Report - www.alnuaimi-group.com/sms.php

Report Overview

Submitted URL
www.alnuaimi-group.com/sms.php
IP
162.144.126.144
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-11-09 04:36:21
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
128

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.39.37.230
snap.licdn.com	1044	2014-10-06T10:43:45Z	2023-03-10T10:16:19Z	792 B	4.1 kB	23.36.76.121
px.ads.linkedin.com	522	2018-06-15T13:29:56Z	2023-03-10T11:11:31Z	474 B	824 B	13.107.42.14
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
z.moatads.com	374	2014-02-11T17:19:47Z	2023-03-10T05:50:44Z	396 B	1.4 kB	23.38.201.146
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	399 B	1.7 kB	142.250.74.10
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-10T09:31:28Z	289 B	16 kB	151.101.84.157
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-10T16:05:03Z	392 B	16 kB	216.58.207.226
pngimage.net	194020	2015-09-07T18:34:44Z	2023-03-10T13:42:32Z	428 B	50 kB	172.67.140.187
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	978 B	94 kB	216.58.207.195
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.4 kB	3.5 kB	23.36.76.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	2.4 kB	5.1 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
cdn.mycomandia.com	unknown	2017-02-08T17:30:34Z	2023-03-10T15:56:38Z	2.2 kB	6.3 kB	176.31.233.37
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	54 kB	34.120.237.76
tienda.correos.es	unknown	2018-12-13T09:45:01Z	2023-03-10T15:56:38Z	395 B	1.1 kB	94.23.87.92
b.scorecardresearch.com	3959	2012-06-26T16:32:10Z	2023-03-10T18:36:04Z	293 B	2.4 kB	18.165.242.8
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	379 B	29 kB	31.13.72.12
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	364 B	1.5 kB	34.102.187.140
www.alnuaimi-group.com	unknown	2014-04-26T15:50:57Z	2023-02-24T06:14:21Z	14 kB	512 kB	162.144.126.144
sp-bootstrap.global.ssl.fastly.net	319464	2015-03-02T14:51:10Z	2023-03-08T14:59:06Z	990 B	135 kB	151.101.85.194
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	2.7 kB	5.6 kB	142.250.74.35
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	404 B	45 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-11-08	medium	www.alnuaimi-group.com/sms.php	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify
2022-10-11	medium	www.alnuaimi-group.com/	Spotify

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-09	medium	www.alnuaimi-group.com/sms.php	Phishing
2022-11-09	medium	www.alnuaimi-group.com/embed.php	Phishing
2022-11-09	medium	www.alnuaimi-group.com/download.ico	Phishing
2022-11-09	medium	www.alnuaimi-group.com/SIBS%20FPS_files/jquery-3.2.1.min.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/SIBS%20FPS_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/js	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/1.txt	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/1(1).txt	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/moatframe.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/beacon.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/insight.min.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/uwt.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/fbevents.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/modernizr.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/SIBS%20FPS_files/h47601f00.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/f.txt	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/js	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/f.txt	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/1.txt	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/1(1).txt	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/moatframe.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/beacon.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/insight.min.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/uwt.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/fbevents.js.t%C3%A9l%C3%A9chargement	Phishing
2022-11-09	medium	www.alnuaimi-group.com/file/modernizr.js.t%C3%A9l%C3%A9chargement	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.alnuaimi-group.com/sms.php	1.5 kB	2023-03-08	2023-12-26
Pretty URL www.alnuaimi-group.com/sms.php IP 162.144.126.144 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:08:29 Last Seen2023-12-26 02:02:58 Times Seen6 Hash e2b97d11332859147ae13aed21d76775 6f510ac43264683f9fe277d3330e9dbefd180c4a 2b66ad5e0e77c71eeac075f310d81a9ab448c6e56906d193f5c3fbbd494ff17d Loading...

	www.googletagmanager.com/gtag/js?id=DC-9852050&l=dataLayer&cx=c	113 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=DC-9852050&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:22:45 Last Seen2023-03-11 09:22:45 Times Seen1 Hash 40ddc30a110aae27da2ab6b993188522 5fe387567c7d7a059294b762bc1d67aef16dca6d 3880b8fbb88f044da5409118a9b5c091199fe8925e38c4cf6747fb07a3438e43 Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	b.scorecardresearch.com/beacon.js	3.9 kB	2023-03-07	2024-01-14
Pretty URL b.scorecardresearch.com/beacon.js IP 18.165.242.8 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-01-14 12:48:16 Times Seen58 Hash eaf85c1c6758e84acfe134efd70e9373 5caec39b3ce7c2ec9912aff8ae6fa05aa9fb757e ee54b51af15f1f68f707da981f3c135c249a25e9293871e1e0cbd2c24c7b6117 Loading...

	z.moatads.com/addthismoatframe568911941483/moatframe.js	1.7 kB	2023-03-07	2023-11-01
Pretty URL z.moatads.com/addthismoatframe568911941483/moatframe.js IP 23.38.201.146 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-11-01 14:42:28 Times Seen4278 Hash dd1a19cb8d13e4571d2b293c0a0d2ccf 18070dd5c894930a8aef7117bf8d49bd4922a723 05090f9390f5bc0cd23fe5f432037cc92d7cbce1ced9bfe8faf3d1c9abae85cd Loading...

