Report - upgradeatt.weebly.com/

Report Overview

Visited public
2023-11-07 12:08:25
Tags
URL
upgradeatt.weebly.com/
Finishing URL
upgradeatt.weebly.com/
IP / ASN
199.34.228.53
#27647 WEEBLY
Title
AT&T-Login - Home

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-11-06 22:17:46	496 B	479 kB	142.250.74.35
upgradeatt.weebly.com	unknown	2006-03-29	2023-08-19 23:33:47	2023-09-09 15:19:52	4.7 kB	322 kB	199.34.228.54
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-06 21:53:55	2.4 kB	272 kB	142.250.74.106
p.typekit.net	620	2010-08-02	2012-05-23 16:28:57	2023-11-06 18:12:46	545 B	403 B	23.36.76.168
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-06 22:38:45	431 B	1.3 kB	142.250.74.164
cdn2.editmysite.com	11564	1999-09-10	2012-10-02 20:27:39	2023-11-06 18:33:10	6.1 kB	483 kB	151.101.65.46
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-11-06 22:16:33	438 B	35 kB	142.250.74.42
use.typekit.net	494	2010-08-02	2012-07-05 03:42:39	2023-11-06 18:12:45	2.8 kB	119 kB	23.36.76.122
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-06 23:29:05	551 B	39 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-06	medium	upgradeatt.weebly.com/	AT&T Inc.
2023-11-06	medium	upgradeatt.weebly.com/	AT&T Inc.
2023-11-06	medium	upgradeatt.weebly.com/	AT&T Inc.
2023-11-06	medium	upgradeatt.weebly.com/	AT&T Inc.
2023-11-06	medium	upgradeatt.weebly.com/	AT&T Inc.
2023-11-06	medium	upgradeatt.weebly.com/	AT&T Inc.

PhishTank

Scan Date	Severity	Indicator	Alert
2023-08-20	medium	upgradeatt.weebly.com/	Other
2023-08-20	medium	upgradeatt.weebly.com/files/main_style.css?1581684114	Other
2023-08-20	medium	upgradeatt.weebly.com/files/theme/custom.js?1570137717	Other
2023-08-20	medium	upgradeatt.weebly.com/uploads/1/3/0/8/130842933/att-image.png	Other
2023-08-20	medium	upgradeatt.weebly.com/favicon.ico	Other
2023-08-20	medium	upgradeatt.weebly.com/uploads/1/3/0/8/130842933/my-att-background_orig.jpg	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (34)

	URL	From	Size	First Seen	Last Seen
	upgradeatt.weebly.com/	ScriptElement	117 B	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen7490 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	upgradeatt.weebly.com/files/theme/custom.js?1570137717	ScriptElement	6.0 kB	2023-03-07	2025-04-27
Pretty URL upgradeatt.weebly.com/files/theme/custom.js?1570137717 IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-04-27 14:26 Times Seen344 Hash a8cdf2852674b9b682c1be61454a75a0 2d83662619ae0f9939dd31d5d9f624793b6e9deb 4e2f6074e5a0daab0f207bd3b9fc89b10a5383c373bfc8c54fe5dabfd48f240e Loading...

	cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1581533974	ScriptElement	534 kB	2023-06-09	2024-08-21
Pretty URL cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1581533974 IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 11:40 Last Seen2024-08-21 09:40 Times Seen1006 Hash 32390570d469eb116a806a70834ca50c 255baa94254d44b6525248d3ab61513253c3c785 dd8581d4db21d53a79ddeb0cea5289108dbdc0d214a6391a959d93a30e5d04b7 Loading...

	upgradeatt.weebly.com/	ScriptElement	1.8 kB	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen7471 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	unknown	Function	37 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-05-09 13:17 Times Seen263374 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js	ScriptElement	94 kB	2023-03-07	2025-05-09
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 11:44 Times Seen13904 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1581533974&	ScriptElement	182 kB	2023-10-23	2023-11-15
Pretty URL cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1581533974& IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 15:34 Last Seen2023-11-15 02:53 Times Seen137 Hash 2032ab9b67ff84981fcc7dfa599d432d 3da0fc2546b3fe1a395a0ebc88a88da23da33127 fe46e027ed199c883b78bb0ed9d1ec384d975fbe83f0d68183ed41c509f3d328 Loading...

	upgradeatt.weebly.com/	ScriptElement	57 B	2023-08-19	2024-08-21
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-19 23:34 Last Seen2024-08-21 08:23 Times Seen5 Hash caa205f0b1097bb7402359110375c949 72f619a391236ccc7f5982ed359df94960058536 ae9415300b4228f66091565be36effeec5fd1af3520377326e6b150096150928 Loading...

	upgradeatt.weebly.com/	ScriptElement	234 B	2023-08-19	2024-08-21
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-19 23:34 Last Seen2024-08-21 08:23 Times Seen5 Hash 5b145755f966ab44b75ccf14a96dcb5b e654d693f48b65129ae71ee91a19dd1aaa0f565f 6f0d2efe1e51ef52173cec172c529132d90da104cddb845fe070a4cc2a38c058 Loading...

	upgradeatt.weebly.com/	ScriptElement	35 B	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen7516 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	cdn2.editmysite.com/js/site/main.js?buildTime=1581533974	ScriptElement	477 kB	2023-06-07	2024-08-21
Pretty URL cdn2.editmysite.com/js/site/main.js?buildTime=1581533974 IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-07 01:20 Last Seen2024-08-21 09:41 Times Seen2506 Hash 0de029f7ed3fd4cbfdcef31b834138e3 224512b5c840e885cd0732822af53301681ec799 593fec175b00a1f118f77bb8ed378e857e9f1225f0fc019fcea508b27da53cf0 Loading...

