Report Overview

  1. Visited public
    2023-11-21 07:44:16
  2. URL

    elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==

  3. Finishing URL

    osnrafbtea.oneswittla.ru/kswqjl/#alberto@elzaburu.es

  4. IP / ASN
    192.185.88.231

    #46606 UNIFIEDLAYER-AS-1

    Title
    Sign in to your Microsoft account
  5. Phishing - Microsoft Outlook

Detections
urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
aadcdn.msftauth.net14552018-10-252018-11-19 11:50:322023-11-21 05:09:23
code.jquery.com6342005-12-102012-05-21 19:28:022023-11-21 05:09:18
aadcdn.msauth.net14212018-10-252018-11-19 11:50:032023-11-21 05:09:23
adfs.heart.orgunknown1995-01-122016-10-10 20:42:572023-11-20 03:49:53
httpbin.org3529752011-06-122013-07-23 00:01:272023-11-21 05:09:25
challenges.cloudflare.comunknown2009-02-172021-10-20 07:02:032023-11-21 05:09:18
cdn.socket.io620682010-04-182015-03-23 23:14:032023-11-19 19:45:11
elhamadsteel.comunknown2019-11-142020-01-28 21:15:482023-11-19 20:58:49
osnrafbtea.oneswittla.ruunknown2023-11-012023-11-03 14:57:422023-11-20 18:15:31
logincdn.msauth.net23302018-10-252019-04-23 03:13:282023-11-20 05:31:50

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (16)

HTTP Transactions (42)

URLIPResponseSize
elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==
192.185.88.231 0 B
GET osnrafbtea.oneswittla.ru/kswqjl/myscr558155.js
172.67.218.22200 OK39 kB
GET osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff2
172.67.218.22200 OK28 kB
GET osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff
172.67.218.22200 OK36 kB
GET osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff2
172.67.218.22200 OK29 kB
GET osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff
172.67.218.22200 OK37 kB
GET osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf.woff2
172.67.218.22200 OK44 kB
GET osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf2.woff2
172.67.218.22200 OK93 kB
GET osnrafbtea.oneswittla.ru/web1/assets/css/pages-okta.css?cb=1700552641731
172.67.218.22200 OK0 B
POST osnrafbtea.oneswittla.ru/web1/validatecaptcha
172.67.218.22200 OK255 B
POST osnrafbtea.oneswittla.ru/web1/info
172.67.218.22200 OK6.9 kB
GET osnrafbtea.oneswittla.ru/web1/assets/godaddy-logo.png
172.67.218.22200 OK50 kB
GET osnrafbtea.oneswittla.ru/web1/assets/godaddy-left.png
172.67.218.22200 OK30 kB
GET osnrafbtea.oneswittla.ru/web1/assets/godaddy-microsoftlogo.png
172.67.218.22200 OK71 kB
GET osnrafbtea.oneswittla.ru/web1/assets/officelogo.png
172.67.218.22200 OK1.4 kB
GET aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
152.199.23.37200 OK190 B
GET aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg
152.199.23.37200 OK1.2 kB
GET aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg
152.199.23.37200 OK2.4 kB
GET logincdn.msauth.net/shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg
192.229.221.185200 OK212 B
GET aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
13.107.246.53200 OK673 B
GET adfs.heart.org/adfs/portal/logo/logo.png
69.152.183.140200 OK6.4 kB
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
172.67.218.22 0 B
GET httpbin.org/ip
3.226.223.40200 OK31 B
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
104.21.17.6 0 B
GET osnrafbtea.oneswittla.ru/web1/assets/pages/104gf8.css?cb=1700552641731
172.67.218.22200 OK1.1 kB
GET osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
172.67.218.22200 OK34 kB
GET osnrafbtea.oneswittla.ru/kswqjl/
172.67.218.22200 OK115 B
GET osnrafbtea.oneswittla.ru/web1/assets/js/pages-head-web.min.js?cb=1700552641731
172.67.218.22200 OK14 kB
GET challenges.cloudflare.com/turnstile/v0/api.js?render=explicit
104.17.2.184302 Found34 kB
GET osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
172.67.218.22101 Switching Protocols0 B
GET osnrafbtea.oneswittla.ru/web1/assets/js/pages-head-top-web.min.js?cb=1700552640702
172.67.218.22200 OK2.4 kB
GET osnrafbtea.oneswittla.ru/web1/assets/key.png
172.67.218.22200 OK727 B
GET osnrafbtea.oneswittla.ru/web1/assets/back.png
172.67.218.22200 OK231 B
GET code.jquery.com/jquery-3.6.0.min.js
151.101.194.137200 OK90 kB
GET osnrafbtea.oneswittla.ru/web1/assets/css/pages-godaddy.css?cb=1700552641731
172.67.218.22200 OK38 kB
GET osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
172.67.218.22200 OK34 kB
GET osnrafbtea.oneswittla.ru/web1/assets/microsoftfavicon.ico
172.67.218.22200 OK17 kB
GET osnrafbtea.oneswittla.ru/web1/assets/css/pages.min.css?cb=1700552641731
172.67.218.22200 OK17 kB
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/sikn0/0x4AAAAAAAMj9eiEWzeCaLNQ/auto/normal
104.17.2.184200 OK73 kB
GET challenges.cloudflare.com/turnstile/v0/g/9914b343/api.js?render=explicit
104.17.2.184200 OK34 kB
GET osnrafbtea.oneswittla.ru/web1/assets/js/pages.min.js?cb=1700552641731
172.67.218.22200 OK92 kB
GET cdn.socket.io/4.6.0/socket.io.min.js
143.204.55.40200 OK46 kB