Report Overview

  1. Submitted URL

    elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==

  2. IP

    192.185.88.231

    ASN

    #46606 UNIFIEDLAYER-AS-1

  3. Submitted

    2023-11-21 07:44:16

    Access

    public

  4. Website Title

    Sign in to your Microsoft account

  5. Final URL

    osnrafbtea.oneswittla.ru/kswqjl/#alberto@elzaburu.es

  6. urlquery detections

    Phishing - Microsoft Outlook

Detections

  1. urlquery

    3

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    0

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
aadcdn.msftauth.net14552018-10-252018-11-192023-11-21
code.jquery.com6342005-12-102012-05-212023-11-21
aadcdn.msauth.net14212018-10-252018-11-192023-11-21
adfs.heart.orgunknown1995-01-122016-10-102023-11-20
httpbin.org3529752011-06-122013-07-232023-11-21
challenges.cloudflare.comunknown2009-02-172021-10-202023-11-21
cdn.socket.io620682010-04-182015-03-232023-11-19
elhamadsteel.comunknown2019-11-142020-01-282023-11-19
osnrafbtea.oneswittla.ruunknown2023-11-012023-11-032023-11-20
logincdn.msauth.net23302018-10-252019-04-232023-11-20

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (16)

HTTP Transactions (42)

URLIPResponseSize
elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==
192.185.88.231 0 B
osnrafbtea.oneswittla.ru/kswqjl/myscr558155.js
172.67.218.22200 OK39 kB
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff2
172.67.218.22200 OK28 kB
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff
172.67.218.22200 OK36 kB
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff2
172.67.218.22200 OK29 kB
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff
172.67.218.22200 OK37 kB
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf.woff2
172.67.218.22200 OK44 kB
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf2.woff2
172.67.218.22200 OK93 kB
osnrafbtea.oneswittla.ru/web1/assets/css/pages-okta.css?cb=1700552641731
172.67.218.22200 OK0 B
osnrafbtea.oneswittla.ru/web1/validatecaptcha
172.67.218.22200 OK255 B
osnrafbtea.oneswittla.ru/web1/info
172.67.218.22200 OK6.9 kB
osnrafbtea.oneswittla.ru/web1/assets/godaddy-logo.png
172.67.218.22200 OK50 kB
osnrafbtea.oneswittla.ru/web1/assets/godaddy-left.png
172.67.218.22200 OK30 kB
osnrafbtea.oneswittla.ru/web1/assets/godaddy-microsoftlogo.png
172.67.218.22200 OK71 kB
osnrafbtea.oneswittla.ru/web1/assets/officelogo.png
172.67.218.22200 OK1.4 kB
aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
152.199.23.37200 OK190 B
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg
152.199.23.37200 OK1.2 kB
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg
152.199.23.37200 OK2.4 kB
logincdn.msauth.net/shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg
192.229.221.185200 OK212 B
aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
13.107.246.53200 OK673 B
adfs.heart.org/adfs/portal/logo/logo.png
69.152.183.140200 OK6.4 kB
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
172.67.218.22 0 B
httpbin.org/ip
3.226.223.40200 OK31 B
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
104.21.17.6 0 B
osnrafbtea.oneswittla.ru/web1/assets/pages/104gf8.css?cb=1700552641731
172.67.218.22200 OK1.1 kB
osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
172.67.218.22200 OK34 kB
osnrafbtea.oneswittla.ru/kswqjl/
172.67.218.22200 OK115 B
osnrafbtea.oneswittla.ru/web1/assets/js/pages-head-web.min.js?cb=1700552641731
172.67.218.22200 OK14 kB
challenges.cloudflare.com/turnstile/v0/api.js?render=explicit
104.17.2.184302 Found34 kB
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
172.67.218.22101 Switching Protocols0 B
osnrafbtea.oneswittla.ru/web1/assets/js/pages-head-top-web.min.js?cb=1700552640702
172.67.218.22200 OK2.4 kB
osnrafbtea.oneswittla.ru/web1/assets/key.png
172.67.218.22200 OK727 B
osnrafbtea.oneswittla.ru/web1/assets/back.png
172.67.218.22200 OK231 B
code.jquery.com/jquery-3.6.0.min.js
151.101.194.137200 OK90 kB
osnrafbtea.oneswittla.ru/web1/assets/css/pages-godaddy.css?cb=1700552641731
172.67.218.22200 OK38 kB
osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
172.67.218.22200 OK34 kB
osnrafbtea.oneswittla.ru/web1/assets/microsoftfavicon.ico
172.67.218.22200 OK17 kB
osnrafbtea.oneswittla.ru/web1/assets/css/pages.min.css?cb=1700552641731
172.67.218.22200 OK17 kB
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/sikn0/0x4AAAAAAAMj9eiEWzeCaLNQ/auto/normal
104.17.2.184200 OK73 kB
challenges.cloudflare.com/turnstile/v0/g/9914b343/api.js?render=explicit
104.17.2.184200 OK34 kB
osnrafbtea.oneswittla.ru/web1/assets/js/pages.min.js?cb=1700552641731
172.67.218.22200 OK92 kB
cdn.socket.io/4.6.0/socket.io.min.js
143.204.55.40200 OK46 kB