	upgradeatt.weebly.com/	ScriptElement	32 B	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen7525 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	ScriptElement	75 kB	0001-01-01	2025-05-09
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 13:09 Times Seen31810 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	upgradeatt.weebly.com/	ScriptElement	22 B	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen5842 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

	www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js	ScriptElement	478 kB	2023-11-02	2023-11-10
Pretty URL www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 08:53 Last Seen2023-11-10 04:27 Times Seen4605 Hash 0de5995e9ac19853eeffb8bbe74e6a7d 719e6fbcd0b38df859a6f7a8c51a820d7bf5970d c7f150e7d0ed3cf657e531221f2640209e6daebed0fbaa6ab7e430ce8eb56a37 Loading...

	upgradeatt.weebly.com/	ScriptElement	62 B	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen7473 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	upgradeatt.weebly.com/	ScriptElement	263 B	2023-11-07	2024-08-20
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-07 00:45 Last Seen2024-08-20 20:37 Times Seen8 Hash 1fca2b7906c6792bba2f5cdede47b26e f17279d879189d4215999bf19940378eb6e9c9bb 60db84ddecdad9192b824c358b98b781183b1f972ffcadb09d883f90ac5d7aaf Loading...

	upgradeatt.weebly.com/	ScriptElement	655 B	2023-03-07	2025-04-11
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-04-11 11:04 Times Seen153 Hash 281d44c09019792d8dca082979acb61d a149459e9cf088254d997f8830ad4752f766818e b75f9b50ed6bf45bb64864df0b4cfd3f650fb18ba0ad368494b67a91590758e1 Loading...

	use.typekit.net/nxe1ajf.js	ScriptElement	18 kB	2023-04-06	2024-08-21
Pretty URL use.typekit.net/nxe1ajf.js IP 23.36.76.122 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 22:54 Last Seen2024-08-21 08:57 Times Seen60 Hash 30dfaadb886e3dc1629570adc1b0fb74 7fa55f2c976530348c4931e449b52994a457a1d5 b35c949c130929d48211aa4d7b0458e5a1920eecf22434fb14b538d332cf13e3 Loading...

	unknown	Function	956 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-09 13:09 Times Seen32469 Hash 03846f9824e92f5e7d3f62e8713d47c6 213d679fcd16aea7b17f05a04f4c72cbfdaaae35 217d8cf03eb4f191f072659dce350b80bc23d97219a4b55dae7f1eb96cbf16fc Loading...

	upgradeatt.weebly.com/	ScriptElement	664 B	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen7451 Hash fdd0b895b9cf69a9a4f4817533aa51f5 afc67ab62c3c91df626260407845fc41bf5d895e a50f8a487c23d76460681440220a85a28cdb09912ef451d59aa2b4f47c32aea0 Loading...

	upgradeatt.weebly.com/	ScriptElement	2.3 kB	2023-08-19	2024-08-21
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-19 23:34 Last Seen2024-08-21 08:23 Times Seen5 Hash 20bcdf46da801ee9126e893523d02b18 fcc928d0838cfa54497d0bc82663c7b82283c1cd 205a5fad2a78dc1fd7984b7ffde353c1ef135601ab2ad491b9d5343bf3177a6c Loading...

	upgradeatt.weebly.com/	ScriptElement	1.2 kB	0001-01-01	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 11:44 Times Seen7439 Hash 24449345e209b8641a813eaef44a5244 21617897e4d35717e2e41b766501fbd883a8f16d 3e72636c6cf854c8657ccbf9e03f7af05bd4836066c329417a4f8251bb5d18c1 Loading...

	unknown	Function	804 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-09 13:09 Times Seen32467 Hash 05875b1ff70334890bde3d10abb7285c f92d9ebd14575493e8bcc646a4e3c51049c938c3 473ddf16120d811a56d372dfc3bacb4e5dee2e244d4a5760e32ab16a1a1ca839 Loading...

	www.google.com/recaptcha/api.js?_=1699358888275	ScriptElement	850 B	2023-11-03	2024-08-20
Pretty URL www.google.com/recaptcha/api.js?_=1699358888275 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 03:33 Last Seen2024-08-20 21:19 Times Seen1475 Hash 75e3187657d5be919036e14f7e48d6aa 9185b9bca42793154d4f192ddb24b76f92f3c423 dc13159c0e43b54efd0a512913af567cf8c87b6a2a13e034d0fb31c6506e4abe Loading...

	upgradeatt.weebly.com/	ScriptElement	62 B	2023-03-07	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:44 Times Seen7223 Hash 1afa8234115c6f382672d91917a6fb26 e96957cb655865327588927ebc34d1ae376e9e64 45988af53e17c3bc8103bbe22bd47dd6d2d03d4a90c4116dc0621ab24ff87258 Loading...

	cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1699312603	ScriptElement	3.6 kB	2023-03-07	2025-05-07
Pretty URL cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1699312603 IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-07 18:44 Times Seen6472 Hash 40b81b2d52ba9d2e2c64c31ff6a24cd7 6b5689250661646ecbb841f2475f1556a113373c e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96 Loading...

	unknown	Function	636 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-09 13:09 Times Seen32470 Hash a59aaa8925f1d6db41fb89bb017255c0 07ab4c2f735e6116f0fd5009b8c758ec2e772334 0044c6e874feb009378c626cd206b98f114070caf5b3c4ca1e3cec6923756466 Loading...

