supportapple.com.am/la/lvFjj
69.49.246.217301 Moved Permanently 244 B URL HTTP/1.1 supportapple.com.am/la/lvFjj
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4f23545509b2ecf37d44fc25669829e6
b4a48c5e0086bff380bcc3daeb171f0d37bdad92
92fef4c3604f545a261a7eb9fa552f50e4a7b27264f1767a76c9b365642c0829
Analyzer Verdict Alert openphish Apple Inc.
fortinet Phishing
GET /la/lvFjj HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 09 Feb 2023 02:45:46 GMT
Server: Apache
Location: https://supportapple.com.am/la/lvFjj
Content-Length: 244
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9472
Expires: Thu, 09 Feb 2023 05:23:38 GMT
Date: Thu, 09 Feb 2023 02:45:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6310
Expires: Thu, 09 Feb 2023 04:30:56 GMT
Date: Thu, 09 Feb 2023 02:45:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 02:34:15 GMT
content-type: application/json
age: 691
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17261
Expires: Thu, 09 Feb 2023 07:33:27 GMT
Date: Thu, 09 Feb 2023 02:45:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JzZSV7kqHIsdNpzYQ5pfz62NcJKW/UJAxWKdY9OlARv09rtphqeRXtcWIYWE96ARblY9HJ/YzLXD0brrLAY0ig==
x-amz-request-id: HX3JF7VT0T251CW2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 01:46:11 GMT
age: 3575
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:45:46 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 01:51:21 GMT
age: 3266
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15509
Expires: Thu, 09 Feb 2023 07:04:16 GMT
Date: Thu, 09 Feb 2023 02:45:47 GMT
Connection: keep-alive
push.services.mozilla.com/
54.149.242.38101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.242.38:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /iSbzzirAv6k2UA2LDby1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +NwKPa/kn8BT8A9hSIIvdaYOJUg=
supportapple.com.am/la/lvFjj
69.49.246.217200 OK 20 kB URL HTTP/1.1 supportapple.com.am/la/lvFjj
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1364), with CRLF line terminators
Hash 03e6500c57215a035d5a67e33ad5af9e
944c22286e6128539847e341784e351fa41750f9
e290b2c0ac32117002b67af3e7f9c7bf113c4a65fa346bb1815c0297dc28473a
Analyzer Verdict Alert openphish Apple Inc.
fortinet Phishing
GET /la/lvFjj HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:46 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
code.jquery.com/jquery-2.2.4.js
69.16.175.42200 OK 76 kB URL HTTP/2 code.jquery.com/jquery-2.2.4.js
IP 69.16.175.42:0
Hash 2aceb48c95e2175c8e309247704fba89
7232a58c4445af3c4053ca95fbfde243a5db15d0
5ec8c5d6ec2199c8986e788b771b3d5748820f242282b00c7409036698902d97
GET /jquery-2.2.4.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:45:48 GMT
content-encoding: gzip
content-length: 76245
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-3ee0f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675910748.dop206.sk1.t,1675910748.cds211.sk1.hn,1675910748.cds202.sk1.c
X-Firefox-Spdy: h2
supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_light.woff2
69.49.246.217404 Not Found 315 B URL HTTP/1.1 supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_light.woff2
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_light.woff2 HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
supportapple.com.am/la/wss/fonts/fonts.css
69.49.246.217200 OK 22 kB URL HTTP/1.1 supportapple.com.am/la/wss/fonts/fonts.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash c4b61d2a21f2723ea6d6f6a68412d1f2
1acb40561d2d5e9e43d061b39b2c8c0cd3e8ccd2
3031aa1b654ca979f7577e4706173d35a9d8ff35cbdb80a8e4911fd9423e2bc4
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/wss/fonts/fonts.css HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 22124
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
supportapple.com.am/la/wss/fonts/SF-Pro-Display/v3/sf-pro-display_regular.woff2
69.49.246.217200 OK 216 kB URL HTTP/1.1 supportapple.com.am/la/wss/fonts/SF-Pro-Display/v3/sf-pro-display_regular.woff2
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 215624, version 1.0\012- data
Size 216 kB (215624 bytes)
Hash 9b53803bf8700dba963bdb71badc62c0
dd36319dd80c03a90367e48d2086f0b1d94a9a4a
d42c2920fee98b6a295697ae4217ee1215ea01c37e2f38887df42bdb2a1aca95
