my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
172.67.223.249403 Forbidden 3.5 kB URL User Request GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
IP 172.67.223.249:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1625)
Hash 89e29e1d4eae6999ab10a4da27493786
2f3ae855dc45f5708f3592f4a9f799e2eeddd68f
1b45dcc36cf5edc5ca92b55799b024ead247b85d1f0dd115dc5d531f9967a57e
Analyzer Verdict Alert fortinet Phishing
GET /a1b2c3/31339703862ae1f68ecd090b561368f0/login HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 02 May 2023 08:50:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ek3GIh1cqhmNk8xHupbjw%2BR%2Bq1Ycbx4qhPqIR5aZQwJwd3q0NTB3HJDH5rgGpsCy%2F5TI%2Byz4V%2BkfppszTDbKM5Z6ZWL%2BCPdaUeMjpBAWkrCMb%2FJXitZF6LY%2B7Ejj2vcV2YkjhkxgK2ietssdRVa%2FOTbQcmWjsF77qgHaCXjsf8g%2F%2FCz2Gw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c0f04cdad9bb527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/styles/challenges.css
172.67.223.249200 OK 2.6 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/styles/challenges.css
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type ASCII text, with very long lines (6600), with no line terminators
Hash 9fa2f809c184b1f61b213cd4e503a226
5d7a209eb9da1e823ea6bdc9610005d7a224b35f
f47ef292aa20330e7c78dc476c33845afbc76cb0ba0901bc1f29492cfeb28437
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 08:50:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 25 Apr 2023 11:28:50 GMT
ETag: W/"6447b972-19c8"
Server: cloudflare
CF-RAY: 7c0f04ce6e911bfa-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 02 May 2023 10:50:48 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7c0f04cdad9bb527
172.67.223.249200 OK 42 B URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7c0f04cdad9bb527
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cdn-cgi/images/trace/captcha/js/transparent.gif?ray=7c0f04cdad9bb527 HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 08:50:48 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Tue, 25 Apr 2023 11:28:50 GMT
ETag: "6447b972-2a"
Server: cloudflare
CF-RAY: 7c0f04ceaec41bfa-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 02 May 2023 10:50:48 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/orchestrate/captcha/v1?ray=7c0f04cdad9bb527
172.67.223.249200 OK 52 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/orchestrate/captcha/v1?ray=7c0f04cdad9bb527
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type ASCII text, with very long lines (65536), with no line terminators
Hash 682ba905406ae18a89b1c93e19130637
09d0b8f58900e76070df75bdca833ad9d294bd56
51b7f10b0f192b61e30d1c462f4cde7f25d369300722f0ea947446dd75c489e4
GET /cdn-cgi/challenge-platform/h/g/orchestrate/captcha/v1?ray=7c0f04cdad9bb527 HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login?__cf_chl_rt_tk=dQs50qyY6.vyK4uUel6KOIkp9rDcicf2d0VkrVh.5Co-1683017448-0-gaNycGzNBiU
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 08:50:48 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xcs%2B5astSTRKKG4jVMRxpC6FkUJE9zuJOi39P4%2FTskw1XgNya37mUmU88N6Xg%2FozCzM86SiaBdcFLE7a5ghJ8ACx0sIZYH9E2uPGHWaAwPEv%2BZgkBBnTDQPBvx0LTaeeIzLBsIMTsQhMC%2BqClNYMEvBBGsbH4kMxMiuRysijJmmvXC3Apg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0f04cebed01bfa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
172.67.223.249403 Forbidden 3.4 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1540)
Hash c3271f4e9ecc626fefd2663e0987d574
553401cc7fa418430b1ab67e6f87912c6d991bc8
e8769027be4b2bf7d896384bb53477f5a6237b1d6218f6f3541e08a700aba509
GET /favicon.ico HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 02 May 2023 08:50:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wRm8qILBHMGcNsQalWy7FozZawt%2FE%2B3iL1NmWyThr6iXK2HCMGxTTLnIE5yeKkHhe5IQzVnzQpxP63OqU2pzpYH%2Fi861vVyPt6%2BDp0t5fTcpvxr%2BFRyz3qJjD9ar6SNGydnwyezfpL1XOeeIHv4DckeG9wKlGfmkmVPpW6nI8v9GA5Gbrw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c0f04cedee31bfa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