	upgradeatt.weebly.com/	ScriptElement	957 B	2023-06-17	2025-05-09
Pretty URL upgradeatt.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-17 16:12 Last Seen2025-05-09 11:44 Times Seen7338 Hash 5e3e45aaa61bff7141726f86ef0f4cac 3f4d1d6f1eaa2d95f0765b7f0f49e9e60a7e56e8 bfce257e15e925e3be6e00aee1711a9e47d623dff36d8b14390572a77e46829a Loading...

	upgradeatt.weebly.com/files/theme/plugins.js?1570137717	ScriptElement	68 kB	2023-03-07	2025-05-06
Pretty URL upgradeatt.weebly.com/files/theme/plugins.js?1570137717 IP 199.34.228.53 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-06 14:39 Times Seen4176 Hash 2b8d85f1ea01d2c3e8b962eac8d76a5c 936987a7e08daa4a916c77d86937edee42d657da b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5 Loading...

	ssl.google-analytics.com/ga.js	ScriptElement	3.4 kB	0001-01-01	2025-05-09
Pretty URL ssl.google-analytics.com/ga.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 12:43 Times Seen24803 Hash b6f6d7efd99960ab916ee096e061f2e7 e21f1b5b99444ed4e4f62308cf616edd93ee852e bbb1ca9c206e0ed72478ea72f3ca038cf739fd540d5d1c2da19620c942e4c4f4 Loading...

	upgradeatt.weebly.com/sandbox%20eval%20code		148 B	2023-04-11	2025-05-09
Pretty URL upgradeatt.weebly.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-09 12:43 Times Seen24813 Hash 64fe6fe97a487c82c5be70158b71aa87 b93ba17d1796e404b0ca1ef6f262bbbb0c427366 3ec8a12103cf9c2e91b9be1329d1e9f1c53043e38a641070650d1b8d07dbbcd2 Loading...

	unknown	Function	496 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-09 13:09 Times Seen32468 Hash c1db72e213146c75189f4b6a82fc7f3c 3867c5fecc075a70965a96c23c59e7351b6da0d6 4d286bfbd53979af2cd45d0286d0400b8ae4da5f06b116dcc30db452b71481c1 Loading...

	unknown	Function	1.1 kB	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-09 13:09 Times Seen32129 Hash fb1fa750e498ddf325936923cd0d356e b1ab9e64280aef735182b255db6fe273200412a8 3db13173dbd9eb042356058f38b5c9b76a30cf82ed9251c738d23eb6827502b1 Loading...

HTTP Transactions (37)

URL IP Response Size

upgradeatt.weebly.com/

199.34.228.54

200 OK

6.3 kB

URL User Request GET HTTP/1.1
upgradeatt.weebly.com/
IP
199.34.228.54:443
ASN
#27647 WEEBLY

Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (887), with CRLF, LF line terminators
Size
6.3 kB (6264 bytes)
Hash
f3de362e42a51c53d9883a847de80084
7d4f7ce43d001f31e23559783511aaace5069243
1ac135e12fb3c21938a8ad9080081c3aabe91d3a64ddcd5a0f1feafa91cdde85

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other

HTTP Headers

GET / HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 Nov 2023 12:08:06 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=upgradeatt.weebly.com
language=en; expires=Tue, 21-Nov-2023 12:08:06 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"f3de362e42a51c53d9883a847de80084-gzip"
Content-Encoding: gzip
X-Host: grn54.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 6264
Keep-Alive: timeout=10, max=64
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1581533974&

151.101.65.46

200 OK

33 kB

URL GET HTTP/3
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1581533974&
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (65024)
Size
33 kB (33069 bytes)
Hash
2032ab9b67ff84981fcc7dfa599d432d
3da0fc2546b3fe1a395a0ebc88a88da23da33127
fe46e027ed199c883b78bb0ed9d1ec384d975fbe83f0d68183ed41c509f3d328

HTTP Headers

GET /js/lang/en/stl.js?buildTime=1581533974& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 01 Nov 2023 12:43:19 GMT
etag: "654247e7-2c846"
expires: Wed, 15 Nov 2023 13:50:06 GMT
cache-control: max-age=1209600
x-host: blu39.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
age: 512281
x-served-by: cache-sjc1000130-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 71, 1
x-timer: S1699358887.181204,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33069
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/sites.css?buildTime=1581533974

151.101.65.46

200 OK

30 kB

URL GET HTTP/2
cdn2.editmysite.com/css/sites.css?buildTime=1581533974
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29663 bytes)
Hash
251fe9dd065a30efd11ccab9a9613cda
9c8bec2886368f245985ae92222349ba92ac07f7
5b6bd64c8f7d37dd7bd34e3760cfffa93a982937376e2c02708f63c35c645a07

HTTP Headers

GET /css/sites.css?buildTime=1581533974 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 27 Oct 2023 22:10:11 GMT
etag: W/"653c3543-337f6"
expires: Sat, 11 Nov 2023 08:12:10 GMT
cache-control: max-age=1209600
x-host: grn156.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
age: 878156
x-served-by: cache-sjc10052-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 484, 1
x-timer: S1699358887.181039,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29663
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1699312603

151.101.65.46

200 OK

1.4 kB

URL GET HTTP/2
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1699312603
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (3600), with no line terminators
Size
1.4 kB (1372 bytes)
Hash
40b81b2d52ba9d2e2c64c31ff6a24cd7
6b5689250661646ecbb841f2475f1556a113373c
e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96

