Report Overview

  1. Submitted URL

    bmwag-rt-prod2-t.campaign.adobe.com/r/?id=h2ccc12b,8d23fb3,492093b&p1=//genesisbusinessfactory.com/cig.bin/iwo9nightopafsfsraniticmeridwpfile4086/8UX5-UOCL1S-UKN4/bmVpbC5ob2xtZXNAaW9uYm9uZC5jb20=

  2. IP

    34.254.109.246

    ASN

    #16509 AMAZON-02

  3. Submitted

    2023-11-21T07:41:37Z

    Access

    public

  4. Website Title

    Sign in to Outlook

  5. Final URL

    pub-e3fd11aa32b448efb4c0f71f7633004a.r2.dev/www.outlook.office365.com.owawxMmYwLWNlMzct&resource=0tNDFmZzct&resource=00000002-0000-0ff1-ce00-00000000000id=4dcfe40=4dcf000000id=400id=4dcfe40=4ddcfe40=4dcfe00id00000000000id=.html#

  6. urlquery detections

    Phishing - Microsoft Outlook

Detections

  1. urlquery

    5

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    2

Domain Summary

Domain Rank First Seen Last Seen
cdnjs.cloudflare.com (2) 235 2015-04-17 22:46:33 2023-11-21 05:09:35
code.jquery.com (2) 634 2012-05-21 19:28:02 2023-11-21 05:09:18
aadcdn.msauth.net (3) 1421 2018-11-19 11:50:03 2023-11-19 18:13:31
myworkshope.xyz (3) unknown 2023-11-20 06:44:48 2023-11-20 06:44:48
bmwag-rt-prod2-t.campaign.adobe.com (1) unknown 2020-10-06 11:33:48 2023-11-20 05:41:55
genesisbusinessfactory.com (1) unknown 2019-12-25 15:27:57 2023-11-20 15:11:39
pub-e3fd11aa32b448efb4c0f71f7633004a.r2.dev (3) unknown No data No data

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected


OpenPhish
Severity Indicator Alert
medium pub-e3fd11aa32b448efb4c0f71f7633004a.r2.dev/www.outlook.office365.com.owawxMmYwLWNlMzct&resource=0tNDFmZzct&resource=00000002-0000-0ff1-ce00-00000000000id=4dcfe40=4dcf000000id=400id=4dcfe40=4ddcfe40=4dcfe00id00000000000id=.html Office365
medium pub-e3fd11aa32b448efb4c0f71f7633004a.r2.dev/www.outlook.office365.com.owawxMmYwLWNlMzct&resource=0tNDFmZzct&resource=00000002-0000-0ff1-ce00-00000000000id=4dcfe40=4dcf000000id=400id=4dcfe40=4ddcfe40=4dcfe00id00000000000id=.html Office365

PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


ThreatFox

No alerts detected


JavaScript (6)

HTTP Transactions (15)

URL IP Response Size
bmwag-rt-prod2-t.campaign.adobe.com/r/?id=h2ccc12b,8d23fb3,492093b&p1=//genesisbusinessfactory.com/cig.bin/iwo9nightopafsfsraniticmeridwpfile4086/8UX5-UOCL1S-UKN4/bmVpbC5ob2xtZXNAaW9uYm9uZC5jb20=
52.215.148.88 17
genesisbusinessfactory.com/cig.bin/iwo9nightopafsfsraniticmeridwpfile4086/8UX5-UOCL1S-UKN4/bmVpbC5ob2xtZXNAaW9uYm9uZC5jb20=
74.208.19.95 0
pub-e3fd11aa32b448efb4c0f71f7633004a.r2.dev/www.outlook.office365.com.owawxMmYwLWNlMzct&resource=0tNDFmZzct&resource=00000002-0000-0ff1-ce00-00000000000id=4dcfe40=4dcf000000id=400id=4dcfe40=4ddcfe40=4dcfe00id00000000000id=.html
104.18.3.35 216
cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js
104.17.25.14 200 OK 14107
code.jquery.com/jquery-3.1.1.min.js
151.101.2.137 200 OK 30070
pub-e3fd11aa32b448efb4c0f71f7633004a.r2.dev/favicon.ico
104.18.3.35 404 Not Found 6481
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css
104.17.25.14 200 OK 5884
code.jquery.com/jquery-3.1.1.min.js
151.101.2.137 200 OK 30070
aadcdn.msauth.net/shared/1.0/content/images/picker_verify_call_fe87496cc7a44412f7893a72099c120a.svg
13.107.213.53 200 OK 1173
aadcdn.msauth.net/shared/1.0/content/images/picker_verify_sms_27a6d18b56f46818420e60a773c36d4e.svg
13.107.213.53 200 OK 199
aadcdn.msauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_b59c16ca9bf156438a8a96d45e33db64.svg
13.107.213.53 200 OK 2407
myworkshope.xyz/host2.4/c0a542e.php
23.227.203.4 200 OK 601536
myworkshope.xyz/host2.4/c0a542e.php
23.227.203.4 200 OK 0
pub-e3fd11aa32b448efb4c0f71f7633004a.r2.dev/www.outlook.office365.com.owawxMmYwLWNlMzct&resource=0tNDFmZzct&resource=00000002-0000-0ff1-ce00-00000000000id=4dcfe40=4dcf000000id=400id=4dcfe40=4ddcfe40=4dcfe00id00000000000id=.html
104.18.3.35 200 OK 232
myworkshope.xyz/host2.4/admin/js/sc.php
23.227.203.4 200 OK 1890