL cs--33129-view-mail-ups.web.app/
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6de52d79da4278a59f488784274b4e7b
ebb4731c86cba9863f46c07c2f56c0bde3a29aa8
507011431aeb1d51d4b2a0e7452f21c36cf5130ce693deac9322e65305a56782
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET / HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "3e1c7cd0b34e4d4519af92b646457800b61d9f6641c6582fd6a102d01dc231a3-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:46 GMT
x-served-by: cache-bma1653-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685836187.958384,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 84
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
142.250.74.131 472 B URL ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
IP 142.250.74.131:0
Hash abb8999f7f7eb0b7db1edb83c06c547f
cc545701d0d5526289c218b0af64196cfa2e828a
d8e7c4892a110f13fd6cbd3af509e4132cb7d6ed99f02124389d639a766490da
POST /s/gts1d4int/wrllXI_-LL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Jun 2023 23:49:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cs--33129-view-mail-ups.web.app/Find.html
199.36.158.100200 OK 2.8 kB URL User Request GET HTTP/3 cs--33129-view-mail-ups.web.app/Find.html
IP 199.36.158.100:443
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 34ab95a1ab76b018584908775b5da8b7
dda11afb0a9114cac09ac9d5ca784cac986a1978
29cd766c9824c7cb97972c853d97454bccffeb03144ab5e9a02f9e7bd1a9e543
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /Find.html HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 2750
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "4509b42e838115d7502a595bf25d5274bf360b7c354ffa1bf4259ce5e7959423-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836187.340597,VS0,VE122
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/css/ups_0021.css
199.36.158.100200 OK 12 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/css/ups_0021.css
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 96ec416a6e4dc3efd4851553260df107
76c7dc20579e28febcede120bbaaaaad19e29372
7b9d3bb05c7bb49a2680609ff320fe6526b0cec48f2a0f8c580355352d54cf5d
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/css/ups_0021.css HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 12462
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "37c5bd648e1a8b21e4d7af9cf0931eebe1a590760004aeb9bcbb684ec830d815-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685836188.550580,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/img/ups-logo.svg
199.36.158.100200 OK 961 B URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/img/ups-logo.svg
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1964), with no line terminators
Hash d0844ff2e7a14df3ea3ab44e655954df
1fc8335cbae890c2cbac90dd6ab87014583bb9cd
9f5ae3f644595dc6c5aa69ae618a108102bb62e1a38a50b89fd7af1b8ffe5eae
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/img/ups-logo.svg HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 961
cache-control: max-age=3600
content-encoding: br
content-type: image/svg+xml
etag: "0642158b4bc57c75a2a8be23e741eab6b754ab166aa87691cb00c1ff0041c7a0-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685836188.564367,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/css/ups1.css
199.36.158.100200 OK 30 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/css/ups1.css
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type Unicode text, UTF-8 text, with very long lines (65495), with no line terminators
Hash 812b4af20c1b783f0725fc004732aa83
99bdc407f7b9eba27a2f3444165a92696baeaf0e
28daf19b1d0bef89f2388ebb2e9d9f44abbdd5ee9894515e5b774b5bcbc1dfbb
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/css/ups1.css HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 30426
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "b6694f93e1428eedfe3c8236e7d88d799ba2cb00730ec107e5423844d16fbae4-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685836188.551391,VS0,VE25
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/js/jquery.js
199.36.158.100200 OK 65 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/js/jquery.js
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type ASCII text, with CRLF line terminators
Hash 2ac898daf1837381b1264cdb792319ba
532496df4622a43699ee57b612180a21aedad065
84086bb634fc6fd223918894c6b74641811e06e84007937c5809942b7a02ddff
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/js/jquery.js HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 65358
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "5b06eec81588e5a48f75b58bebd9c319413ed885bb1bea6fc188489b6c45aad0-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685836188.565328,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/js/mask.js
199.36.158.100200 OK 5.0 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/js/mask.js
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
Hash a1fb4aaee1dcbfd24e6ec0fd67ab9645
77558a30ff578aeb671e2bdb574df166751aa487
c84e4b2e9e47490ff3fa125e0aa933f617633649358da8861b4b430ab6ae9a70
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/js/mask.js HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4959
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "521ec419520ae496c5a7555f5083380790886373be2b3f04e1995edd9e7281cd-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836188.568588,VS0,VE234
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/css/css.css
199.36.158.100200 OK 1.1 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/css/css.css
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type ASCII text, with very long lines (1774), with CRLF line terminators
Hash 04e8a120dde7249f3c9167465ec654e0
f36f6283385aca9a885eca237c33d4f4afd184d5
d7c386848e3e41f2e3c8f38613bb8c456a710c2159e20f8466e0b23e0e50015e
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/css/css.css HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1122