HTTP Headers

GET /js/site/footerSignup.js?buildTime=1699312603 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 06 Nov 2023 23:02:13 GMT
etag: "65497075-e10"
expires: Mon, 20 Nov 2023 23:19:07 GMT
cache-control: max-age=1209600
x-host: blu17.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
age: 46140
x-served-by: cache-sjc10073-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 108, 99
x-timer: S1699358887.186602,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main.js?buildTime=1581533974

151.101.65.46

200 OK

146 kB

URL GET HTTP/2
cdn2.editmysite.com/js/site/main.js?buildTime=1581533974
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (32147)
Size
146 kB (146401 bytes)
Hash
0de029f7ed3fd4cbfdcef31b834138e3
224512b5c840e885cd0732822af53301681ec799
593fec175b00a1f118f77bb8ed378e857e9f1225f0fc019fcea508b27da53cf0

HTTP Headers

GET /js/site/main.js?buildTime=1581533974 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 31 Oct 2023 21:04:41 GMT
etag: "65416be9-74804"
expires: Wed, 15 Nov 2023 12:44:19 GMT
cache-control: max-age=1209600
x-host: grn107.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
age: 516227
x-served-by: cache-sjc10062-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 114, 1
x-timer: S1699358887.186343,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146401
X-Firefox-Spdy: h2

cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png

151.101.65.46

200 OK

9.7 kB

URL GET HTTP/2
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Size
9.7 kB (9677 bytes)
Hash
6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd

HTTP Headers

GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-guploader-uploadid: ADPycduBRDjRVf4aujFpQt8U1R0AZRrT0tvE8fm-z8w_U2xex-GMjAJYQnABttdWeDPxN6Xmm0qeYmzq9wQe4BBub96qvpXffxjW
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 01 Sep 2023 02:23:15 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
via: 1.1 varnish
age: 120788
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 478
x-timer: S1699358887.195531,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/social-icons.css?buildtime=1581533974

151.101.65.46

200 OK

1.6 kB

URL GET HTTP/2
cdn2.editmysite.com/css/social-icons.css?buildtime=1581533974
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (13080)
Size
1.6 kB (1640 bytes)
Hash
c51cabef49f98c0e64a9d4d511843ef3
0c6661f5a91009e4887ecd844c3c852d3bd00d3e
1850e83f8dbcab589a0529d51dad9a47b97daf550704981a94ea01f65127d50a

HTTP Headers

GET /css/social-icons.css?buildtime=1581533974 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 26 Oct 2023 17:34:14 GMT
etag: W/"653aa316-3319"
expires: Fri, 10 Nov 2023 13:11:53 GMT
cache-control: max-age=1209600
x-host: blu70.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
age: 946574
x-served-by: cache-sjc10026-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 95, 1
x-timer: S1699358887.199745,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1640
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1581533974

151.101.65.46

200 OK

159 kB

URL GET HTTP/2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1581533974
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (32029)
Size
159 kB (159146 bytes)
Hash
32390570d469eb116a806a70834ca50c
255baa94254d44b6525248d3ab61513253c3c785
dd8581d4db21d53a79ddeb0cea5289108dbdc0d214a6391a959d93a30e5d04b7

HTTP Headers

GET /js/site/main-customer-accounts-site.js?buildTime=1581533974 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 27 Oct 2023 22:10:44 GMT
etag: "653c3564-826d7"
expires: Sun, 12 Nov 2023 15:08:08 GMT
cache-control: max-age=1209600
x-host: grn84.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
age: 766799
x-served-by: cache-sjc10044-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 451, 1
x-timer: S1699358887.189071,VS0,VE7
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159146
X-Firefox-Spdy: h2

upgradeatt.weebly.com/files/main_style.css?1581684114

199.34.228.54

200 OK

6.6 kB

URL GET HTTP/1.1
upgradeatt.weebly.com/files/main_style.css?1581684114
IP
199.34.228.54:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (670)
Size
6.6 kB (6581 bytes)
Hash
f7297856c308420d8de9c57778e1c843
48b0fca760e5ac721327d5caa13ce4fbbd569461
4f349b242b9bb87584e654987abf82a995869f367a730ed3db32b571be78b509

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other

HTTP Headers

GET /files/main_style.css?1581684114 HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 12:08:07 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu43.sf2p.intern.weebly.net
Content-Encoding: gzip

cdn2.editmysite.com/css/old/fancybox.css?1581533974

151.101.65.46

200 OK

1.2 kB

URL GET HTTP/2
cdn2.editmysite.com/css/old/fancybox.css?1581533974
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (3910)
Size
1.2 kB (1218 bytes)
Hash
1dcebbb5a1eb8b028310ceeb72a339b3
e254b7a35ac189fd1ce9cf8bd78593bebfe27d7d
865cb87de9fc4d6530edce21f0103107abae6abe45cabdff2ad9af067b3d8e0a

HTTP Headers

GET /css/old/fancybox.css?1581533974 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 27 Oct 2023 22:10:19 GMT
etag: "653c354b-f47"
expires: Sat, 11 Nov 2023 20:08:48 GMT
cache-control: max-age=1209600
x-host: grn136.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:07 GMT
age: 835159
x-served-by: cache-sjc1000125-SJC, cache-bma1637-BMA
x-cache: HIT, HIT
x-cache-hits: 51, 1
x-timer: S1699358887.212770,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2

upgradeatt.weebly.com/files/theme/custom.js?1570137717

199.34.228.54

200 OK

1.8 kB

URL GET HTTP/1.1
upgradeatt.weebly.com/files/theme/custom.js?1570137717
IP
199.34.228.54:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
ASCII text
Size
1.8 kB (1755 bytes)
Hash
a8cdf2852674b9b682c1be61454a75a0
2d83662619ae0f9939dd31d5d9f624793b6e9deb
4e2f6074e5a0daab0f207bd3b9fc89b10a5383c373bfc8c54fe5dabfd48f240e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other