	www.alnuaimi-group.com/embed.php	41 B	2023-03-08	2023-03-13
Pretty URL www.alnuaimi-group.com/embed.php IP 162.144.126.144 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:08:29 Last Seen2023-03-13 11:39:37 Times Seen1 Hash 1e913eb564e9bf3918b6f0a5348714ff f661f0326385723c9b18cf72ecf7b507e458b732 3b6653a8b39fa1cd183606830a9104bdf12502df145d93f40812d1076ea278b4 Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	997 B	2023-03-11	2023-03-11
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:16:40 Last Seen2023-03-11 09:52:03 Times Seen1 Hash fe5cbdf5f5ede3cc7089db0e69bda686 55e3e577654165376b46d33b474633eb5b5b91cb 32dc60f0505bcf00bcdff838e34496f9ec99898671d18e042328252936f28e34 Loading...

	snap.licdn.com/li.lms-analytics/insight.old.min.js	7.8 kB	2023-03-07	2024-01-14
Pretty URL snap.licdn.com/li.lms-analytics/insight.old.min.js IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-01-14 12:48:17 Times Seen22 Hash 93e8a332e6a6de807c6ef9fdac9689ae 68a0ccb463d6abb247149a50e0a90ff32dd98ad0 b57839788686bf37d29f47bbe45ad8258085e3aebf54650ab389c0b515b977e1 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-10	2023-10-31
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 17:19:33 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 8938d4fc65afd3422bf533482ca33a53 2d92351d88fc6fd59cdac7d801753ac64ba52277 f896040524443394b8b1ba4fbd1de94be74378ab901e53b3b40c1323d1735143 Loading...

	www.googleadservices.com/pagead/conversion_async.js	42 kB	2023-03-10	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion_async.js IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:29:39 Last Seen2023-03-11 09:57:12 Times Seen1 Hash aaccfcac5c56a59ac24da19255e19b92 bfe3f73d131d8b6c4a621684533bac80d4870a86 2f5d353c9cf81712d246cc1bc3ff04b33137f89d868457ac038d4d2efa755d30 Loading...

HTTP Transactions (88)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6608
Expires: Wed, 09 Nov 2022 06:26:18 GMT
Date: Wed, 09 Nov 2022 04:36:10 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7908acd0c083145e2b454aaeb063c236
0696647bb0a4118327f637a50ebcc21bac39d592
ffc30b68df0b33d67f31e37bbf5ae5cf4c23e1c8b8197bf76a95ee06bec4cd36

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5929
Cache-Control: max-age=113630
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:10 GMT
Etag: "636a2fef-1d7"
Expires: Thu, 10 Nov 2022 12:10:00 GMT
Last-Modified: Tue, 08 Nov 2022 10:31:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7908acd0c083145e2b454aaeb063c236
0696647bb0a4118327f637a50ebcc21bac39d592
ffc30b68df0b33d67f31e37bbf5ae5cf4c23e1c8b8197bf76a95ee06bec4cd36

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6001
Cache-Control: max-age=113702
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:10 GMT
Etag: "636a2fef-1d7"
Expires: Thu, 10 Nov 2022 12:11:12 GMT
Last-Modified: Tue, 08 Nov 2022 10:31:11 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dc90abd8b3ea8e75a68c144d74d75788
1ce29dca1ee9ca8931397de31ffb6cf7833baaf8
807000997bcf1b7a1fa35e43908cbfa54cd1704a5a0f53c09e1ae154638f10e0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "807000997BCF1B7A1FA35E43908CBFA54CD1704A5A0F53C09E1AE154638F10E0"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3179
Expires: Wed, 09 Nov 2022 05:29:09 GMT
Date: Wed, 09 Nov 2022 04:36:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
Alt-Used: 0

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 09 Nov 2022 03:43:37 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3153
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: bdBpDzpJ6vnPwrTYx4Gk7JMZ7/9DZPTa1naNuE8BZd5EAM4nTZWGV4foywvINP4j/oDxnTKkbhI=
x-amz-request-id: EF8HAD49KP3909BR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 09 Nov 2022 03:48:48 GMT
age: 2842
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 04:36:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.alnuaimi-group.com/sms.php

162.144.126.144

200 OK

15 kB

URL HTTP/1.1
www.alnuaimi-group.com/sms.php
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
15 kB (15317 bytes)
Hash
684bd4329dff2e657960f7e844815766
edcd7adfcb5169897ad96e093710aaf1cde293ce
7d58015949bcc5042dad121f0fe464107fe37405dcc25b4b351d85ab5caa26f5

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /sms.php HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 04:35:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.alnuaimi-group.com/embedded-checkout-7f51b6350a.css

162.144.126.144

200 OK

16 kB

URL HTTP/1.1
www.alnuaimi-group.com/embedded-checkout-7f51b6350a.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (16258), with no line terminators
Size
16 kB (16258 bytes)
Hash
29ae41bf4a52b35f51ae1f79438165ce
bce871190ef71bcaa880d3c5fa5624c6cc2264bb
b51a12e6f6aba4d92f45d4b4ac003fa0285821f26b77b4f8c3af5ac774a10dbb

