ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 0e9a834616ecee2957869d098761e63e
ea4fd3da4496adb707c8e3f142ce24b66a397958
aa2dcd65fdb563f5858848a1229605c1b43f9db37b051eea39186b6db4f547f7
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 05 Jun 2023 23:04:45 GMT
Etag: "646b6e75-1d7"
Last-Modified: Mon, 05 Jun 2023 22:26:26 GMT
Server: ECAcc (dcb/7339)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DJq0jcnTIvS4eGd75tfaeGZ_P0B52eo7wLLQ_3c74tXeJOtem5gjBQ==
Age: 2299
calendar-invitation.com/landing/form/45b5a750-76da-4649-af50-4e432f8355b2
44.193.115.92 1.4 kB URL calendar-invitation.com/landing/form/45b5a750-76da-4649-af50-4e432f8355b2
IP 44.193.115.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (604)
Hash e1eb29ee9a4ffd4ec3a1bfba3eca18b9
a582d4511b75a6d8b1ad2ed882b7edab3730aac8
765c982f4dc89115f1a47d68bc5526186c3238cf5c4e62e7132f6f27bb723578
Analyzer Verdict Alert openphish Office365
GET /landing/form/45b5a750-76da-4649-af50-4e432f8355b2 HTTP/1.1
Host: calendar-invitation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Jun 2023 23:04:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-Frame-Options: SAMEORIGIN
Referrer-Policy: unsafe-url
Set-Cookie: csrf=mZcwuZnkytkReSBNCPE1FTYxM2ZhZDc5Yzc3NWMwOWM5ZDFlM2I1MDRlZDdmYzdiZWM5MThhMTU%3D; path=/; secure
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains
Content-Encoding: gzip
calendar-invitation.com/css/data-entry.8ecb8bdcfcf4e732.css
44.193.115.92 3.6 kB URL calendar-invitation.com/css/data-entry.8ecb8bdcfcf4e732.css
IP 44.193.115.92:0
File type ASCII text, with very long lines (3511)
Hash 8ecb8bdcfcf4e73226e8368c39295396
25586bdd2a472da70d81e2b897fb0589f2512881
30bda66ee6cdb4f4c92eab68e513be2c22677c3fead22008ea5a3bef44f590b6
GET /css/data-entry.8ecb8bdcfcf4e732.css HTTP/1.1
Host: calendar-invitation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://calendar-invitation.com/landing/form/45b5a750-76da-4649-af50-4e432f8355b2
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Jun 2023 23:04:46 GMT
Content-Type: text/css
Content-Length: 3555
Connection: keep-alive
Server: nginx
Last-Modified: Mon, 05 Jun 2023 20:02:35 GMT
ETag: "647e3f5b-de3"
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains
Accept-Ranges: bytes
aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
152.199.23.37200 OK 673 B URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
IP 152.199.23.37:443
Requested by http://calendar-invitation.com/landing/form/45b5a750-76da-4649-af50-4e432f8355b2
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Hash bc3d32a696895f78c19df6c717586a5d
9191cb156a30a3ed79c44c0a16c95159e8ff689d
0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68
GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://calendar-invitation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 25307730
cache-control: public, max-age=31536000
content-md5: DhdidjYrlCeaRJJRG/y9mA==
content-type: image/svg+xml
date: Mon, 05 Jun 2023 23:04:46 GMT
etag: 0x8D7B007297AE131
last-modified: Wed, 12 Feb 2020 22:01:50 GMT
server: ECAcc (ska/F795)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 82e0eb20-701e-0011-72d5-b19fa0000000
x-ms-version: 2009-09-19
content-length: 673
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash d7704cf0a5bfe406610b40589d07f918
1ac4bde335ec10963f5210e5d15663babfa67f0d
8871878c01efdf26f0caa8c884e90029dfd59eb25a30e727b52fbebee36e3acc
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 05 Jun 2023 23:04:46 GMT
Last-Modified: Mon, 05 Jun 2023 22:59:31 GMT
Server: ECAcc (bsa/EB6C)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ODuuI6ebQ_XWZ7hIoPWoVtIsjClZFdqlufDaPN24XyahvBjkQgU2Pw==
Age: 315
calendar-invitation.com/favicon.ico
44.193.115.92404 Not Found 107 B URL GET HTTP/1.1 calendar-invitation.com/favicon.ico
IP 44.193.115.92:80
Requested by http://calendar-invitation.com/landing/form/45b5a750-76da-4649-af50-4e432f8355b2
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /favicon.ico HTTP/1.1
Host: calendar-invitation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://calendar-invitation.com/landing/form/45b5a750-76da-4649-af50-4e432f8355b2
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Mon, 05 Jun 2023 23:04:46 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains
Content-Encoding: gzip
s3.amazonaws.com/securityiq/phishing-templates/microsoft_logo.svg
3.5.20.159 3.7 kB URL s3.amazonaws.com/securityiq/phishing-templates/microsoft_logo.svg
IP 3.5.20.159:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Hash ee5c8d9fb6248c938fd0dc19370e90bd
d01a22720918b781338b5bbf9202b241a5f99ee4
04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /securityiq/phishing-templates/microsoft_logo.svg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://calendar-invitation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: tzjLD6Sy17VJbIjj22yyuUKACLQ4V5Ah2ca1OpEgp43Io94GT334p2FEBBAKpKtJvdMnF3479ufM4wmYL2xSUg==
x-amz-request-id: BNHW4CHKMTE8ZBSH
Date: Mon, 05 Jun 2023 23:04:47 GMT
Last-Modified: Mon, 20 Aug 2018 19:02:45 GMT
ETag: "ee5c8d9fb6248c938fd0dc19370e90bd"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 3651