HTTP Headers

GET /files/theme/custom.js?1570137717 HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 12:08:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 19 Jan 2023 15:51:34 GMT
x-rgw-object-type: Normal
ETag: W/"a8cdf2852674b9b682c1be61454a75a0"
x-amz-request-id: tx000000000000000059818-0064173dde-d860bdd-sfo1
X-Storage-Bucket: z4e2f
X-Storage-Object: 4e2f6074e5a0daab0f207bd3b9fc89b10a5383c373bfc8c54fe5dabfd48f240e
X-Host: grn25.sf2p.intern.weebly.net
Content-Encoding: gzip

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js

142.250.74.42

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (65483)
Size
34 kB (33593 bytes)
Hash
3576a6e73c9dccdbbc4a2cf8ff544ad7
06e872300088b9ba8a08427d28ed0efcdf9c6ff5
61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf

HTTP Headers

GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Nov 2023 08:31:12 GMT
expires: Tue, 05 Nov 2024 08:31:12 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 99415
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

upgradeatt.weebly.com/files/theme/plugins.js?1570137717

199.34.228.53

200 OK

16 kB

URL GET HTTP/1.1
upgradeatt.weebly.com/files/theme/plugins.js?1570137717
IP
199.34.228.53:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
ASCII text
Size
16 kB (15721 bytes)
Hash
2b8d85f1ea01d2c3e8b962eac8d76a5c
936987a7e08daa4a916c77d86937edee42d657da
b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5

HTTP Headers

GET /files/theme/plugins.js?1570137717 HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 12:08:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001b7bf86-0062847aed-b9fbc29-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: grn142.sf2p.intern.weebly.net
Content-Encoding: gzip

upgradeatt.weebly.com/uploads/1/3/0/8/130842933/att-image.png

199.34.228.53

200 OK

4.6 kB

URL GET HTTP/1.1
upgradeatt.weebly.com/uploads/1/3/0/8/130842933/att-image.png
IP
199.34.228.53:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4615 bytes)
Hash
aff0faed0b82585e5f9bf6fba2b3c94e
fac70661e55765c09ca92ccde1d1649f2ae4268a
bf2805dfafe4727bcf11dcf286aba2d5d461cd5e05ccb1a4a4b2904849177353

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other

HTTP Headers

GET /uploads/1/3/0/8/130842933/att-image.png HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 12:08:07 GMT
Content-Type: image/png
Content-Length: 4615
Connection: keep-alive
Last-Modified: Wed, 25 Sep 2019 16:26:51 GMT
x-rgw-object-type: Normal
ETag: "aff0faed0b82585e5f9bf6fba2b3c94e"
x-amz-request-id: tx00000c5324edb3ee83710-0064f71768-db1c67d-sfo1
X-Storage-Bucket: zbf28
X-Storage-Object: bf2805dfafe4727bcf11dcf286aba2d5d461cd5e05ccb1a4a4b2904849177353
X-Host: blu152.sf2p.intern.weebly.net
Accept-Ranges: bytes

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1581533974&

151.101.65.46

200 OK

33 kB

URL GET HTTP/3
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1581533974&
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (65024)
Size
33 kB (33069 bytes)
Hash
2032ab9b67ff84981fcc7dfa599d432d
3da0fc2546b3fe1a395a0ebc88a88da23da33127
fe46e027ed199c883b78bb0ed9d1ec384d975fbe83f0d68183ed41c509f3d328

HTTP Headers

GET /js/lang/en/stl.js?buildTime=1581533974& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 33069
server: nginx
content-type: application/javascript
last-modified: Wed, 01 Nov 2023 12:43:19 GMT
etag: "654247e7-2c846"
expires: Wed, 15 Nov 2023 13:50:06 GMT
cache-control: max-age=1209600
x-host: blu39.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:08 GMT
age: 512282
x-served-by: cache-sjc1000130-SJC, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 71, 1
x-timer: S1699358888.007662,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

use.typekit.net/nxe1ajf.js

23.36.76.122

200 OK

6.7 kB

URL GET HTTP/2
use.typekit.net/nxe1ajf.js
IP
23.36.76.122:443
ASN
#20940 Akamai International B.V.