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /embedded-checkout-7f51b6350a.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/sms.php

HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 04:35:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 31 May 2022 15:01:44 GMT
Accept-Ranges: bytes
Content-Length: 16258
Keep-Alive: timeout=5, max=100
Content-Type: text/css

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2a47d129a3af5f02c654faf925c60273
9ad27ed9f4500c939260a677c12e702599b00fa9
0e031af077bf7009ffefada782407a247bbd31bddc96994c68de7bfe902bf992

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1977
Cache-Control: max-age=104612
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:11 GMT
Etag: "636a1c26-1d7"
Expires: Thu, 10 Nov 2022 09:39:43 GMT
Last-Modified: Tue, 08 Nov 2022 09:06:46 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.39.37.230

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.37.230:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9SDD278grndHddmk0Wt2Pw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O3Vujl944GwTfCrOnSkw82U7edE=

www.alnuaimi-group.com/account-4445741da9.css

162.144.126.144

200 OK

113 kB

URL HTTP/1.1
www.alnuaimi-group.com/account-4445741da9.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
113 kB (113195 bytes)
Hash
723135e57fd612f4824f4d0e2aab08be
a4a31249be59ce49c27790bacaa780d08035d044
271b738ea03c0a47b2bf4d08eae8ddcd83de610b7b680e16523be08234522c28

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /account-4445741da9.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/sms.php

HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 04:35:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 31 May 2022 15:01:32 GMT
Accept-Ranges: bytes
Content-Length: 113195
Keep-Alive: timeout=5, max=100
Content-Type: text/css

www.alnuaimi-group.com/spotify-543b91ee3c.css

162.144.126.144

200 OK

334 kB

URL HTTP/1.1
www.alnuaimi-group.com/spotify-543b91ee3c.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65367), with CRLF line terminators
Size
334 kB (333734 bytes)
Hash
89d2f54b4fc679a8f451230f0893c493
d54d40ee2f7b0b04b92dc0d9636b9ec81ac86dec
723f08da495dd2a577916a022873b014c5df8f0a3dba00b69d2f910591bad1b4

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /spotify-543b91ee3c.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/sms.php

HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 04:35:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 31 May 2022 15:01:52 GMT
Accept-Ranges: bytes
Content-Length: 333734
Keep-Alive: timeout=5, max=100
Content-Type: text/css

sp-bootstrap.global.ssl.fastly.net/8.2.0/fonts/circular-bold.woff2

151.101.85.194

200 OK

69 kB

URL HTTP/1.1
sp-bootstrap.global.ssl.fastly.net/8.2.0/fonts/circular-bold.woff2
IP
151.101.85.194:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 69140, version 1.66\012- data
Size
69 kB (69140 bytes)
Hash
14bfce9501e5a5dc0adbe559dd630bc6
1347f73fa1907fd9762431cbcfc1e14918cdbddc
0e1e4f36fc8076dd1b5f30ac8aeaeed4b5927e475d0d4e7b8d63a33beb2fd0b5

HTTP Headers

GET /8.2.0/fonts/circular-bold.woff2 HTTP/1.1
Host: sp-bootstrap.global.ssl.fastly.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alnuaimi-group.com
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 69140
Last-Modified: Mon, 21 Mar 2022 12:56:03 GMT
ETag: "14bfce9501e5a5dc0adbe559dd630bc6"
x-goog-generation: 1647867363593511
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 69140
x-amz-meta-goog-reserved-file-mtime: 1504812661
Content-Type: font/woff2
Accept-Ranges: bytes
Date: Wed, 09 Nov 2022 04:36:12 GMT
Age: 5493992
X-Served-By: cache-chi-klot8100108-CHI, cache-bma1671-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2916, 1
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400

sp-bootstrap.global.ssl.fastly.net/8.2.0/fonts/circular-book.woff2

151.101.85.194

200 OK

64 kB

URL HTTP/1.1
sp-bootstrap.global.ssl.fastly.net/8.2.0/fonts/circular-book.woff2
IP
151.101.85.194:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 64512, version 1.66\012- data
Size
64 kB (64512 bytes)
Hash
0c0dfc4df72c07c84b15651ab6f951a6
06d7669306b19fffec534f47b18eedce61c5aa73
16f860a080d405f412750f83c4ee2168302cd1f3347416b5b3ae50bae3571b28

HTTP Headers

GET /8.2.0/fonts/circular-book.woff2 HTTP/1.1
Host: sp-bootstrap.global.ssl.fastly.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alnuaimi-group.com
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 64512
Last-Modified: Mon, 21 Mar 2022 12:56:03 GMT
ETag: "0c0dfc4df72c07c84b15651ab6f951a6"
x-goog-generation: 1647867363540028
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 64512
x-amz-meta-goog-reserved-file-mtime: 1504812661
Content-Type: font/woff2
Accept-Ranges: bytes
Date: Wed, 09 Nov 2022 04:36:12 GMT
Age: 1873988
X-Served-By: cache-chi-kigq8000135-CHI, cache-bma1635-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 274, 870
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400

www.alnuaimi-group.com/embed.php

162.144.126.144

200 OK

15 kB

URL HTTP/1.1
www.alnuaimi-group.com/embed.php
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
15 kB (14675 bytes)
Hash
b54e423d10639c91d2fe0dfdb9b8cdfa
c73303549a0d9b587c963ed2fce7eb46ccbfca6b
129fc40c541c7d19ce41012a988d0005628bd65697e1cffdf197d305cf3f4102