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/wss/fonts/SF-Pro-Display/v3/sf-pro-display_regular.woff2 HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:47 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 215624
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5867
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 02:45:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5867
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 02:45:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d76b3c3-ea90-47d3-83f3-8f1550aa26fa.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d76b3c3-ea90-47d3-83f3-8f1550aa26fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d7814305f961caded310b6f2089219b
efcb6a067bb023865823625e67d9de60d44685e0
3c01637a052e2394774fc8f6dd37a284afaf76b423219ecd26a89c2d8b69c121
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d76b3c3-ea90-47d3-83f3-8f1550aa26fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9846
x-amzn-requestid: 4e6cc2be-bc18-4d66-b338-833a05d0d998
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsaDlGV4oAMFoZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db3d49-14fc32183d3c6afb3a64c27d;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 04:34:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BNBH60bI_wBqaKAFD_FeZHbzfIeJh9-x-JiMsF0Uh9pxKHFPdAH6Vw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:02:08 GMT
age: 17021
etag: "efcb6a067bb023865823625e67d9de60d44685e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95081172f8e19d19921acc802488e019
8531c150cb11de44361a95624b11cf46b9e0ba02
7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15019
x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f583LHiioAMFqkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 12:41:28 GMT
age: 50661
etag: "8531c150cb11de44361a95624b11cf46b9e0ba02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10fd2f55fa0cfb8616ded6ddc2bb511a
996ed68f1b9770a19a97f6c8d359e338b8c8b3ca
e552d31a5e531386b9830bb58486f09bfcb3400676f726f93fdbea08336a09da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 658f8678-b67d-4f98-b728-cf9cbad3aa86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ABI38GUpIAMFY0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e38832-2ab19d0f2345fc7515775298;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 11:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8ZayLRkBd16PmZsswU0N4ZLVFphVFlgPRloMdqF_U6WMcyvZptmpA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:45:46 GMT
etag: "996ed68f1b9770a19a97f6c8d359e338b8c8b3ca"
content-type: image/jpeg
age: 18003
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fc553a8677d9c0bf4835a0c29a7345c
ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8
e821faf86e44f2b9c9d5bd8cd3575c0a99acfc58774077034c413e345a7c0c0c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7451
x-amzn-requestid: a900a5b4-85cd-4817-8e70-2516eb33a0a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fox8IHMuIAMFdHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9c9e7-1122726b315a7c5623d1ff3f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 02:09:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JFPF2xZJ9QIqJbOEjTi5gt2aflnM9HVaWp8FpRAIIeDf59cJzbp6kw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:46:36 GMT
age: 17953
etag: "ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce710ab5746832fe637fada3e6d63abf
d545c85d4a8cf92dc8b88db0a056623d1ef7a943
40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2aG-IoAMFfnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CsMWJP4A64pbv9jhvJkyNF2SU7gQEIkQ5xWBlSVSlGjlfz9O0dkPGQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 03:38:47 GMT
age: 83222
etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4930c104-0ac3-49ae-9506-13702874f821.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4930c104-0ac3-49ae-9506-13702874f821.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c1f5626e7ff7e681468c3c5820f3633
a8bb267f929b734a53b3dab0283c717270f6eb43
