geant.ocsp.sectigo.com/
172.64.149.23 728 B IP 172.64.149.23:0
Hash 73da6fa1ef57f0ceb5ef650ee4aa14c2
0ff39f46449c62f27c6a6262a003473a592dae1b
3922337cfbfa58b218a1b2e25d13034143ee18d5558f15a97e9979a07fad6533
POST / HTTP/1.1
Host: geant.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 22:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 04 May 2024 05:07:16 GMT
Expires: Sat, 11 May 2024 05:07:15 GMT
Etag: "0ff39f46449c62f27c6a6262a003473a592dae1b"
Cache-Control: max-age=541660,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 87ebee27fe260b61-OSL
webmail.hubruxelles.be/
193.191.184.1 0 B IP 193.191.184.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft
GET / HTTP/1.1
Host: webmail.hubruxelles.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 302 Moved Temporarily
Location: https://webmail.hubruxelles.be/owa/
Server: BigIP
Connection: Keep-Alive
Content-Length: 0
Set-Cookie: TSfc9102f4027=0812b41c1fab20009525f5e35935ab590a4add685bdb9812e8279b777cda99dfee37bf51fb43569708e8e2edbb113000d1d896fe25fb29738777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d; Path=/
webmail.hubruxelles.be/owa/
193.191.184.1 230 B URL webmail.hubruxelles.be/owa/
IP 193.191.184.1:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 2ceacdc72ed17598622dcae6e4e9d9f7
342a8f97c492f147f5fc4892961df470a7a94784
15c4019e553c8b0c9ea51a31d783768c8a5a5be6afa17a8c6618730e7c49018e
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft
GET /owa/ HTTP/1.1
Host: webmail.hubruxelles.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: TSfc9102f4027=0812b41c1fab20009525f5e35935ab590a4add685bdb9812e8279b777cda99dfee37bf51fb43569708e8e2edbb113000d1d896fe25fb29738777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: https://webmail.hubruxelles.be/owa/auth/logon.aspx?url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f&reason=0
Server: Microsoft-IIS/10.0
request-id: 2e99d31e-6a80-41d1-b662-e41ef9a376b3
X-OWA-Version: 15.1.2507.39
X-Powered-By: ASP.NET
X-FEServer: EXCPMP2L3
Date: Sat, 04 May 2024 22:29:34 GMT
Content-Length: 230
Set-Cookie: TSfc9102f4027=0812b41c1fab2000d95fa8861a7152ae58fe8225a315823cd949d3bea05dce8977434fd609b0f37a0818af6368113000ab1afc015a1f1fa08777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d; Path=/
webmail.hubruxelles.be/owa/auth/logon.aspx?url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f&reason=0
193.191.184.1 28 kB URL webmail.hubruxelles.be/owa/auth/logon.aspx?url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f&reason=0
IP 193.191.184.1:0
File type HTML document, ASCII text, with very long lines (1062), with CRLF, LF line terminators
Hash 49d627b2cdf5d7c080260066764e5390
6ea12f1e7af1370228a4d1a95e61c11f0dff7dd1
5cdf75bb6b8fe9bf15ba1924174bd7089aa4c5fcfd7bce6214c20b417cf3135c
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft
GET /owa/auth/logon.aspx?url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f&reason=0 HTTP/1.1
Host: webmail.hubruxelles.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: TSfc9102f4027=0812b41c1fab2000d95fa8861a7152ae58fe8225a315823cd949d3bea05dce8977434fd609b0f37a0818af6368113000ab1afc015a1f1fa08777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
request-id: 49ee1a35-aead-40c7-aa38-d8bbea53e693
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sat, 04 May 2024 22:29:34 GMT
Content-Length: 27990
Set-Cookie: TSfc9102f4027=0812b41c1fab2000e99cbc5d1fa5b58cfba27475aa453574cdfaebdeeadf3f9352911d12daa0b856088f89280e113000d22439ad344d90d48777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d; Path=/
webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
193.191.184.1200 OK 65 kB URL User Request GET HTTP/1.1 webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
IP 193.191.184.1:443
Certificate IssuerGEANT Vereniging
Subjectwebmail.erasme.ulb.ac.be
Fingerprint0B:4F:85:EE:B3:D5:69:23:C6:2E:B7:B2:4B:19:57:2C:F9:A0:33:E0
ValidityWed, 17 Apr 2024 00:00:00 GMT - Thu, 17 Apr 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (13471), with CRLF, LF line terminators
Hash a97cd08c963dc908702eabc55a82fc43
597c9d47810f27152b96e2493375e6a6a60ca818
76c0efe9e1553bfef9f85fbbbe5e0a472ded69b5c6182940733ff2af67e5dd12
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft
GET /owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f HTTP/1.1
Host: webmail.hubruxelles.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.hubruxelles.be/owa/auth/logon.aspx?url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f&reason=0
Cookie: TSfc9102f4027=0812b41c1fab2000e99cbc5d1fa5b58cfba27475aa453574cdfaebdeeadf3f9352911d12daa0b856088f89280e113000d22439ad344d90d48777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
request-id: fafb07b7-10c5-405e-a600-d582fb9c0551
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sat, 04 May 2024 22:29:34 GMT
Content-Length: 64795
Set-Cookie: TSfc9102f4027=0812b41c1fab2000cd5461143128447d47ae5c23dfa09b6d5b3e6ada0d739783e619f7571e694f7e08755a15481130000be16936b01a6c518777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d; Path=/
webmail.hubruxelles.be/owa/auth/15.1.2507/themes/resources/segoeui-regular.ttf
193.191.184.1200 OK 57 kB URL GET HTTP/1.1 webmail.hubruxelles.be/owa/auth/15.1.2507/themes/resources/segoeui-regular.ttf
IP 193.191.184.1:443
Requested by https://webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
Certificate IssuerGEANT Vereniging
Subjectwebmail.erasme.ulb.ac.be
Fingerprint0B:4F:85:EE:B3:D5:69:23:C6:2E:B7:B2:4B:19:57:2C:F9:A0:33:E0
ValidityWed, 17 Apr 2024 00:00:00 GMT - Thu, 17 Apr 2025 23:59:59 GMT
File type TrueType Font data, 18 tables, 1st "LTSH", 11 names, Microsoft, language 0x409, � 2010 Microsoft Corporation. All Rights Reserved.RegularSegoe UI RegularVersion 0.81 Build 159S
Hash 8af990b6ad3ba192c2dd6a193890bf5f
4db5bf117ff8f1392fab3b438216d7cff4ae4976
c147c2ec76a8ab8bd5082f1f4d3f80a43c689165cb164cdd812e44048fe38708
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft
GET /owa/auth/15.1.2507/themes/resources/segoeui-regular.ttf HTTP/1.1
Host: webmail.hubruxelles.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
Cookie: TSfc9102f4027=0812b41c1fab2000cd5461143128447d47ae5c23dfa09b6d5b3e6ada0d739783e619f7571e694f7e08755a15481130000be16936b01a6c518777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: public,max-age=2592000
Content-Type: application/octet-stream
Last-Modified: Sun, 20 Mar 2022 14:39:34 GMT
Accept-Ranges: bytes
ETag: "017f650683cd81:0"
Server: Microsoft-IIS/10.0
request-id: 3b3659ba-86fb-48da-8900-175b5a4cff3f
X-Powered-By: ASP.NET
Connection: Keep-Alive
Date: Sat, 04 May 2024 22:29:34 GMT
Age: 18628
Content-Length: 56760
webmail.hubruxelles.be/owa/auth/15.1.2507/themes/resources/segoeui-semilight.ttf
193.191.184.1200 OK 42 kB URL GET HTTP/1.1 webmail.hubruxelles.be/owa/auth/15.1.2507/themes/resources/segoeui-semilight.ttf
IP 193.191.184.1:443
Requested by https://webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
Certificate IssuerGEANT Vereniging
Subjectwebmail.erasme.ulb.ac.be
Fingerprint0B:4F:85:EE:B3:D5:69:23:C6:2E:B7:B2:4B:19:57:2C:F9:A0:33:E0
ValidityWed, 17 Apr 2024 00:00:00 GMT - Thu, 17 Apr 2025 23:59:59 GMT
File type TrueType Font data, 16 tables, 1st "OS/2", 11 names, Microsoft, language 0x409, � 2010 Microsoft Corporation. All Rights Reserved.RegularSegoe UI SemilightVersion 1.00 build 16
Hash 6c26c24aabe31040657665b1e0d9505c
b3bdc48643752665e3e5798a192b27432a87d234
2d508a6e8979bba74b6fdf804c01a09a620c781e0fea73a8eefda904f5bcab25
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft
GET /owa/auth/15.1.2507/themes/resources/segoeui-semilight.ttf HTTP/1.1
Host: webmail.hubruxelles.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
Cookie: TSfc9102f4027=0812b41c1fab2000cd5461143128447d47ae5c23dfa09b6d5b3e6ada0d739783e619f7571e694f7e08755a15481130000be16936b01a6c518777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: public,max-age=2592000
Content-Type: application/octet-stream
Last-Modified: Sun, 20 Mar 2022 14:41:26 GMT
Accept-Ranges: bytes
ETag: "0efb793683cd81:0"
Server: Microsoft-IIS/10.0
request-id: 5a3ae743-5b13-4de5-ae10-fd0b3e6df9e9
X-Powered-By: ASP.NET
Connection: Keep-Alive
Date: Sat, 04 May 2024 22:29:34 GMT
Age: 3329
Content-Length: 41560
webmail.hubruxelles.be/owa/auth/15.1.2507/themes/resources/favicon.ico
193.191.184.1200 OK 7.9 kB URL GET HTTP/1.1 webmail.hubruxelles.be/owa/auth/15.1.2507/themes/resources/favicon.ico
IP 193.191.184.1:443
Requested by https://webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
Certificate IssuerGEANT Vereniging
Subjectwebmail.erasme.ulb.ac.be
Fingerprint0B:4F:85:EE:B3:D5:69:23:C6:2E:B7:B2:4B:19:57:2C:F9:A0:33:E0
ValidityWed, 17 Apr 2024 00:00:00 GMT - Thu, 17 Apr 2025 23:59:59 GMT
File type MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel
Hash 759fade9033aa298629e4b000dcd6dde
34a1adf5c7326d7bde5b5735471b5d81e611c189
cf0808a61ec571e0c4975663903b288009d55502ac0445d9948983b339a5cf6e
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft
GET /owa/auth/15.1.2507/themes/resources/favicon.ico HTTP/1.1
Host: webmail.hubruxelles.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webmail.hubruxelles.be/owa/auth/logon.aspx?replaceCurrent=1&url=https%3a%2f%2fwebmail.hubruxelles.be%2fowa%2f
Cookie: TSfc9102f4027=0812b41c1fab2000cd5461143128447d47ae5c23dfa09b6d5b3e6ada0d739783e619f7571e694f7e08755a15481130000be16936b01a6c518777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: public,max-age=2592000
Content-Type: image/x-icon
Last-Modified: Sat, 26 Mar 2022 18:40:39 GMT
Accept-Ranges: bytes
ETag: "806d40fd4041d81:0"
Server: Microsoft-IIS/10.0
request-id: 1721ce9e-01da-42b6-b97c-edbb13f821a7
X-Powered-By: ASP.NET
Connection: Keep-Alive
Date: Sat, 04 May 2024 22:29:34 GMT
Age: 6804
Content-Length: 7886
Set-Cookie: TSfc9102f4027=0812b41c1fab20004f5ec3bcae5faa5744bbb599347eb30361e77cd85dc4313de861f274cbfaa2fe08a15a60f311300070a86d9eb64bd1988777af55d70e137f0f7cde343205413b5e71370839f76337541868c0338b1ec069efb19916db469d; Path=/