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /embed.php HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/sms.php
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=b712582681913594278dafb02b582667; path=/
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.alnuaimi-group.com/download.ico

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/download.ico
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /download.ico HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/sms.php

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

z.moatads.com/addthismoatframe568911941483/moatframe.js

23.38.201.146

200 OK

948 B

URL HTTP/2
z.moatads.com/addthismoatframe568911941483/moatframe.js
IP
23.38.201.146:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (523)
Size
948 B (948 bytes)
Hash
f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac

HTTP Headers

GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=43986
date: Wed, 09 Nov 2022 04:36:12 GMT
X-Firefox-Spdy: h2

cdn.mycomandia.com/static/shop/common/fonts/flaticon/flaticon.css?v=2019.12.17

176.31.233.37

200 OK

1.2 kB

URL HTTP/2
cdn.mycomandia.com/static/shop/common/fonts/flaticon/flaticon.css?v=2019.12.17
IP
176.31.233.37:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
1.2 kB (1210 bytes)
Hash
e8b5e4d5eb0df11eb339ba959520b978
24777a5efa576aec4026ff30bcf4fd6ecd81b003
2650ffdcb2bf4147d062825fee353bd86e80c1f1c22c0b29ea856fdd3213e0a3

HTTP Headers

GET /static/shop/common/fonts/flaticon/flaticon.css?v=2019.12.17 HTTP/1.1
Host: cdn.mycomandia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 04:36:12 GMT
content-type: text/css
content-length: 1210
last-modified: Mon, 02 Sep 2019 15:03:52 GMT
etag: "5d6d2f58-4ba"
server: rebelio-n2
expires: Thu, 09 Nov 2023 04:36:12 GMT
cache-control: max-age=31536000
backend: 2
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

www.alnuaimi-group.com/SIBS%20FPS_files/bootstrap.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/SIBS%20FPS_files/bootstrap.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /SIBS%20FPS_files/bootstrap.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/SIBS%20FPS_files/bootstrap.min.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/SIBS%20FPS_files/bootstrap.min.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /SIBS%20FPS_files/bootstrap.min.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/SIBS%20FPS_files/acs.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/SIBS%20FPS_files/acs.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /SIBS%20FPS_files/acs.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

cdn.mycomandia.com/static/shop/common/css/validationEngine.jquery.css?v=2019.12.17

176.31.233.37

200 OK

3.3 kB

URL HTTP/2
cdn.mycomandia.com/static/shop/common/css/validationEngine.jquery.css?v=2019.12.17
IP
176.31.233.37:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
3.3 kB (3334 bytes)
Hash
a8935f51f8ca663bf3a18d4b1da31bf7
6f2e6f9c21ced7020e6d8c73c2e8ad71d797aa9d
cd363d0f8425d6b271c14ee5d6a8d693c3aa1323b64979b69c69d26661927303

HTTP Headers

GET /static/shop/common/css/validationEngine.jquery.css?v=2019.12.17 HTTP/1.1
Host: cdn.mycomandia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 04:36:12 GMT
content-type: text/css
content-length: 3334
last-modified: Fri, 14 Aug 2015 20:41:08 GMT
etag: "55ce5264-d06"
server: rebelio-n2
expires: Thu, 09 Nov 2023 04:36:12 GMT
cache-control: max-age=31536000
backend: 2
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

www.alnuaimi-group.com/SIBS%20FPS_files/jquery-3.2.1.min.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/SIBS%20FPS_files/jquery-3.2.1.min.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /SIBS%20FPS_files/jquery-3.2.1.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cc2a9c89cbd9d2da1fd4a79a7d8b1d8
b2a4971855e26ff842f71d5dd4fff2596a83bd59
3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3b26e900b9be930a07101e0d5f5de579
fc84082e3eef2e000f255f1cbd4cf45b694a2118
1dff9aae4984871070d193b60d41548a8a816f0ba20839d41d6e73a08e548afe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=PT+Sans:400,700

142.250.74.10

200 OK

953 B

URL HTTP/2
fonts.googleapis.com/css?family=PT+Sans:400,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
953 B (953 bytes)
Hash
da2e2e67f1cb521458609a408ac42cab
d37cd90abf43b0fe7abab2f3f012c50e26c81d38
8a9c4975014b3179de467cf4080c5eaa6617c883962dfcf5fae1baa0d8691bd7

HTTP Headers

GET /css?family=PT+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.mycomandia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 09 Nov 2022 04:36:12 GMT
date: Wed, 09 Nov 2022 04:36:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=DC-9852050&l=dataLayer&cx=c