38d81274cc9f71f149091f72494c74872d99909c69d612a595c930c4755c4da3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4930c104-0ac3-49ae-9506-13702874f821.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 1b0f88cf-460b-4ed2-8235-86c9e3e3ff93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffW2uG3LIAMF3cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d604f7-42e5c38315bdbd47615985b6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 05:32:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j7JqKdXPBH0hFdoy4Qj0ttGzX93CyNdiv6Tn5h1F_zwNhxwb4IYBTA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:28:34 GMT
age: 15435
etag: "a8bb267f929b734a53b3dab0283c717270f6eb43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_regular.woff2
69.49.246.217200 OK 220 kB URL HTTP/1.1 supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_regular.woff2
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 220536, version 1.0\012- data
Size 220 kB (220536 bytes)
Hash 059d2edeb663a16de959975d5ed21db8
3674a0e6fbc086cf109a1b192ef5016d328fdfa5
3231b77ee2775dadbaa76de85f95763976aff1091f63a67fa553d727a6edb933
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_regular.woff2 HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 220536
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
supportapple.com.am/la/wss/fonts/SF-Pro-Display/v3/sf-pro-display_semibold.woff2
69.49.246.217200 OK 231 kB URL HTTP/1.1 supportapple.com.am/la/wss/fonts/SF-Pro-Display/v3/sf-pro-display_semibold.woff2
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 231048, version 1.0\012- data
Size 231 kB (231048 bytes)
Hash 01ae716a31eb383e1df472e09888379c
9480b4273e241238e688fadd8a6e854b4236b08d
39e23831b68995dbe602a60faa248be99e52b71730972ddb53378ebfc40a3a4f
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/wss/fonts/SF-Pro-Display/v3/sf-pro-display_semibold.woff2 HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 231048
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_semibold.woff2
69.49.246.217200 OK 234 kB URL HTTP/1.1 supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_semibold.woff2
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 234260, version 1.0\012- data
Size 234 kB (234260 bytes)
Hash b37ecd8895b373064f6e8630804f08aa
f2bfb2774a6294a641973b2920a9b2d7b2d863c9
7b0041c48ba67087fcf5f6e8ec8d24e95db06cae9bf78c45b4542984bcb7208c
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_semibold.woff2 HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 234260
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_bold.woff2
69.49.246.217200 OK 233 kB URL HTTP/1.1 supportapple.com.am/la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_bold.woff2
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 232592, version 1.0\012- data
Size 233 kB (232592 bytes)
Hash ec5976a814825ee663fa5e847ccf9718
27a8682a2ab6189b66652c3a3d06d97c136dc97f
562561ac944b8bb94cf916ad2829d1985515cf78e2f5c8dca70a48e092beeafe
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/wss/fonts/SF-Pro-Text/v3/sf-pro-text_bold.woff2 HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 232592
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
supportapple.com.am/la/js/authService.latest.min.js
69.49.246.217200 OK 46 kB URL HTTP/1.1 supportapple.com.am/la/js/authService.latest.min.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (45452)
Hash b97c71c6a3f8544a118f4aae2d2898f3
bf3278aee5205712b9b825855da26a6a795de35c
637887c20d64107d15a953804d693d5587262aa3a3148bcd2e65eb870b6ec329
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/js/authService.latest.min.js HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 45564
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
supportapple.com.am/la/c1.php
69.49.246.217200 OK 13 kB URL HTTP/1.1 supportapple.com.am/la/c1.php
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (453)
Hash 650021b4fe98cabbcff50e71c6a4612a
c6c8f3048c2e7cf041cd4af6dd7dbd45f8dfa01f
3f0355068a2420efdb98ad7f4f60ffe343708f1fccd2e7ac0c1e1dbcbd69a36d
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/c1.php HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/main.css
69.49.246.217200 OK 725 kB URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/main.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (692)
Size 725 kB (725403 bytes)
Hash 25f81a0326608d9f9fdf6b5ee785933d
48e0a4dc13e355ff8799a8ea9f36806317d31639
4dfdba01347b09d0577ca9167bc01c259ea802c306a56edacd97923f78be25ff
