Report - selectitecnologia.com/b/spanel-19/user/login/spk.php

Report Overview

Visited public
2024-12-03 13:42:37
Tags
URL
selectitecnologia.com/b/spanel-19/user/login/spk.php
Finishing URL
selectitecnologia.com/b/spanel-19/user/login/spk.php
IP / ASN
192.169.80.50
#46475 LIMESTONENETWORKS
Title
S-Pankki

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
selectitecnologia.com	unknown	unknown	No data	No data	3.2 kB	394 kB	192.169.80.50
www.s-pankki.fi	unknown	2010-03-25	2012-11-03	2024-06-03	428 B	18 kB	217.29.228.112

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-10-28	medium	selectitecnologia.com/b/spanel-19/user/login/spk.php	Generic/Spear Phishing

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	selectitecnologia.com/b/spanel-19/user/login/spk.php	ScriptElement	0 B	0001-01-01	2025-06-10
Pretty URL selectitecnologia.com/b/spanel-19/user/login/spk.php IP 192.169.80.50 ASN #46475 LIMESTONENETWORKS Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-10 04:03 Times Seen4904571 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (7)

URL IP Response Size

selectitecnologia.com/b/spanel-19/user/login/spk.php

192.169.80.50

200 OK

4.8 kB

URL User Request GET HTTP/1.1
selectitecnologia.com/b/spanel-19/user/login/spk.php
IP
192.169.80.50:443
ASN
#46475 LIMESTONENETWORKS

Certificate
IssuerLet's Encrypt
Subject*.selectitecnologia.com
Fingerprint3F:0F:E6:FD:21:D8:80:FA:9C:0A:9C:1D:BA:03:0F:6D:65:BC:43:C9
ValidityFri, 01 Nov 2024 03:40:55 GMT - Thu, 30 Jan 2025 03:40:54 GMT

File type
HTML document, ASCII text, with very long lines (315), with CRLF line terminators
Size
4.8 kB (4765 bytes)
Hash
ceef71e11e86dfc6875c30b2aa448194
a5e3e7db48d36417605da67825bdfdcb2a0da1da
ed94dadde9f5cae800cc028d1ded4f1b4eb176c894355fa708c0383f04c9f11d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /b/spanel-19/user/login/spk.php HTTP/1.1
Host: selectitecnologia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 03 Dec 2024 13:42:13 GMT
Server: Apache
X-Powered-By: PHP/8.0.30
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/auth.05f49022e1cd9c5b1b15.css

192.169.80.50

200 OK

309 kB

URL GET HTTP/1.1
selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/auth.05f49022e1cd9c5b1b15.css
IP
192.169.80.50:443
ASN
#46475 LIMESTONENETWORKS

Requested by
https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Certificate
IssuerLet's Encrypt
Subject*.selectitecnologia.com
Fingerprint3F:0F:E6:FD:21:D8:80:FA:9C:0A:9C:1D:BA:03:0F:6D:65:BC:43:C9
ValidityFri, 01 Nov 2024 03:40:55 GMT - Thu, 30 Jan 2025 03:40:54 GMT

File type
ASCII text, with very long lines (60622), with CRLF line terminators
Size
309 kB (309260 bytes)
Hash
4893dfa22afdca1f851bd92eeeb618af
3c4350358e09ec5f3293cb591676526d4cf31327
bd8c8f98499c6e026c994f4e67d2f20bffa4fce15b5dc173751a8ca9d3b25dda

HTTP Headers

GET /b/spanel-19/user/login/Tunnistautuminen_files/auth.05f49022e1cd9c5b1b15.css HTTP/1.1
Host: selectitecnologia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 03 Dec 2024 13:42:13 GMT
Server: Apache
Last-Modified: Tue, 07 May 2024 10:37:56 GMT
Accept-Ranges: bytes
Content-Length: 309260
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css

selectitecnologia.com/theme/font/e2d3fd034896d1bc0fc5cd6586862202.woff

192.169.80.50

500 Internal Server Error

0 B

URL GET HTTP/1.1
selectitecnologia.com/theme/font/e2d3fd034896d1bc0fc5cd6586862202.woff
IP
192.169.80.50:443
ASN
#46475 LIMESTONENETWORKS

Requested by
https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Certificate
IssuerLet's Encrypt
Subject*.selectitecnologia.com
Fingerprint3F:0F:E6:FD:21:D8:80:FA:9C:0A:9C:1D:BA:03:0F:6D:65:BC:43:C9
ValidityFri, 01 Nov 2024 03:40:55 GMT - Thu, 30 Jan 2025 03:40:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /theme/font/e2d3fd034896d1bc0fc5cd6586862202.woff HTTP/1.1
Host: selectitecnologia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/auth.05f49022e1cd9c5b1b15.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 500 Internal Server Error
Date: Tue, 03 Dec 2024 13:42:14 GMT
Server: Apache
X-Powered-By: PHP/8.0.30
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/spankki.png

192.169.80.50

200 OK

24 kB

URL GET HTTP/1.1
selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/spankki.png
IP
192.169.80.50:443
ASN
#46475 LIMESTONENETWORKS

Requested by
https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Certificate
IssuerLet's Encrypt
Subject*.selectitecnologia.com
Fingerprint3F:0F:E6:FD:21:D8:80:FA:9C:0A:9C:1D:BA:03:0F:6D:65:BC:43:C9
ValidityFri, 01 Nov 2024 03:40:55 GMT - Thu, 30 Jan 2025 03:40:54 GMT

File type
PNG image data, 1672 x 747, 8-bit/color RGBA, non-interlaced
Size
24 kB (24353 bytes)
Hash
1c3f7402dd50b203ee98f01bed8da6b3
d1267bbe27038152be4d2b974b8ff9b351696f27
6051c5d895951296979b9ba33f9be39154922759cf4df444286eff5d95f2e3ca

HTTP Headers

GET /b/spanel-19/user/login/Tunnistautuminen_files/spankki.png HTTP/1.1
Host: selectitecnologia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 03 Dec 2024 13:42:14 GMT
Server: Apache
Last-Modified: Tue, 07 May 2024 10:37:56 GMT
Accept-Ranges: bytes
Content-Length: 24353
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png

selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/codetable%20(2).jpg

192.169.80.50

200 OK

54 kB

URL GET HTTP/1.1
selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/codetable%20(2).jpg
IP
192.169.80.50:443
ASN
#46475 LIMESTONENETWORKS

Requested by
https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Certificate
IssuerLet's Encrypt
Subject*.selectitecnologia.com
Fingerprint3F:0F:E6:FD:21:D8:80:FA:9C:0A:9C:1D:BA:03:0F:6D:65:BC:43:C9
ValidityFri, 01 Nov 2024 03:40:55 GMT - Thu, 30 Jan 2025 03:40:54 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x290, components 3
Size
54 kB (54475 bytes)
Hash
e9d0c14a764ea989cfdcec884b8f3ced
d2d09fb7cadc097ac88244665f131758b1f2044d
21c1ba8aa59654d4f6be2b79ce7aaa0f55ed8a55b399cd2e9283e97f328944f5

HTTP Headers

GET /b/spanel-19/user/login/Tunnistautuminen_files/codetable%20(2).jpg HTTP/1.1
Host: selectitecnologia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 03 Dec 2024 13:42:14 GMT
Server: Apache
Last-Modified: Tue, 07 May 2024 10:37:56 GMT
Accept-Ranges: bytes
Content-Length: 54475
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

selectitecnologia.com/theme/font/5e1aec00d3a032511dde0121ec1ecc5d.woff

192.169.80.50

500 Internal Server Error

0 B

URL GET HTTP/1.1
selectitecnologia.com/theme/font/5e1aec00d3a032511dde0121ec1ecc5d.woff
IP
192.169.80.50:443
ASN
#46475 LIMESTONENETWORKS

Requested by
https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Certificate
IssuerLet's Encrypt
Subject*.selectitecnologia.com
Fingerprint3F:0F:E6:FD:21:D8:80:FA:9C:0A:9C:1D:BA:03:0F:6D:65:BC:43:C9
ValidityFri, 01 Nov 2024 03:40:55 GMT - Thu, 30 Jan 2025 03:40:54 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /theme/font/5e1aec00d3a032511dde0121ec1ecc5d.woff HTTP/1.1
Host: selectitecnologia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://selectitecnologia.com/b/spanel-19/user/login/Tunnistautuminen_files/auth.05f49022e1cd9c5b1b15.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 500 Internal Server Error
Date: Tue, 03 Dec 2024 13:42:15 GMT
Server: Apache
X-Powered-By: PHP/8.0.30
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

www.s-pankki.fi/favicon.ico

217.29.228.112

200 OK

15 kB

URL GET HTTP/2
www.s-pankki.fi/favicon.ico
IP
217.29.228.112:443
ASN
#41878 Crosskey Banking Solutions Ab Ltd

Requested by
https://selectitecnologia.com/b/spanel-19/user/login/spk.php
Certificate
IssuerDigiCert Inc
Subjectwww.s-pankki.fi
Fingerprint12:8D:8A:E0:FA:18:3F:F3:A4:F2:05:D1:21:CA:78:79:A1:6B:9E:BB
ValidityWed, 08 May 2024 00:00:00 GMT - Sun, 08 Jun 2025 23:59:59 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
eb83a016c2ff8a5ef6bef7f6dcc45f7a
03b3c08a873f6367a2c4c8125e9e1c3ab7c5cf15
66cf67cc077cfbfe29009f4abd8c7b7bd0b8ddcb72b6b4b3962917f14821e841

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.s-pankki.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://selectitecnologia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 03 Dec 2024 13:42:15 GMT
content-type: image/x-icon
content-length: 15086
access-control-expose-headers: Request-Context
cache-control: private, max-age=86400
expires: Wed, 04 Dec 2024 13:42:15 GMT
last-modified: Tue, 03 Dec 2024 13:42:15 GMT
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self';font-src 'self' data: fonts.gstatic.com www.google.com/recaptcha/api2 fonts.googleapis.com https://netdna.bootstrapcdn.com https://giosg-chat-public-eu.s3.amazonaws.com https://cdn.giosgusercontent.com https://widget.rechanneld.com *.front.ai;img-src 'self' data: www.google-analytics.com maps.gstatic.com maps.googleapis.com *.twitter.com *.google.com *.giosgusercontent.com www.s-pankki.fi *.usercentrics.eu *.s-cloud.fi *.front.ai https://boost-files-general-eu-west-1-prod.s3-eu-west-1.amazonaws.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' platform.twitter.com *.google-analytics.com https://maps.googleapis.com https://fonts.googleapis.com *.gstatic.com *.google.com *.s-cloud.fi static.aim.front.ai *.giosg.com *.crazyegg.com *.boost.ai/chatPanel/chatPanel.js boost-files-general-eu-west-1-prod.s3-eu-west-1.amazonaws.com http://*.google.com *.factsetdigitalsolutions.com *.twimg.com *.usercentrics.eu code.jquery.com https://widget.rechanneld.com https://api.rechanneld.com https://netdna.bootstrapcdn.com;style-src 'self' 'unsafe-inline' *.twitter.com static.aim.front.ai https://service.giosg.com/bar/fonts fonts.googleapis.com https://widget.rechanneld.com https://netdna.bootstrapcdn.com;frame-src 'self' platform.twitter.com *.twitter.com *.youtube.com *.google.com *.giosgusercontent.com *.facebook.com *.linkedin.com *.gooleapis.com *.usercentrics.eu *.giosg.com;media-src 'self' *.youtube.com *.google.com *.factsetdigitalsolutions.com;connect-src 'self' *.s-cloud.fi *.s-pankki.fi *.front.ai *.giosg.com fast.fonts.net *.boost.ai *.crazyegg.com *.google-analytics.com boost-files-general-eu-west-1-prod.s3-eu-west-1.amazonaws.com *.youtube.com *.google.com *.factsetdigitalsolutions.com *.giosgusercontent.com *.usercentrics.eu *.googleapis.com blob: https://widget.rechanneld.com https://api.rechanneld.com;object-src 'none';
request-context: appId=cid-v1:7430fcf0-bd3f-47c8-887e-a770188ff387
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (7)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type