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=DC-9852050&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (44008 bytes)
Hash
5eda9ea899e31528f8ab64aefc451db1
fbbd1fd945cf420289b7abaa151d6a02ad827bbc
2d016e7f17af0644bc0c54af2f50963e68afb8789bdf93836a314b983c3a9324

HTTP Headers

GET /gtag/js?id=DC-9852050&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 09 Nov 2022 04:36:12 GMT
expires: Wed, 09 Nov 2022 04:36:12 GMT
cache-control: private, max-age=900
last-modified: Wed, 09 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44008
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3b26e900b9be930a07101e0d5f5de579
fc84082e3eef2e000f255f1cbd4cf45b694a2118
1dff9aae4984871070d193b60d41548a8a816f0ba20839d41d6e73a08e548afe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tienda.correos.es/css/common-dynamic.css

94.23.87.92

200 OK

717 B

URL HTTP/1.1
tienda.correos.es/css/common-dynamic.css
IP
94.23.87.92:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
717 B (717 bytes)
Hash
45bca144e962bb998d9d807e54e521c3
63beb9c869ed56068010f501fde069d8e02164d7
31dda737e3779db2e9efd81ab860e724f61738acce5b10558cb6c56c76daf544

HTTP Headers

GET /css/common-dynamic.css HTTP/1.1
Host: tienda.correos.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: server
Date: Wed, 09 Nov 2022 04:36:12 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Backend: 1
Content-Encoding: gzip
X-IPLB-Request-ID: 5B5A2A9A:DDF0_5E17575C:01BB_636B2E3C_36F30:E563
X-IPLB-Instance: 35327
Set-Cookie: SERVERID139651=c80001a3|Y2suP|Y2suP; path=/; HttpOnly
Cache-control: private

www.alnuaimi-group.com/SIBS%20FPS_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/SIBS%20FPS_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /SIBS%20FPS_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/js

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/js
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/js HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/1.txt

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/1.txt
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/1.txt HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/1(1).txt

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/1(1).txt
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/1(1).txt HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/normalize.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/normalize.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /file/normalize.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/moatframe.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/moatframe.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/moatframe.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6266
Expires: Wed, 09 Nov 2022 06:20:38 GMT
Date: Wed, 09 Nov 2022 04:36:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6266
Expires: Wed, 09 Nov 2022 06:20:38 GMT
Date: Wed, 09 Nov 2022 04:36:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F892db5b6-1bca-4d8f-b844-3201ef7b3ef0.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F892db5b6-1bca-4d8f-b844-3201ef7b3ef0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12510 bytes)
Hash
e3d20f900a883cec8e0cab687df8a251
1105130523fb346dbab9ad2bb8d71c3f505425ce
b5ade9b1302479c4589eb659125d0111c55bb4520d72501cc47b295fd65e8a6e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F892db5b6-1bca-4d8f-b844-3201ef7b3ef0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12510
x-amzn-requestid: ad966326-25a8-44df-880a-608572bf2538
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTTuExNIAMFilA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc17-4eaa4fda178720702d9a9583;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZlRHZYYt_p4bzFjTJAzXR08Oj0B_m9qLrpOAysjxJ2F9tzzF4G7U8g==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:43:44 GMT
age: 24748
etag: "1105130523fb346dbab9ad2bb8d71c3f505425ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84bc0bac-c8ba-4055-b51a-0c279033a4e9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6458 bytes)
Hash
1382cce063e7b64ce1a9360db1cb1a03
e773fbc5ba8bb957bce566d353c4580e46d4b31c
88332359957b997367612f496d866de90680f3ff458ead4e6cdc052ad3fe8858

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84bc0bac-c8ba-4055-b51a-0c279033a4e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6458
x-amzn-requestid: 7dc5df31-e521-476f-aee2-6a59192d8c94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTTuEwBoAMFpVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc17-1a1866f906458f916d6baac8;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TpRz9GwPmcySJ-e0FjxKkBYmlb6wV8LnMoSMD_GJOpSk_phabHP-7Q==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 22:16:10 GMT
age: 22802
etag: "e773fbc5ba8bb957bce566d353c4580e46d4b31c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff4595af-345a-41e9-bc77-5e5f5719a251.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8586 bytes)
Hash
ee6ac2ea7efd3fab3c55044dc9b01879
a3564349a6c866d4a36fb2d86944b69628bdb8e6
95745616900a0ea1527a69558a415beab18fde9b871e1bf4cf246fa8777dcb91