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/system/icloud.com/2301HotfixBeta77/es-es/main.css HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 725403
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
supportapple.com.am/la/jss/function.js
69.49.246.217200 OK 3.1 kB URL HTTP/1.1 supportapple.com.am/la/jss/function.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 9094d8547d9947a29ff7871ad51c7d1d
ded500858e791c145445eeee579ec2bf0bed3bc2
422dd27463cb6142ded7fa182ca1c220f463d6b38ec18c44fd1685c3b4f64984
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/jss/function.js HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/c1.php
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 3108
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
supportapple.com.am/la/css/fonts2.css
69.49.246.217200 OK 8.4 kB URL HTTP/1.1 supportapple.com.am/la/css/fonts2.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF, CR line terminators
Hash 2a214c827de204571dd27200c8a75956
f506b15d26e851339b6d1b75314611ac1c3d618f
20b14318d1ded4777435b1dd8540da7c29d620ee96d621db5ef645b2b5050600
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/css/fonts2.css HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/c1.php
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 8371
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
supportapple.com.am/la/jss/myscript_ind_fact.js?v=sdd
69.49.246.217200 OK 5.0 kB URL HTTP/1.1 supportapple.com.am/la/jss/myscript_ind_fact.js?v=sdd
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (800)
Hash e954c64598a4dc204e9b25fd876bbad9
b90378ecb26352ea00fbd9aa78b95485d44eae6b
25eea4dd6528ca99a238dd677a0d8f81571c3eb66019305f8472e2b054bb82f9
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/jss/myscript_ind_fact.js?v=sdd HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/c1.php
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 4997
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
supportapple.com.am/la/css/appe.css
69.49.246.217200 OK 129 kB URL HTTP/1.1 supportapple.com.am/la/css/appe.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (540), with CRLF, CR line terminators
Size 129 kB (129378 bytes)
Hash 40190c4ad9775be586773925cd4e0ddc
898f48c3779a3b1365c45eaa9f517771bc3f2dc6
f913bfc260acfd2f4c0fba9827c510e5ab096bd7fc0877b0aa2f439a5254ccca
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/css/appe.css HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/c1.php
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 129378
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
supportapple.com.am/la/jss/myscript_patron.js?v=a2fasd
69.49.246.217200 OK 12 kB URL HTTP/1.1 supportapple.com.am/la/jss/myscript_patron.js?v=a2fasd
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (700)
Hash 2504e517fe2c37891b57ab16215c8a82
ac74798c59ac2a2bb3e6b4938830342ca1caf2d2
49c67487c50e7010a1a1eda07f2870722572acab8c8c87a46508965d8ef0e218
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/jss/myscript_patron.js?v=a2fasd HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/c1.php
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 12180
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/fc2b7d9c646c188a2aed32221a4fe795.jpg
69.49.246.217200 OK 15 kB URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/fc2b7d9c646c188a2aed32221a4fe795.jpg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 430x388, components 3\012- data
Hash bfdbdf8512a090d1dbdff5750df98550
95b67e1014aa76c1b9e340ada105284edfe3673c
5fd318b09575d24158dc627f2b43ca6b3ccc482ecd0a3014fb80765a8e2d0b45
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/system/icloud.com/2301HotfixBeta77/es-es/fc2b7d9c646c188a2aed32221a4fe795.jpg HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 15202
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 365e4c73a4876ffd7f5980516925e17c
149890b4229707564a0bf8bd0814d496c8e36c68
efd737a944071ddd150f1281f8c35f1a7039385d7bb031318b23c5f3ba32430f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5333
Cache-Control: max-age=141987
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:45:49 GMT
Etag: "63e3d12b-1d7"
Expires: Fri, 10 Feb 2023 18:12:16 GMT
Last-Modified: Wed, 08 Feb 2023 16:43:23 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 365e4c73a4876ffd7f5980516925e17c