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "7b5a5c687596a1c3ba4e055fd624fc481b0d44e938bd3de6f37cd04a49c5f505-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836188.552321,VS0,VE290
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/img/20220401-JTBD-US-MAEVE.webp
199.36.158.100200 OK 42 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/img/20220401-JTBD-US-MAEVE.webp
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 053f88f3256fa1b029ea33cec4944698
1afe94f1d8b47db35c9eda2144fab72384e51805
fe27203a5bf4ec6df5e01fcaa14cad6376afd0adbe5aca73b282fbdc85cb536b
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/img/20220401-JTBD-US-MAEVE.webp HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 42494
cache-control: max-age=3600
content-type: image/webp
etag: "4ac045cdd26b43d2482951820f708af31cea9b34f81b8d386d2791fc0096fb4c"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685836188.935028,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/images/social.jpg
199.36.158.100404 Not Found 11 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/images/social.jpg
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8125)
Hash 30b57fc35a6c2b706de9ce2c38f257c2
7270e201ec681343de06bf6c1c63ae61de526c98
e5be0c3483138abfc50dae40ad4ebc51443cf8693b3cee01469d88bcf36bfd76
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/images/social.jpg HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/us_assetz/css/ups1.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 10712
cache-control: max-age=3600
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:47 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836188.905918,VS0,VE54
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/fonts/Roboto-Regular.woff
199.36.158.100200 OK 94 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/fonts/Roboto-Regular.woff
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type Web Open Font Format, TrueType, length 93784, version 2.137\012- data
Hash 1cfd1aa3b4fe4bba10c132acea9985af
4edccc73318b8d3f6dee84f934063ea52644ed0f
c511a38838f14cd23a3e2a7c7c9b7f2864a2a6b9e548053bb71b432a677966e2
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/fonts/Roboto-Regular.woff HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/us_assetz/css/ups1.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 93784
cache-control: max-age=3600
content-type: font/woff
etag: "e5c40631ea76a2aebfb5a211135ee357aafec19eb1951849bb1ed8b0e4284215"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:48 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836188.916639,VS0,VE175
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/fonts/Roboto-Medium.woff
199.36.158.100200 OK 94 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/fonts/Roboto-Medium.woff
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type Web Open Font Format, TrueType, length 94364, version 2.137\012- data
Hash 7350337b673e86f2d62ee0eb5761e1e2
eb11f6c75c34069217cc1692d00e8ac3945c8a3d
4f543ad26c42709ef00a1921f7dd1aa27a1930a354ecb353196665e43dac3706
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/fonts/Roboto-Medium.woff HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/us_assetz/css/ups1.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 94364
cache-control: max-age=3600
content-type: font/woff
etag: "8c4031a82e5d908e26c52a3d8201cb60cd496bc5cc1f32ed152db6f96653f649"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:48 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836188.911408,VS0,VE311
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/fonts/Roboto-Bold.woff
199.36.158.100200 OK 27 kB URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/fonts/Roboto-Bold.woff
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type Web Open Font Format, TrueType, length 26564, version 1.0\012- data
Hash 849fd0ec4277f2e8ee9ebe2753a30edd
ebcff6b5216b7cfdacc058ab35023c6f9bd6f286
5fce1e38ce56a7e63a78d5811e54679dba8cd15d6455cf312f4d2bd886e42d36
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/fonts/Roboto-Bold.woff HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/us_assetz/css/ups1.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 26564
cache-control: max-age=3600
content-type: font/woff
etag: "eb9f90d938ab24f80a63470e345dc2b3db2c80c1b15a9d161ca5f9eb313b6273"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:48 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836188.917178,VS0,VE322
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cs--33129-view-mail-ups.web.app/us_assetz/img/favicon.ico
199.36.158.100200 OK 872 B URL GET HTTP/3 cs--33129-view-mail-ups.web.app/us_assetz/img/favicon.ico
IP 199.36.158.100:443
Requested by https://cs--33129-view-mail-ups.web.app/Find.html
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type MS Windows icon resource - 1 icon, 32x32, 8 bits/pixel\012- data
Hash afd13e52f285793f5eaa266c12a19abe
4b71098176443981be65286ec864b12ebc233f81
9ca2236bb4ec1714e173cecb6bcc95c82e12df204c7d4c87fe4b9f01135efce8
Analyzer Verdict Alert urlquery phishing Phishing - UPS
urlquery phishing Phishing - UPS
openphish UPS
phishtank Other
quad9 Sinkholed
GET /us_assetz/img/favicon.ico HTTP/1.1
Host: cs--33129-view-mail-ups.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cs--33129-view-mail-ups.web.app/Find.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 872
cache-control: max-age=3600
content-encoding: br
content-type: image/x-icon
etag: "02c97187adaee58553a8fbf2376a3c3436eff473d8ba46e6ccaa5140874bacd4-br"
last-modified: Tue, 20 Dec 2022 22:13:10 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 03 Jun 2023 23:49:48 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685836188.262972,VS0,VE151
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400