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff4595af-345a-41e9-bc77-5e5f5719a251.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8586
x-amzn-requestid: 4ae185c6-868f-4d10-9c41-a423cdf42101
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTUCG1doAMFtYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc19-3d3201177e8e60866ce59b01;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:29 GMT
x-amz-cf-pop: SFO20-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jkIbA9XW12Vn_yXrK0MDe5IhTzzzvfQONeCwPEYwEbbD5W6fTzAIiQ==
via: 1.1 f9d4b21c935c23e15cfc47b3d33e44e6.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 22:39:53 GMT
age: 21379
etag: "a3564349a6c866d4a36fb2d86944b69628bdb8e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf9d55c4-e1e8-4687-8395-004d7c4a0225.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6635 bytes)
Hash
b3cd10472aabf86c5ffdfd06057f87f6
82728de12017be85f27e65a7222573058aad37c3
1bbb913786c95b51639193739d2cf01de1cdd8afe8b68dfef378b989129f0ef4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf9d55c4-e1e8-4687-8395-004d7c4a0225.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6635
x-amzn-requestid: 8348f858-989b-4643-b6f8-4f7254b154ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTmaHunIAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc8f-02cc736a29efbcb473e20402;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:39:27 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h1nLdkhJjsLSGP0pS3mmDwAcsKSLD-rYRaRt4X9_L2jWTNQaiVJbqw==
via: 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:43:44 GMT
age: 24748
etag: "82728de12017be85f27e65a7222573058aad37c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10462 bytes)
Hash
4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 6dc7dc5c-88e9-4550-abf0-f16965ab7cd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bF_38GKXoAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636579cc-28ea4125437c31cc34683fb7;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 20:45:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q0yZmbExDP4tH0n1n2qj_NR2Mv_y_dsO0LJ1RKZoS6Me-NLbhpUWqw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 09:08:56 GMT
age: 70036
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba11c7c9-77b7-4b0d-aa7f-493ab46c77b1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.8 kB (2766 bytes)
Hash
1b4ae74d6a926ef85ce993a33f7d8a3f
9ce8d453c5ab8f7682e5ee3641a37b1abe1a8857
61b2fea439945e122a8502ab05e6c68bc1b3a9d8c639344ef5b04dfcc6889a65

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba11c7c9-77b7-4b0d-aa7f-493ab46c77b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2766
x-amzn-requestid: 934d6215-528a-4e78-bc46-3b0838d94671
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bG3d2HMGIAMF7Gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365d2be-0c11c2fb6ebc48eb1f0a3aef;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 03:04:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2MtnIC1pavEcDYixORBwRS07BU7q0n-eDUdZAAe3NDSGF6T8yau4ug==
via: 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 09:17:38 GMT
age: 69514
etag: "9ce8d453c5ab8f7682e5ee3641a37b1abe1a8857"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.alnuaimi-group.com/file/foundation.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/foundation.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /file/foundation.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/cpc-main.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/cpc-main.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /file/cpc-main.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/beacon.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/beacon.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/beacon.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/insight.min.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/insight.min.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/insight.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/uwt.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/uwt.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/uwt.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/fbevents.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/fbevents.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/fbevents.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/modernizr.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/modernizr.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/modernizr.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/SIBS%20FPS_files/h47601f00.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/SIBS%20FPS_files/h47601f00.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /SIBS%20FPS_files/h47601f00.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/f.txt

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/f.txt
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/f.txt HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
78b9aa812a801a465d8c349441ab678a
505a7b2b24c3c302dd84959b5dab105195ec0c22
71bc8e00fdc9665ce2a8ebb9192efe7f59b9954a36afbed78329c5efccab82e8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=145509
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:12 GMT
Etag: "636ac3a1-118"
Expires: Thu, 10 Nov 2022 21:01:21 GMT
Last-Modified: Tue, 08 Nov 2022 21:01:21 GMT
Server: nginx
Content-Length: 280

www.alnuaimi-group.com/file/js

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/js
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/js HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/f.txt

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/f.txt
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/f.txt HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/1.txt

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/1.txt
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/1.txt HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

pngimage.net/wp-content/uploads/2018/06/verified-by-visa-png-2.png

172.67.140.187

200 OK

49 kB

URL HTTP/2
pngimage.net/wp-content/uploads/2018/06/verified-by-visa-png-2.png
IP
172.67.140.187:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 524 x 131, 8-bit/color RGBA, non-interlaced\012- data
Size
49 kB (48854 bytes)
Hash
ebf2d4ba3d7e170e4ffce24591a575b9
e9e96120a0b27cea6c5403b5f86a9b3192dad97c
d8fa6154fb4c4d0795b0a109b6f78b1c2e82333e97d066437aaba9ad5e79b6b2

HTTP Headers

GET /wp-content/uploads/2018/06/verified-by-visa-png-2.png HTTP/1.1
Host: pngimage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 04:36:13 GMT
content-type: image/png
content-length: 48854
strict-transport-security: max-age=63072000
last-modified: Tue, 26 Oct 2021 15:56:34 GMT
etag: "bed6-5cf43859c9955"
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: public, max-age=604800
access-control-allow-origin: *
x-cache: uncached
x-varnish-status: Disabled
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fn76WjNjX%2B3viXJldeISUj8Wz5V3uD5CjmmHDBv%2Fye%2FDiPOxS1RCCeXP0ZAHHk78fNaMlOWE7yDN%2FxPftxPvFp6UIu4k6xrXnDw82T98qwX9e3nlwHRxgR9ssXpASlw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7673d89d09ac0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.alnuaimi-group.com/file/1(1).txt