149890b4229707564a0bf8bd0814d496c8e36c68
efd737a944071ddd150f1281f8c35f1a7039385d7bb031318b23c5f3ba32430f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5883
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:45:49 GMT
Last-Modified: Thu, 09 Feb 2023 01:07:47 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
supportapple.com.am/la/img/acb0e4f9-5c81-4130-8e19-71accad202ed.png
69.49.246.217200 OK 22 kB URL HTTP/1.1 supportapple.com.am/la/img/acb0e4f9-5c81-4130-8e19-71accad202ed.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 284 x 284, 8-bit/color RGBA, non-interlaced\012- data
Hash d57c3cfba2ba4369197dbbd6b5d4632c
0ae2a5f4b0542662ef0e9c582a9550ef7fc89cfa
8b34dad4533d423b3fca7f7b603d3e0b46482730395ccf4586482f453c2367be
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/img/acb0e4f9-5c81-4130-8e19-71accad202ed.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 21464
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/main.js
69.49.246.217200 OK 2.9 MB URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/main.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65022)
Size 2.9 MB (2942921 bytes)
Hash edb66472832f3974feef383786b53c55
a34c5831e7e35134ffdcabac04d26217fcd13b6c
32d5324185f398d4966f65aa751821fee29175b114418c4355e2d9ceafa8ee32
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/system/icloud.com/2301HotfixBeta77/es-es/main.js HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:48 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 2942921
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
supportapple.com.am/la/img/7c2bd24e-79cb-4a1d-bff7-d82a16bb94ef.png
69.49.246.217200 OK 25 kB URL HTTP/1.1 supportapple.com.am/la/img/7c2bd24e-79cb-4a1d-bff7-d82a16bb94ef.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 284 x 284, 8-bit/color RGBA, non-interlaced\012- data
Hash 422d3551289d9b1b973bed6f30066356
729a6be2cdafc03a027a91a9a65c980d73b03597
bef42d7bedfdf8eefc7301e00bfaf9ac2b93e01fe3ae826366d10bbcb54b1494
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/img/7c2bd24e-79cb-4a1d-bff7-d82a16bb94ef.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 24618
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/img/0e529e6e-2f1e-48a5-9ad6-c62ebe27a3a4.png
69.49.246.217200 OK 1.4 kB URL HTTP/1.1 supportapple.com.am/la/img/0e529e6e-2f1e-48a5-9ad6-c62ebe27a3a4.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 4145c10de5e702fb9c24bb748bee2faa
8c2afae1a935b7de1b814f187004200fde04b201
a86b34431c9d3c6ce56871e6094570c5ffe1ef54fe9a52cd2191e1d4a489344d
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/img/0e529e6e-2f1e-48a5-9ad6-c62ebe27a3a4.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 1412
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/img/7338ec09-80a6-41bd-b023-b020655bb345.png
69.49.246.217200 OK 1.5 kB URL HTTP/1.1 supportapple.com.am/la/img/7338ec09-80a6-41bd-b023-b020655bb345.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash d7c966f43795a183fa595ed03ce03a2d
8deff50bdc1ed79101daf31b2de17053c520461e
a30c60ea6bcd71434d9d42b314f31321649cbbd5193b3199c119a61a7c56063b
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/img/7338ec09-80a6-41bd-b023-b020655bb345.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 1455
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/img/17bc02ce-524b-4621-8384-6f8cb7a7ccd5.png
69.49.246.217200 OK 1.7 kB URL HTTP/1.1 supportapple.com.am/la/img/17bc02ce-524b-4621-8384-6f8cb7a7ccd5.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 55cdc7ffbd33bf4bc07f3795373d4e66
73fd5c5f786a5a6f5587818d27f16cf8a31b6091
a0813540c8515e6b48b1c9212805164a792d98fc3bbf0fdccc20b0d3b4c53ee1
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/img/17bc02ce-524b-4621-8384-6f8cb7a7ccd5.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 1722
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/system/icloud.com/current/static/wallpaper.webp
69.49.246.217200 OK 390 kB URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/current/static/wallpaper.webp
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image\012- data
Size 390 kB (390196 bytes)
Hash 22654a04a309f2c35175a8c4a2809c15
ff809657a02e83c8a30d764bd5009b4032a0c8ac
c04cb1875b74e018a2192d6ebe9c0cb78c6ecdf43b39824b34b87ece5095ab30
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/system/icloud.com/current/static/wallpaper.webp HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 390196
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/webp
appleid.cdn-apple.com/appleauth/static/jsj/N1241477586/common-header.js
23.60.29.145404 Not Found 20 B URL HTTP/1.1 appleid.cdn-apple.com/appleauth/static/jsj/N1241477586/common-header.js
IP 23.60.29.145:0
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
GET /appleauth/static/jsj/N1241477586/common-header.js HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Apple
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 20
Date: Thu, 09 Feb 2023 02:45:50 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
appleid.cdn-apple.com/appleauth/static/jsj/1577869377/widget/auth/app.js
23.60.29.145404 Not Found 20 B URL HTTP/1.1 appleid.cdn-apple.com/appleauth/static/jsj/1577869377/widget/auth/app.js
IP 23.60.29.145:0
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
GET /appleauth/static/jsj/1577869377/widget/auth/app.js HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: Apple
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 20
Date: Thu, 09 Feb 2023 02:45:50 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
supportapple.com.am/la/system/icloud.com/2302Hotfix226/es-es/4f72d89d71e9abcc4e37c71fb77fe65b.svg
69.49.246.217200 OK 8.3 kB URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/2302Hotfix226/es-es/4f72d89d71e9abcc4e37c71fb77fe65b.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8336)
Hash 7ac8e3fc72c41af2f48eb38ed55fd7ba
ac861f8ccbd42196a955abef3252c31456bee811
276618038f0474681826eed2cd12fae281387deaba057cee6dea869ecb8d292f
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/system/icloud.com/2302Hotfix226/es-es/4f72d89d71e9abcc4e37c71fb77fe65b.svg HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/c1.php
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 8337
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
supportapple.com.am/la/images/ajax-loader.gif
69.49.246.217200 OK 3.8 kB URL HTTP/1.1 supportapple.com.am/la/images/ajax-loader.gif
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 32 x 32\012- data
Hash 3db24b58dc488b1820ecbd06300f5cec
2886d696139c36eeda8db561b4f178c0876603b5
fd458f36d73b7d6434326d18c9229da92384d37303dbdd72fa346597fde23068
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/images/ajax-loader.gif HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/c1.php
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 3783
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
supportapple.com.am/system/icloud.com/2301HotfixBeta77/es-es/images@1x.bin
69.49.246.217404 Not Found 315 B URL HTTP/1.1 supportapple.com.am/system/icloud.com/2301HotfixBeta77/es-es/images@1x.bin
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /system/icloud.com/2301HotfixBeta77/es-es/images@1x.bin HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
supportapple.com.am/la/css/myriad-set-pro_medium.woff
69.49.246.217200 OK 98 kB URL HTTP/1.1 supportapple.com.am/la/css/myriad-set-pro_medium.woff
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 98256, version 0.0\012- data
Hash 4274a757b55f8c158ff90c8649f760aa
34a0dc0393c251d6fd30d02bf1f37f76aaf9c9f3
3dd62e9756a4b39456be0114e3b79c942b1a9360364af8a9cdafeda3c62009fb
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/css/myriad-set-pro_medium.woff HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://supportapple.com.am/la/css/fonts2.css
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:50 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 98256
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff
supportapple.com.am/la/css/myriad-set-pro_thin.woff
69.49.246.217200 OK 69 kB URL HTTP/1.1 supportapple.com.am/la/css/myriad-set-pro_thin.woff
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 69068, version 0.0\012- data
Hash 4050f645c101139222959621b49c886b
ca7606c1c67bc4ef492f363afe3fa4f7ee4085f8
2a49036e25ece04c427d544fb69b00a1dd7376999a98f34afd502e17dfb296c1
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/css/myriad-set-pro_thin.woff HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://supportapple.com.am/la/css/fonts2.css
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:50 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 69068
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff
supportapple.com.am/la/css/myriad-set-pro_text.woff
69.49.246.217200 OK 108 kB URL HTTP/1.1 supportapple.com.am/la/css/myriad-set-pro_text.woff
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 107920, version 0.0\012- data
Size 108 kB (107920 bytes)
Hash a11b8fca9802778799b0ea4285f45395
521866842d2d68945e96bf988bbdab0a49b58fbb
2e7e87280e4a17892cbbd0ab2adc1341b83b8c026f8491daf64680d752e869a8
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
fortinet Phishing
GET /la/css/myriad-set-pro_text.woff HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://supportapple.com.am/la/css/fonts2.css
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:50 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 107920
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff
supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/e6ffc52737977fe1700d423a10874d0b.png
69.49.246.217200 OK 710 kB URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/e6ffc52737977fe1700d423a10874d0b.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1792 x 722, 8-bit/color RGBA, interlaced\012- data
Size 710 kB (709570 bytes)
Hash bbb0640f178dd7ef488209df881897ed
c464659db9149efc4dd51f4961629ac47bb2ecb7
b317f2c8bde39168e0a5ff018a40239b08f4e7a6678851f3a24d20f6b2f3845a
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/system/icloud.com/2301HotfixBeta77/es-es/e6ffc52737977fe1700d423a10874d0b.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 709570
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/system/icloud.com/current/static/favicon-16x16.png
69.49.246.217200 OK 624 B URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/current/static/favicon-16x16.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced\012- data
Hash ebb043d23f92e9b7e41e02889a3dc702
4ea952894c0cf890bcfd8ab1b2876c8300c91293
abc860e2605db7e9892629183c107c042c9021a2783012e2753253394940e298
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/system/icloud.com/current/static/favicon-16x16.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:50 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 624
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/system/icloud.com/current/static/apple-touch-icon.png
69.49.246.217200 OK 3.1 kB URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/current/static/apple-touch-icon.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 180 x 180, 8-bit gray+alpha, non-interlaced\012- data
Hash 91892d3d930185a0d9b1dec1666e685b
1bd34ca2e3142b908a13bc02a66c108b5743b1a1
43c66a021c12afd753c6d4b75ac9af9d9549003c2da49f6375e831fa56cdfb4f
Analyzer Verdict Alert urlquery phishing Phishing - Apple
urlquery phishing Phishing - Apple
GET /la/system/icloud.com/current/static/apple-touch-icon.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:50 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 3084
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/cb89b6112cb1d8e18fac821612c25717.png
69.49.246.217200 OK 0 B URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/2301HotfixBeta77/es-es/cb89b6112cb1d8e18fac821612c25717.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /la/system/icloud.com/2301HotfixBeta77/es-es/cb89b6112cb1d8e18fac821612c25717.png HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 496147
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
supportapple.com.am/la/system/icloud.com/current/static/fpo@1x.mp4
69.49.246.217206 Partial Content 0 B URL HTTP/1.1 supportapple.com.am/la/system/icloud.com/current/static/fpo@1x.mp4
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /la/system/icloud.com/current/static/fpo@1x.mp4 HTTP/1.1
Host: supportapple.com.am
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://supportapple.com.am/la/lvFjj
Cookie: PHPSESSID=a9a3784c3f9310cd24452c4f8f8ed2b1
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 206 Partial Content
Date: Thu, 09 Feb 2023 02:45:49 GMT
Server: Apache
Last-Modified: Mon, 28 Nov 2022 01:06:49 GMT
Accept-Ranges: bytes
Content-Length: 662771
Content-Range: bytes 0-662770/662771
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: video/mp4