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint42:82:CA:A5:EA:30:8F:60:60:37:2D:24:17:3D:52:62:54:D7:03:5B
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2258)
Size
6.7 kB (6739 bytes)
Hash
abffe93990e47d50c4d3b8898ca65d69
5a33314ab9c6e3d6f386a97fa48a6ba034289443
6e07ac80f3fe90d43105298cf347c8221eda848bbb49553bce6a9ab03d8f7916

HTTP Headers

GET /nxe1ajf.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6739
date: Tue, 07 Nov 2023 12:08:08 GMT
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext

142.250.74.106

200 OK

38 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
gzip compressed data, max compression\012- data
Size
38 kB (38516 bytes)
Hash
0586b878b7901f5167053defe480053f
6843ce217dc223c2b354353530ef7e558b9a3aba
ce2773836573a44f1a4d52b8b3b0f6c1a97ba94646bc7a712e001f29d3865e51

HTTP Headers

GET /css?family=Montserrat:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Nov 2023 12:08:07 GMT
date: Tue, 07 Nov 2023 12:08:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.65.46

200 OK

26 kB

URL GET HTTP/3
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (2512)
Size
26 kB (25752 bytes)
Hash
99bbe560926e583b8e99036251deb783
8d81b73ae06f664f9d9e53dd5829a799bf434491
648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 25752
server: nginx
content-type: application/javascript
last-modified: Wed, 25 Oct 2023 18:15:35 GMT
etag: "65395b47-124fe"
expires: Thu, 09 Nov 2023 08:49:33 GMT
cache-control: max-age=1209600
x-host: blu154.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:08 GMT
age: 1048714
x-served-by: cache-sjc10061-SJC, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 43, 4866
x-timer: S1699358888.251852,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1699312603

151.101.65.46

200 OK

886 B

URL GET HTTP/3
cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1699312603
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
ASCII text, with very long lines (2632)
Size
886 B (886 bytes)
Hash
b09e83d2aeac55c0d3b67186cd5009ff
fa87cec84cc36fc2e70804867da24578ea331999
251a983a1b4b2cc76542aa398ae6b3499978a788860b54a8081d35d7a843303c

HTTP Headers

GET /css/free-footer-v3.css?buildtime=1699312603 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 886
server: nginx
content-type: text/css
last-modified: Mon, 06 Nov 2023 23:01:48 GMT
etag: "6549705c-a49"
expires: Mon, 20 Nov 2023 23:19:07 GMT
cache-control: max-age=1209600
x-host: blu40.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:08 GMT
age: 46140
x-served-by: cache-sjc1000113-SJC, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 103, 118
x-timer: S1699358888.308164,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fonts.googleapis.com/css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext

142.250.74.106

200 OK

28 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
gzip compressed data, max compression\012- data
Size
28 kB (27520 bytes)
Hash
93d904abb8f91064e78a7ceeba823308
bb031cd899bcec2fcf97f4e5be67ab718aaaa9f8
af470cc474323310627d83d6ee310ce6f3dfbc0d4a0a39312a4d53a5f2df0028

HTTP Headers

GET /css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Nov 2023 12:08:07 GMT
date: Tue, 07 Nov 2023 12:08:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.typekit.net/af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3

23.36.76.122

200 OK

29 kB

URL GET HTTP/2
use.typekit.net/af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3
IP
23.36.76.122:443
ASN
#20940 Akamai International B.V.

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint42:82:CA:A5:EA:30:8F:60:60:37:2D:24:17:3D:52:62:54:D7:03:5B
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 29052, version 1.0\012- data
Size
29 kB (29052 bytes)
Hash
3437e060c8710bccafd202e3da9a25dc
8e1bbee3d09332165b23156a05b43641f8d9f913
0656089e2e797a739897875d68a79ca62256a3c76ab3f4c31cb2f363cd778fee

HTTP Headers

GET /af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29052
etag: "a6e56bc1473094b110819c4cfa4169b4a97bd255"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 07 Nov 2023 12:08:08 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3

23.36.76.122

200 OK

27 kB

URL GET HTTP/2
use.typekit.net/af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
IP
23.36.76.122:443
ASN
#20940 Akamai International B.V.

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint42:82:CA:A5:EA:30:8F:60:60:37:2D:24:17:3D:52:62:54:D7:03:5B
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 26568, version 1.0\012- data
Size
27 kB (26568 bytes)
Hash
69d7f21af427ec644440343c1bcd0606
186c5445f00e61e82a73ce3207965ce28c410f72
2a1074cd5044c672760ad745fdbbd125381d63a86f5380b57a1dd28ad0da0d75

HTTP Headers

GET /af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26568
etag: "c11943bfe7851ce643a829e2f815ebf55030b555"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 07 Nov 2023 12:08:08 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3

23.36.76.122

200 OK

28 kB

URL GET HTTP/2
use.typekit.net/af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3
IP
23.36.76.122:443
ASN
#20940 Akamai International B.V.

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint42:82:CA:A5:EA:30:8F:60:60:37:2D:24:17:3D:52:62:54:D7:03:5B
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 27788, version 1.0\012- data
Size
28 kB (27788 bytes)
Hash
ccc7b72fb1a80abb8cbafa94de34a554
0c68982548e2af3c6d6e8c49128be51e3f5dd0d1
3d25e0efebb8648cd1fcb31872cf5200c2e577259ad589b6e802bb1d95d03efe

HTTP Headers

GET /af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27788
etag: "d76106a15ff619ce03b2c3ca28b4559b159b1b63"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 07 Nov 2023 12:08:08 GMT
X-Firefox-Spdy: h2

cdn2.editmysite.com/images/landing-pages/global/logotype.svg

151.101.65.46

200 OK

1.5 kB

URL GET HTTP/3
cdn2.editmysite.com/images/landing-pages/global/logotype.svg
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858)
Size
1.5 kB (1488 bytes)
Hash
bc61dcb431a14c508075eeff4f74523a
8a660156d462bfb8c40f98c40616511f5857f34e
e8fce53e602b22e525d06ba31b166bb4ff461319bc9ae53caad095d185a4d15b

HTTP Headers

GET /images/landing-pages/global/logotype.svg HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1699312603
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 1488
x-guploader-uploadid: ABPtcPpeLBeM2xKy8NOsKZqE9SLIbIR0a6hgWDVfBPXGi017ng7uaDo7Lg0ueA2PBwdQWtlsgSqVpmIIcA
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 03 Nov 2023 01:11:46 GMT
last-modified: Wed, 10 Oct 2018 21:37:00 GMT
etag: "bc61dcb431a14c508075eeff4f74523a"
x-goog-generation: 1539207420450301
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3507
content-type: image/svg+xml
x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg==
x-goog-storage-class: STANDARD
server: UploadServer
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:08 GMT
via: 1.1 varnish
age: 125695
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 294
x-timer: S1699358888.434179,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2

151.101.65.46

200 OK

31 kB

URL GET HTTP/3
cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2
IP
151.101.65.46:443
ASN
#54113 FASTLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.editmysite.com
Fingerprint8D:09:E9:00:22:07:DC:77:D7:9F:B9:55:7D:0A:C1:8A:58:67:20:18
ValidityMon, 12 Jun 2023 23:15:31 GMT - Sat, 13 Jul 2024 23:15:30 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data
Size
31 kB (30768 bytes)
Hash
2344124773c71bf4fa4ad407e7c3a467
3394a43ab1efab8a22a1f07222f7f02a9e12cbb8
bd4d2e29f503390e4951af9232fc43780b43d349647188d8f3f600835f16afb7

HTTP Headers

GET /fonts/SQ_Market/sqmarket-medium.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 30768
server: nginx
content-type: font/woff2
last-modified: Fri, 27 Oct 2023 17:17:01 GMT
etag: "653bf08d-7830"
expires: Mon, 13 Nov 2023 12:25:42 GMT
cache-control: max-age=1209600
x-host: grn11.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 Nov 2023 12:08:08 GMT
age: 690146
x-served-by: cache-sjc1000119-SJC, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1341
x-timer: S1699358888.436524,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

p.typekit.net/p.gif?s=1&k=nxe1ajf&ht=tk&h=upgradeatt.weebly.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1699358888471

23.36.76.168

200 OK

35 B

URL GET HTTP/2
p.typekit.net/p.gif?s=1&k=nxe1ajf&ht=tk&h=upgradeatt.weebly.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1699358888471
IP
23.36.76.168:443
ASN
#20940 Akamai International B.V.

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint42:82:CA:A5:EA:30:8F:60:60:37:2D:24:17:3D:52:62:54:D7:03:5B
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39

HTTP Headers

GET /p.gif?s=1&k=nxe1ajf&ht=tk&h=upgradeatt.weebly.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1699358888471 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
x-akamai-ew-subworker: 8096267
date: Tue, 07 Nov 2023 12:08:08 GMT
X-Firefox-Spdy: h2

upgradeatt.weebly.com/files/theme/fonts/Unite_700.otf?1581684114

199.34.228.53

200 OK

90 kB

URL GET HTTP/1.1
upgradeatt.weebly.com/files/theme/fonts/Unite_700.otf?1581684114
IP
199.34.228.53:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
OpenType font data\012- data
Size
90 kB (89928 bytes)
Hash
fa11c3ca7b2301d6b8da51b04985fb05
a9b9dae4568883ef65d130a8237343185d463f2a
36906b2b3f6a199b3c59e6d862bfb36ed52d5c8de14ce46da8a8c5890250eb17

HTTP Headers

GET /files/theme/fonts/Unite_700.otf?1581684114 HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/files/main_style.css?1581684114
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 12:08:08 GMT
Content-Type: font/otf
Content-Length: 89928
Connection: keep-alive
Last-Modified: Fri, 08 May 2020 19:36:11 GMT
x-rgw-object-type: Normal
ETag: "fa11c3ca7b2301d6b8da51b04985fb05"
x-amz-request-id: tx000000000000001d59edb-0062849b93-b9fbc64-sfo1
X-Storage-Bucket: z3690
X-Storage-Object: 36906b2b3f6a199b3c59e6d862bfb36ed52d5c8de14ce46da8a8c5890250eb17
X-Host: grn49.sf2p.intern.weebly.net
Accept-Ranges: bytes

fonts.googleapis.com/css?family=Quattrocento:400,700&subset=latin,latin-ext

142.250.74.106

200 OK

192 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Quattrocento:400,700&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (537)
Size
192 kB (191777 bytes)
Hash
d781cd1aa8b6b588cc7df9f6be0ebaef
6780dd8abd3a612d87bef48ccfb4bdd8f3f30da2
6940d059261be1b8795a440d6797252463beedaa74c6084a9a13b8bdf8424e03

HTTP Headers

GET /css?family=Quattrocento:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Nov 2023 12:08:07 GMT
date: Tue, 07 Nov 2023 12:08:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

upgradeatt.weebly.com/favicon.ico

199.34.228.53

200 OK

4.3 kB

URL GET HTTP/1.1
upgradeatt.weebly.com/favicon.ico
IP
199.34.228.53:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 12:08:08 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001ac862e-0062847767-b9fbc20-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn156.sf2p.intern.weebly.net
Accept-Ranges: bytes

upgradeatt.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]

199.34.228.53

200 OK

348 B

URL POST HTTP/1.1
upgradeatt.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
199.34.228.53:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size
348 B (348 bytes)
Hash
a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

HTTP Headers

POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 07 Nov 2023 12:08:08 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu48.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=60
Connection: Keep-Alive
Content-Type: application/json

upgradeatt.weebly.com/uploads/1/3/0/8/130842933/my-att-background_orig.jpg

199.34.228.54

200 OK

188 kB

URL GET HTTP/1.1
upgradeatt.weebly.com/uploads/1/3/0/8/130842933/my-att-background_orig.jpg
IP
199.34.228.54:443
ASN
#27647 WEEBLY

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subject*.weebly.com
Fingerprint84:B4:09:67:7F:E7:D1:9F:01:07:51:96:4A:72:30:17:A4:A3:94:E6
ValiditySat, 28 Oct 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1100x782, components 3\012- data
Size
188 kB (187760 bytes)
Hash
922e19e3930ce66a4314d45617e03743
7e3d48ac0355520e01d317c96c214871b9168254
805677e59cc3b0476abb65b0155162b4c9db297d82d8da4fd67a72636f0da8e8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	AT&T Inc.
PhishTank	phishing	Other

HTTP Headers

GET /uploads/1/3/0/8/130842933/my-att-background_orig.jpg HTTP/1.1
Host: upgradeatt.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 12:08:07 GMT
Content-Type: image/jpeg
Content-Length: 187760
Connection: keep-alive
Last-Modified: Tue, 07 Jan 2020 13:11:11 GMT
x-rgw-object-type: Normal
ETag: "922e19e3930ce66a4314d45617e03743"
x-amz-request-id: tx00000afd8296bf1b0fec7-006520c036-db1c716-sfo1
X-Storage-Bucket: z8056
X-Storage-Object: 805677e59cc3b0476abb65b0155162b4c9db297d82d8da4fd67a72636f0da8e8
X-Host: blu144.sf2p.intern.weebly.net
Accept-Ranges: bytes

use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.122

200 OK

27 kB

URL GET HTTP/2
use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.122:443
ASN
#20940 Akamai International B.V.

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint42:82:CA:A5:EA:30:8F:60:60:37:2D:24:17:3D:52:62:54:D7:03:5B
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Size
27 kB (26888 bytes)
Hash
6c288957e1ea69636d76b434a53c65ef
b8e0e2074136f3b167567d532312cc0f838bdf5f
c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc

HTTP Headers

GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 07 Nov 2023 12:08:08 GMT
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext

142.250.74.106

200 OK

4.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (4758), with no line terminators
Size
4.7 kB (4662 bytes)
Hash
a82e0402a16233149aa6811992bcd763
22b41504b2da5e229f1a181c3e0df603ebd197ad
481fa19b4934d2519434a3f0e78b9c04a97dc83e7c78928406af91a35062bf36

HTTP Headers

GET /css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Nov 2023 12:08:07 GMT
date: Tue, 07 Nov 2023 12:08:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext

142.250.74.106

200 OK

6.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (6126), with no line terminators
Size
6.0 kB (5998 bytes)
Hash
bd27c189d67aa6eef205a6fdc2afaada
0e1f9e2e07e39f863a00c6efadf3fcb0978ce6fc
84ecafe04e7f9f43354c1dcbe7d9b54c53bd59dd86714dbe61b27a4c3a50cd31

HTTP Headers

GET /css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Nov 2023 12:08:07 GMT
date: Tue, 07 Nov 2023 12:08:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/playfairdisplay/v36/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2

142.250.74.163

200 OK

38 kB

URL GET HTTP/2
fonts.gstatic.com/s/playfairdisplay/v36/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37964, version 1.0\012- data
Size
38 kB (37964 bytes)
Hash
53dc5ba78048ba77adbeb59626cfc316
93f6b849fb3ae9609d3008dfa1071c5a6e39f817
b06a5d272de6f4e0ba3f8db8338da394f8716987f7a7e764a22b6e903c0f94cf

HTTP Headers

GET /s/playfairdisplay/v36/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 15:20:23 GMT
expires: Sat, 02 Nov 2024 15:20:23 GMT
cache-control: public, max-age=31536000
age: 334065
last-modified: Thu, 24 Aug 2023 20:43:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?_=1699358888275

142.250.74.164

200 OK

850 B

URL GET HTTP/2
www.google.com/recaptcha/api.js?_=1699358888275
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF5:CC:DA:B5:BA:1E:14:14:44:CC:27:90:92:CC:60:1F:5F:08:AF:77
ValidityMon, 16 Oct 2023 08:10:46 GMT - Mon, 08 Jan 2024 08:10:45 GMT

File type
ASCII text, with very long lines (850), with no line terminators
Size
850 B (850 bytes)
Hash
75e3187657d5be919036e14f7e48d6aa
9185b9bca42793154d4f192ddb24b76f92f3c423
dc13159c0e43b54efd0a512913af567cf8c87b6a2a13e034d0fb31c6506e4abe

HTTP Headers

GET /recaptcha/api.js?_=1699358888275 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Tue, 07 Nov 2023 12:08:08 GMT
date: Tue, 07 Nov 2023 12:08:08 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js

142.250.74.35

200 OK

478 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://upgradeatt.weebly.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
ASCII text, with very long lines (537)
Size
478 kB (478383 bytes)
Hash
0de5995e9ac19853eeffb8bbe74e6a7d
719e6fbcd0b38df859a6f7a8c51a820d7bf5970d
c7f150e7d0ed3cf657e531221f2640209e6daebed0fbaa6ab7e430ce8eb56a37

HTTP Headers

GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upgradeatt.weebly.com
DNT: 1
Connection: keep-alive
Referer: https://upgradeatt.weebly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 191376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Nov 2023 22:11:30 GMT
expires: Tue, 05 Nov 2024 22:11:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 50198
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash