Report Overview

  1. Submitted URL

    elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==

  2. IP

    192.185.88.231

    ASN

    #46606 UNIFIEDLAYER-AS-1

  3. Submitted

    2023-11-21T07:44:16Z

    Access

    public

  4. Website Title

    Sign in to your Microsoft account

  5. Final URL

    osnrafbtea.oneswittla.ru/kswqjl/#alberto@elzaburu.es

  6. urlquery detections

    Phishing - Microsoft Outlook

Detections

  1. urlquery

    3

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    0

Domain Summary

Domain Rank First Seen Last Seen
aadcdn.msftauth.net (3) 1455 2018-11-19 11:50:32 2023-11-21 05:09:23
code.jquery.com (1) 634 2012-05-21 19:28:02 2023-11-21 05:09:18
aadcdn.msauth.net (1) 1421 2018-11-19 11:50:03 2023-11-21 05:09:23
adfs.heart.org (1) unknown 2016-10-10 20:42:57 2023-11-20 03:49:53
httpbin.org (1) 352975 2013-07-23 00:01:27 2023-11-21 05:09:25
challenges.cloudflare.com (3) unknown 2021-10-20 07:02:03 2023-11-21 05:09:18
cdn.socket.io (1) 62068 2015-03-23 23:14:03 2023-11-19 19:45:11
elhamadsteel.com (1) unknown 2020-01-28 21:15:48 2023-11-19 20:58:49
osnrafbtea.oneswittla.ru (29) unknown 2023-11-03 14:57:42 2023-11-20 18:15:31
logincdn.msauth.net (1) 2330 2019-04-23 03:13:28 2023-11-20 05:31:50

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (16)

HTTP Transactions (42)

URL IP Response Size
elhamadsteel.com/wp-admin/js/auth/esmjL/YWxiZXJ0b0BlbHphYnVydS5lcw==
192.185.88.231 0
osnrafbtea.oneswittla.ru/kswqjl/myscr558155.js
172.67.218.22 200 OK 38604
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff2
172.67.218.22 200 OK 28000
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-bold.woff
172.67.218.22 200 OK 35970
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff2
172.67.218.22 200 OK 28584
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-regular.woff
172.67.218.22 200 OK 36696
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf.woff2
172.67.218.22 200 OK 43596
osnrafbtea.oneswittla.ru/web1/assets/fonts/GDSherpa-vf2.woff2
172.67.218.22 200 OK 93276
osnrafbtea.oneswittla.ru/web1/assets/css/pages-okta.css?cb=1700552641731
172.67.218.22 200 OK 0
osnrafbtea.oneswittla.ru/web1/validatecaptcha
172.67.218.22 200 OK 255
osnrafbtea.oneswittla.ru/web1/info
172.67.218.22 200 OK 6862
osnrafbtea.oneswittla.ru/web1/assets/godaddy-logo.png
172.67.218.22 200 OK 49602
osnrafbtea.oneswittla.ru/web1/assets/godaddy-left.png
172.67.218.22 200 OK 29796
osnrafbtea.oneswittla.ru/web1/assets/godaddy-microsoftlogo.png
172.67.218.22 200 OK 70712
osnrafbtea.oneswittla.ru/web1/assets/officelogo.png
172.67.218.22 200 OK 1400
aadcdn.msftauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg
152.199.23.37 200 OK 190
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg
152.199.23.37 200 OK 1173
aadcdn.msftauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg
152.199.23.37 200 OK 2407
logincdn.msauth.net/shared/1.0/content/images/picker_verify_email_958962caa7cf6b75cd412e9e3b687b22.svg
192.229.221.185 200 OK 212
aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_11d9e3bcdfede9ce5ce5ace2d129f1c4.svg
13.107.246.53 200 OK 673
adfs.heart.org/adfs/portal/logo/logo.png
69.152.183.140 200 OK 6428
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
172.67.218.22 0
httpbin.org/ip
3.226.223.40 200 OK 31
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
104.21.17.6 0
osnrafbtea.oneswittla.ru/web1/assets/pages/104gf8.css?cb=1700552641731
172.67.218.22 200 OK 1121
osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
172.67.218.22 200 OK 34494
osnrafbtea.oneswittla.ru/kswqjl/
172.67.218.22 200 OK 115
osnrafbtea.oneswittla.ru/web1/assets/js/pages-head-web.min.js?cb=1700552641731
172.67.218.22 200 OK 13626
challenges.cloudflare.com/turnstile/v0/api.js?render=explicit
104.17.2.184 302 Found 34254
osnrafbtea.oneswittla.ru//web1socket/socket.io/?type=User&EIO=4&transport=websocket
172.67.218.22 101 Switching Protocols 0
osnrafbtea.oneswittla.ru/web1/assets/js/pages-head-top-web.min.js?cb=1700552640702
172.67.218.22 200 OK 2394
osnrafbtea.oneswittla.ru/web1/assets/key.png
172.67.218.22 200 OK 727
osnrafbtea.oneswittla.ru/web1/assets/back.png
172.67.218.22 200 OK 231
code.jquery.com/jquery-3.6.0.min.js
151.101.194.137 200 OK 89501
osnrafbtea.oneswittla.ru/web1/assets/css/pages-godaddy.css?cb=1700552641731
172.67.218.22 200 OK 38221
osnrafbtea.oneswittla.ru/web1/assets/cloudfavicon.ico
172.67.218.22 200 OK 34494