172.67.223.249403 Forbidden 3.4 kB URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/favicon.ico
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1583)
Hash 7dcccb1093830544d45082620690aec5
a74c4287b624da8cfb56a7c60eac91e5cc742d9b
8614ef89e5b294cc24194bf09c21dabc43c9f049fad8c90b11d0218fc5cc5190
GET /favicon.ico HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Connection: keep-alive
Cookie: cf_chl_2=9c3287afa533843
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 02 May 2023 08:50:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
cf-chl-bypass: 1
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aSXkBujIqmSX8aQhDfCCVKN9sO2LKXU3vT4xRHQuBKgnBRZCKRYqfrxDGjfTzO0jdTVpcxTZH5pP6yTIwyjM7z77MacTgIIVJZR2UMIV8836fTVmmHKmNX75idsVAos7gE7Zmga8SbFbplrvVO8P%2BaEPIybSC%2Fj9pi8q3AAQ4dOdzxuAqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c0f04cf1a68b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/1065304714:1683014853:mweY5MigvRTMll9eD0sp2TFMiikkYrWkRaI6WOon2_g/7c0f04cdad9bb527/9c3287afa533843
172.67.223.249200 OK 122 kB URL POST HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/1065304714:1683014853:mweY5MigvRTMll9eD0sp2TFMiikkYrWkRaI6WOon2_g/7c0f04cdad9bb527/9c3287afa533843
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type ASCII text, with very long lines (65536), with no line terminators
Size 122 kB (122509 bytes)
Hash 0666e7621ca33bbefcf42b6fa56458a5
505b671ba000f5f6ebaccec068d4cfeba010e960
208a62c478ddd8780bda60db3d54fc17c528b729e5902c86d5cf855997aef68b
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1065304714:1683014853:mweY5MigvRTMll9eD0sp2TFMiikkYrWkRaI6WOon2_g/7c0f04cdad9bb527/9c3287afa533843 HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Content-type: application/x-www-form-urlencoded
CF-Challenge: 9c3287afa533843
Content-Length: 1824
Origin: http://my-netbank.commbank.application.com.au.pank.com.br
Connection: keep-alive
Cookie: cf_chl_2=9c3287afa533843
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 08:50:49 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: ut2/fePJoxt18lEypK5xBjEv2wikEvp0uoDmKM1ntj6A19pMJnRmE0vaTmh6LbnGZFucIoHDJY6Vd11Br5Hh8Vo7xbe10PdiPpkWBnwlIMOzhc1femUhLDiu+PO08PyVfRpSvdGGhztG+BjiTF9DoO4ylTt9iP0AvLZouFJZiDUZo6G9BizhUE4xMOakjd/via+kdUFsD7R5xxngRy7aQSdBVEGaF9Ny7t/9j556Lc0GNN4IKdCQ5od1z4y11KOufmIDErqkP8R7wx99orgq4XoM4wn69kPziqHOOmCIH34fYPmGCy1x9urqygcuJtQSudoSH6Q+U0/fvHW4zGKBMLoaUFDehI15panEvQh3Bx9Wuogk56J/HN12cWmEnfdNS/6efeU1nOMtqP31pfE3Rh1jGsUW6Q8R6VOan+px4XE=$+SlkmIxS2wxTRNkXxWGzVQ==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6LaGKJ8AOj01WPChJhJcoCLA5BlCPpanJF%2FbCd5HlFdJHo%2B462uCWqC13rqGAsIjKe98av0VDKHreMeghdY4ToDrwvxE9Aei8kNXj0Vtw6pstBoep%2FWUEkwNlm2SRCD1bIc%2B30xNmdrJX4jEN%2BFIuGJ%2F6kVRxn8WQucyWtx2PuxttQSl2g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0f04d07c30b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/img/7c0f04cdad9bb527/1683017449053/8vXN1ZrFeu6niEV
172.67.223.249200 OK 61 B URL GET HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/img/7c0f04cdad9bb527/1683017449053/8vXN1ZrFeu6niEV
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type PNG image data, 5 x 8, 8-bit/color RGB, non-interlaced\012- data
Hash fe46cd958fdd3caf4ec3ecdde7814f74
cec3171f1254ec5d7b47e64a56c46ea8dbf980b0
132be1f447fdddcac24747394de39bcb18f80fcace7e2f8f8ce513b722797718
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/challenge-platform/h/g/img/7c0f04cdad9bb527/1683017449053/8vXN1ZrFeu6niEV HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Connection: keep-alive
Cookie: cf_chl_2=9c3287afa533843
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 08:50:51 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xKIEhDh9RAuVKj4%2B%2FV9CNOME8yDX89iRknis6LlAtmTR8gJlhGYCeTXfd7TjcIjOQIahVlG1u9LIitSPkVkFTHQjDVsJxi%2FukQy%2Bh5XINB3JSIA%2FD9yVt0vVyW4Nvvm7jRpd4yzEKZ%2BUcvH%2BRPGilB%2FjLiO79e15fugqDsA9aIs2%2BXrqIw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0f04dd1d4ab517-OSL
alt-svc: h2=":443"; ma=60
my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/1065304714:1683014853:mweY5MigvRTMll9eD0sp2TFMiikkYrWkRaI6WOon2_g/7c0f04cdad9bb527/9c3287afa533843
172.67.223.249200 OK 5.6 kB URL POST HTTP/1.1 my-netbank.commbank.application.com.au.pank.com.br/cdn-cgi/challenge-platform/h/g/flow/ov1/1065304714:1683014853:mweY5MigvRTMll9eD0sp2TFMiikkYrWkRaI6WOon2_g/7c0f04cdad9bb527/9c3287afa533843
IP 172.67.223.249:80
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
File type ASCII text, with very long lines (7376), with no line terminators
Hash 4a0484690d54b263c210b3002702be19
1f46797dd2eb159e7ae56be149c899a04d23460b
4a23c0d27c320643d0933d0c582f7aff14542b76436beb2987034a5772497aeb
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1065304714:1683014853:mweY5MigvRTMll9eD0sp2TFMiikkYrWkRaI6WOon2_g/7c0f04cdad9bb527/9c3287afa533843 HTTP/1.1
Host: my-netbank.commbank.application.com.au.pank.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Content-type: application/x-www-form-urlencoded
CF-Challenge: 9c3287afa533843
Content-Length: 17099
Origin: http://my-netbank.commbank.application.com.au.pank.com.br
Connection: keep-alive
Cookie: cf_chl_2=9c3287afa533843
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 02 May 2023 08:50:51 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: t7VIS/IYbrcgErpcldZ8W+pBM+bhdkjhyJEpsSSsUAEm54F/vprlExUauTABI5qN$qtrfhKIkMk3rFFE/DkLCag==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f9EqX4dMPsjdOV4gffjjaUT6vGO3IW59E4f6%2BHff52ScYZsHamntrakBYJIWVWssgquSMuKE2CKSt41F8yiJlNcDUGg%2FBFk76CHn0w%2BYxTk3NQRFmq2ILCim6ucqpRTvNIbfc6Vj9JwG%2FkSq6wCW%2FRD71taIdadkWToMg%2BV6RIFOW6%2FHcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7c0f04dd8dfeb517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
challenges.cloudflare.com/turnstile/v0/g/b5e45436/api.js?onload=_cf_chl_turnstile_l&render=explicit
104.18.7.185200 OK 16 kB URL GET HTTP/2 challenges.cloudflare.com/turnstile/v0/g/b5e45436/api.js?onload=_cf_chl_turnstile_l&render=explicit
IP 104.18.7.185:443
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (15685)
Hash a26b9f20dc634fffeabda90cec467fa1
bf3dd0fb148183a0250784dc298ba3e824d46394
5205e201bbd649a3a4af0ecb9b1e8a80f73aa8ea4aee1740302b1b8f7435b27f
GET /turnstile/v0/g/b5e45436/api.js?onload=_cf_chl_turnstile_l&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://my-netbank.commbank.application.com.au.pank.com.br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 02 May 2023 08:50:48 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c0f04cf6df3fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1139330411:1683014757:WdGrXCsWpm3Vw-33DaiJnRXVbbgERM0p319UvYL-sfA/7c0f04dde8d90b69/500effe791180e5
104.18.7.185200 OK 10 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1139330411:1683014757:WdGrXCsWpm3Vw-33DaiJnRXVbbgERM0p319UvYL-sfA/7c0f04dde8d90b69/500effe791180e5
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (10260), with no line terminators
Hash 3ecb3b95f71658ed9d67b9192f74cfa2
77f9ad7a69f803901cdbb4b4b8605451adec5eb3
17895e10d9768daebc8e03f0578a1d4a0db4c54ea5c5eed0a6e9b9d292b13847
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1139330411:1683014757:WdGrXCsWpm3Vw-33DaiJnRXVbbgERM0p319UvYL-sfA/7c0f04dde8d90b69/500effe791180e5 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 500effe791180e5
Content-Length: 16343
Origin: https://challenges.cloudflare.com
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 08:50:51 GMT
content-type: text/plain; charset=UTF-8
cf_chl_gen: W4tF3BeLdFT6LRM+4j+qe+JjHjlxBH08wK2IL363YyjpJk6n7b/W2Zn2Ufe4kZT6$+LkIQK6Ewtp5adtxh/DwQQ==
server: cloudflare
cf-ray: 7c0f04e1bd270b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1139330411:1683014757:WdGrXCsWpm3Vw-33DaiJnRXVbbgERM0p319UvYL-sfA/7c0f04dde8d90b69/500effe791180e5
104.18.7.185200 OK 64 kB URL POST HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1139330411:1683014757:WdGrXCsWpm3Vw-33DaiJnRXVbbgERM0p319UvYL-sfA/7c0f04dde8d90b69/500effe791180e5
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (63924), with no line terminators
Hash 7a177f5e314184591654ca29698114da
8eba7129cb6b799a63c0c90f16888f9f42ca6eb3
9f5f8c44ef587159cc94214fb67c9029b4230328090778944f245614187f7ce2
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1139330411:1683014757:WdGrXCsWpm3Vw-33DaiJnRXVbbgERM0p319UvYL-sfA/7c0f04dde8d90b69/500effe791180e5 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 500effe791180e5
Content-Length: 2593
Origin: https://challenges.cloudflare.com
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 08:50:51 GMT
content-type: text/plain; charset=UTF-8
cf_chl_gen: t8VIGOWUj1gO61ePj0ElX846h0f8/mk9XQrKsSH4VZ4IwOs7bb5EG+lU/e/mXrkMEjn02T/bBRfuIe6YybhjlTgNc+ibVuziUnwe173GA73yrFQViZmBtc62qI/7m0RX7AEC17s1CI5APIqvDmNLI62qJs1i1sybF/Hr6jSXiqgV586jzeKWJ5w9Vp2A3QHJilGoaTZ0O7H6HXsRSogM4jpmjUyqq1ljJvdEMWb18SnRAmQ4Q6buRedjAS2I39X086oCfuH53Sau2ZCQyGycIHsDt61wsyOadPVsGES/eBwHuKgHjAjix4ZMORDhumq29yPcgxtZLHSGmbRf6KqhCou8p6p8+cMsKDSw0/cmWbWV0Jrpl41+0CZEUf7KS/YU$/JNYzCP4mG7AhAyhiigpPw==
server: cloudflare
cf-ray: 7c0f04df7a7d0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
104.18.7.185200 OK 23 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
IP 104.18.7.185:443
Requested by http://my-netbank.commbank.application.com.au.pank.com.br/a1b2c3/31339703862ae1f68ecd090b561368f0/login
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9343)
Hash da622ed732aaad4892ec872a97e91036
b9983d49b1cbbfb44a83b2bbb0622b4b25d6fcf2
a0c20526a1fd865d8ba5c64725cd2f26f41c28f42fab40ad02d8f99753e05478
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 08:50:51 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=0, must-revalidate
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server: cloudflare
cf-ray: 7c0f04dde8d90b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7c0f04dde8d90b69
104.18.7.185200 OK 152 kB URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7c0f04dde8d90b69
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 152 kB (151785 bytes)
Hash 5ef82292af4bb37e0725517512c48dbe
b0027a13666994c061016e1060fb9a177005b6eb
c287cd8ac7229ef3ed60b1d93daabf0497f78b16b36c1f536c4691f72fa72764
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=7c0f04dde8d90b69 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 08:50:51 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
server: cloudflare
cf-ray: 7c0f04de49300b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7c0f04dde8d90b69/1683017451447/0GWV4ZtoJNMJukj
104.18.7.185200 OK 61 B URL GET HTTP/3 challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/img/7c0f04dde8d90b69/1683017451447/0GWV4ZtoJNMJukj
IP 104.18.7.185:443
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Certificate IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5C:7B:D7:57:5A:53:A4:99:8E:1E:5A:C4:58:30:7C:2D:6C:D8:3C:C5
ValiditySun, 18 Sep 2022 00:00:00 GMT - Sun, 17 Sep 2023 23:59:59 GMT
File type PNG image data, 13 x 52, 8-bit/color RGB, non-interlaced\012- data
Hash 02255785ac079d310aa2cf9e8b6968e4
063f97d303f5c2e6c7d55b9c0ebdecefaf763890
869d2d32454621758c572b81e547f49761ff59173ae77698b1101770828caaa5
GET /cdn-cgi/challenge-platform/h/g/img/7c0f04dde8d90b69/1683017451447/0GWV4ZtoJNMJukj HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/5c3sq/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Alt-Used: challenges.cloudflare.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 02 May 2023 08:50:51 GMT
content-type: image/png
server: cloudflare
cf-ray: 7c0f04e10c680b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400