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/1(1).txt
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/1(1).txt HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
78b9aa812a801a465d8c349441ab678a
505a7b2b24c3c302dd84959b5dab105195ec0c22
71bc8e00fdc9665ce2a8ebb9192efe7f59b9954a36afbed78329c5efccab82e8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=145508
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Etag: "636ac3a1-118"
Expires: Thu, 10 Nov 2022 21:01:21 GMT
Last-Modified: Tue, 08 Nov 2022 21:01:21 GMT
Server: nginx
Content-Length: 280

www.alnuaimi-group.com/file/moatframe.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/moatframe.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/moatframe.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/foundation.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/foundation.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /file/foundation.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/normalize.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/normalize.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /file/normalize.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/beacon.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/beacon.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/beacon.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/cpc-main.css

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/cpc-main.css
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify

HTTP Headers

GET /file/cpc-main.css HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/insight.min.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/insight.min.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/insight.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/uwt.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/uwt.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/uwt.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/fbevents.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/fbevents.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/fbevents.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.alnuaimi-group.com/file/modernizr.js.t%C3%A9l%C3%A9chargement

162.144.126.144

404 Not Found

315 B

URL HTTP/1.1
www.alnuaimi-group.com/file/modernizr.js.t%C3%A9l%C3%A9chargement
IP
162.144.126.144:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
openphish	Spotify
fortinet	Phishing

HTTP Headers

GET /file/modernizr.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: www.alnuaimi-group.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/embed.php
Cookie: PHPSESSID=b712582681913594278dafb02b582667

HTTP/1.1 404 Not Found
Date: Wed, 09 Nov 2022 04:35:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Size
45 kB (45300 bytes)
Hash
5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d

HTTP Headers

GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alnuaimi-group.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:27:53 GMT
expires: Thu, 02 Nov 2023 19:27:53 GMT
cache-control: public, max-age=31536000
age: 551300
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2

216.58.207.195

200 OK

47 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Size
47 kB (47048 bytes)
Hash
87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1

HTTP Headers

GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.alnuaimi-group.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 04 Nov 2022 22:54:22 GMT
expires: Sat, 04 Nov 2023 22:54:22 GMT
cache-control: public, max-age=31536000
age: 366111
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

15 kB

URL HTTP/1.1
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 15375
Last-Modified: Thu, 27 Oct 2022 18:55:37 GMT
Cache-Control: no-cache
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
Accept-Ranges: bytes
Date: Wed, 09 Nov 2022 04:36:13 GMT
X-Served-By: cache-iad-kjyo7100147-IAD, cache-bma1634-BMA
X-Cache: HIT, HIT
Vary: Accept-Encoding,Host
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
69293b8c8a45196bb68c2fb4a573ee67
fbd418617bfbf280af580abf1d2698db8228d84b
bda77decf1a738ce7c86b23325d36faeff1878c643547c54dd62f182fc7ad5ed

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4064
Cache-Control: max-age=123595
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Etag: "636a5e28-1d7"
Expires: Thu, 10 Nov 2022 14:56:08 GMT
Last-Modified: Tue, 08 Nov 2022 13:48:24 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

b.scorecardresearch.com/beacon.js

18.165.242.8

200 OK

1.9 kB

URL HTTP/1.1
b.scorecardresearch.com/beacon.js
IP
18.165.242.8:0
ASN
#0

File type
ASCII text, with very long lines (3936)
Size
1.9 kB (1852 bytes)
Hash
b67d2bfd2ffc510f6344e0dee7f05de3
db5a2e6076fbed3d01ddd5a5150a761cb6bc1886
1e6b30c3e6f7ac17aab743639939cc408ba4f6bde7176eb4438c6ead54c80e07

HTTP Headers

GET /beacon.js HTTP/1.1
Host: b.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/

HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 09 Nov 2022 03:45:23 GMT
Cache-Control: max-age=86400
ETag: W/"eaf85c1c6758e84acfe134efd70e9373"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b66a7470c341bb8edfe0c35c17d6e508.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P6
X-Amz-Cf-Id: S0H7hHgQfKi__FkLenNB7Khm7AcJ6Od-K1gOL9FEXLraNvMimNHtUw==
Age: 3060

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.121

200 OK

472 B

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (996)
Size
472 B (472 bytes)
Hash
9c84a489651025d1173e25b763aa9512
f11ffd7fc8aebb12204163c8c7de63e15b7f1a7e
a0690bf498581eb6f63de50ec2aa642fa995a4ff24bdc455aa449472ee21feb8

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 09 Nov 2022 00:42:33 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=72770
date: Wed, 09 Nov 2022 04:36:13 GMT
content-length: 472
x-cdn: AKAM
X-Firefox-Spdy: h2

snap.licdn.com/li.lms-analytics/insight.old.min.js

23.36.76.121

200 OK

3.1 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.old.min.js
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (7751)
Size
3.1 kB (3063 bytes)
Hash
57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6

HTTP Headers

GET /li.lms-analytics/insight.old.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 21:02:26 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=85663
date: Wed, 09 Nov 2022 04:36:13 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27337 bytes)
Hash
0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: lTGWw8s+11A1haLu9h9xWgo+60rRm8zA8Gbe5o4kxHhoby7Wzz0iZxS4Hka1iAK1LmxgqNWyETSE2IXxG0W7ew==
priority: u=3,i
content-length: 27337
x-fb-trip-id: 1904183273
date: Wed, 09 Nov 2022 04:36:13 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6c54255a866cc3abc4fe7180f042e5f1
ab42c8e615d168d8c7f48b137be990db442fa60a
e3d27cd071630f0d50baba2715324d1e0c4c5082935201291d449ca540d600c5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
69293b8c8a45196bb68c2fb4a573ee67
fbd418617bfbf280af580abf1d2698db8228d84b
bda77decf1a738ce7c86b23325d36faeff1878c643547c54dd62f182fc7ad5ed

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4352
Cache-Control: max-age=123883
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Etag: "636a5e28-1d7"
Expires: Thu, 10 Nov 2022 15:00:56 GMT
Last-Modified: Tue, 08 Nov 2022 13:48:24 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

www.googleadservices.com/pagead/conversion_async.js

216.58.207.226

200 OK

15 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion_async.js
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1654)
Size
15 kB (15182 bytes)
Hash
24445a92ec3d06e4ffc3ee59e78f43ef
a61c814ecde7380e678242ad9afd1f9665c0a51e
86a0020adfe5219406c1de6eecda1ea5553debe0ab0cddc1e925105bd40c8ff7

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 09 Nov 2022 04:36:13 GMT
expires: Wed, 09 Nov 2022 04:36:13 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17492700971443886010
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15182
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4704096d397646addf8df57fb76fdcf6
0532acb423da5b46ecbb313e3fc2438782579d53
cf4f57fd5b410bfb09af32116ad17f02249a461da34c25385505623c538484e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 04:36:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

px.ads.linkedin.com/collect?v=2&fmt=js&pid=&time=1667968570609&url=http%3A%2F%2Fwww.alnuaimi-group.com%2Fsms.php

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=&time=1667968570609&url=http%3A%2F%2Fwww.alnuaimi-group.com%2Fsms.php
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=&time=1667968570609&url=http%3A%2F%2Fwww.alnuaimi-group.com%2Fsms.php HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&a46c9ac1-e3a1-4afe-82bd-caca3fae356e"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 09-Nov-2023 04:36:13 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2426:u=1:x=1:i=1667968573:t=1668054973:v=2:sig=AQHzMcFF9EUPNsP3_viRpCeI73O56Imr"; Expires=Thu, 10 Nov 2022 04:36:13 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXtAjJYSlHjWWQykSR6cg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A5853229B7464D518F83D2D0AEEBDAB4 Ref B: OSL30EDGE0210 Ref C: 2022-11-09T04:36:13Z
date: Wed, 09 Nov 2022 04:36:13 GMT
content-length: 0
X-Firefox-Spdy: h2

cdn.mycomandia.com/static/shop/common/css/new-style-common-screen.css?v=2019.12.17

176.31.233.37

200 OK

0 B

URL HTTP/2
cdn.mycomandia.com/static/shop/common/css/new-style-common-screen.css?v=2019.12.17
IP
176.31.233.37:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/shop/common/css/new-style-common-screen.css?v=2019.12.17 HTTP/1.1
Host: cdn.mycomandia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 04:36:12 GMT
content-type: text/css
last-modified: Mon, 22 Feb 2021 18:47:46 GMT
vary: Accept-Encoding
etag: W/"6033fc52-11b70"
server: rebelio-n2
expires: Thu, 09 Nov 2023 04:36:12 GMT
cache-control: max-age=31536000
backend: 2
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.mycomandia.com/static/shop/common/bundle/font-awesome-5/web-fonts-with-css/css/fontawesome-all.min.css?v=2019.12.17

176.31.233.37

200 OK

0 B

URL HTTP/2
cdn.mycomandia.com/static/shop/common/bundle/font-awesome-5/web-fonts-with-css/css/fontawesome-all.min.css?v=2019.12.17
IP
176.31.233.37:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/shop/common/bundle/font-awesome-5/web-fonts-with-css/css/fontawesome-all.min.css?v=2019.12.17 HTTP/1.1
Host: cdn.mycomandia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 04:36:12 GMT
content-type: text/css
last-modified: Mon, 23 Apr 2018 19:31:08 GMT
vary: Accept-Encoding
etag: W/"5ade347c-8ef7"
server: rebelio-n2
expires: Thu, 09 Nov 2023 04:36:12 GMT
cache-control: max-age=31536000
backend: 2
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.mycomandia.com/static/shop/common/bundle/bootstrap-4.1.0/css/bootstrap.min.css?v=2019.12.17

176.31.233.37

200 OK

0 B

URL HTTP/2
cdn.mycomandia.com/static/shop/common/bundle/bootstrap-4.1.0/css/bootstrap.min.css?v=2019.12.17
IP
176.31.233.37:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/shop/common/bundle/bootstrap-4.1.0/css/bootstrap.min.css?v=2019.12.17 HTTP/1.1
Host: cdn.mycomandia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.alnuaimi-group.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 04:36:12 GMT
content-type: text/css
last-modified: Mon, 23 Apr 2018 19:31:08 GMT
vary: Accept-Encoding
etag: W/"5ade347c-22485"
server: rebelio-n2
expires: Thu, 09 Nov 2023 04:36:12 GMT
cache-control: max-age=31536000
backend: 2
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations