Report - loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/

Report Overview

Submitted URL
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
IP
45.81.39.246
ASN
#0
Submitted
2023-06-02 00:08:47
Access
public
Website Title
Final URL
Tags
poste_italiane logistics phishing
urlquery detections
Phishing - Poste Italiane

Detections

urlquery
110
Network Intrusion Detection
0
Threat Detection Systems
222

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
loginsicuro.45-81-39-246.cprapid.com	unknown	2019-05-16	2023-05-25	2023-06-01	61 kB	536 kB	45.81.39.246
ocsp.r2m02.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-06-01	340 B	942 B	54.230.80.227
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-06-02	340 B	942 B	54.230.80.227
websocket-visitors.smartsupp.com	39452	2012-08-25	2021-08-15	2023-06-01	1.2 kB	446 B	3.65.75.204
translations.smartsuppcdn.com	unknown	2018-11-20	2022-11-04	2023-06-01	522 B	6.4 kB	185.76.9.25
widget-v2.smartsuppcdn.com	49903	2018-11-20	2020-05-20	2023-06-01	1.7 kB	662 kB	185.76.9.25
www.smartsuppchat.com	46890	2014-02-02	2018-08-31	2023-06-01	431 B	20 kB	185.76.9.18
bootstrap.smartsuppchat.com	43006	2014-02-02	2018-01-29	2023-06-01	555 B	1.5 kB	18.184.113.62

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-06-01	medium	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com
2023-06-01	medium	cprapid.com

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	519 B	2023-03-07	2024-01-30
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:41:12 Last Seen2024-01-30 03:19:57 Times Seen28 Hash 92fed312b538552a6c72dda0a1aa1d0e 0a69e37467f0139ab9675ae30670f5bbe4ea0406 62f9032fb3a4abb8cb551d9d87e74d620c6a98b9c897746d1bc321b06fe93a25 Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	32 B	2023-03-07	2024-01-30
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:41:12 Last Seen2024-01-30 03:19:57 Times Seen28 Hash fe351a347bc0f7bceb58cabd409a24e6 509ea50788b2f26321f7c7d76b291cceee4df3dc 7bf6e064c8226ca681ba7e1670577ce3c53980e5b9ebfa5f2be8b1fd57274052 Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	213 B	2023-03-07	2024-01-30
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:41:12 Last Seen2024-01-30 03:19:58 Times Seen29 Hash 49b46c8ec584d41a5c88047302e67b11 b26a74cd4f517b74cc119fc027bf2266c989489e 0d6e2ed4aaf6894eb7b07e1469865306a8c9820c0614092b604ff1bd5b4d4d06 Loading...

	www.smartsuppchat.com/loader.js?	20 kB	2023-05-23	2023-12-05
Pretty URL www.smartsuppchat.com/loader.js? IP 185.76.9.18 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 10:08:21 Last Seen2023-12-05 21:01:34 Times Seen249 Hash 1e2da31016b19fd5d6c9518bdfa234c7 159dde529fce19a9e31ac4a9293f198c39c69f49 f0969edad783e34a759e08b2353ed6198ea01969e2557393bf55c47f1a2c13a7 Loading...

	widget-v2.smartsuppcdn.com/static/js/runtime-main.1934e153.js	2.5 kB	2023-04-19	2023-07-10
Pretty URL widget-v2.smartsuppcdn.com/static/js/runtime-main.1934e153.js IP 185.76.9.25 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-19 15:55:09 Last Seen2023-07-10 19:22:30 Times Seen118 Hash 3342ff6e17e18a9983297fa62abf7ff9 74e5e1fbb03d1516074f4d67b25055476553c5d6 13ca7a7abbf685c5951b76a00ad13763beea38eeafeac1316c66f853427437bf Loading...

	widget-v2.smartsuppcdn.com/static/js/main.f4b290f4.chunk.js	118 kB	2023-04-19	2023-07-10
Pretty URL widget-v2.smartsuppcdn.com/static/js/main.f4b290f4.chunk.js IP 185.76.9.25 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-19 15:55:09 Last Seen2023-07-10 19:22:30 Times Seen212 Hash 1f8aa486dd275a2fb1de7bfdd1e8f725 ea4cf0270057bf6f22d3513cec13ff78c15bc10c 75ea317ee21302c78430cbd83c6d26cc46c6d59246eeed8ddf8dc3074afa8183 Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	4 B	2023-03-07	2024-01-30
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:23:12 Last Seen2024-01-30 03:19:58 Times Seen31 Hash fc2ccdbd6f4aba0d784494f5bc97b118 9413c186b9472133f8068be94123a0632edbe40b 3081934321845102d2d7332664cd35866100765bd5b57d7f0b25b4f20275187b Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	220 B	2023-03-07	2023-09-22
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:41:12 Last Seen2023-09-22 15:26:54 Times Seen24 Hash b82ba58892186e3b5a660acfd0fab054 19d107860e9c2561ece033efc1ad04d7e67929e3 dc4119a4d6b5efaf967ca5e6ac5d69645af3f35716fa8625984ff5ff8808b53d Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	63 B	2023-03-07	2024-04-04
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:18 Times Seen232 Hash 3061b743e16b9c13065db73e07b0ab7f 24d48892a0026114fdaa95e333666d1794dc4698 033d0b061d46c5cde3873a2b595dc959e8a64e4cb20ba92b3f133cede75d9d61 Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	426 B	2023-03-07	2024-01-30
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:41:12 Last Seen2024-01-30 03:19:58 Times Seen29 Hash a07b3893f8e5a875eafebc87fed62760 95bc901b29b538b5ad29fd8d343f46f90e21f654 7f7783e2c6b7544b109d14a757933653f0de58a67d9ea23a0f4bdb05ae5b83fa Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/	418 B	2023-06-02	2023-06-15
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/ IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-02 02:08:49 Last Seen2023-06-15 01:02:26 Times Seen3 Hash 897f4084bf16c58e1396cae919e2f870 0656071582facad34aa19b9d1932ce858f0da1e8 e4281eb18386c3a325b14a5d1260bcf239ff220a4e58040fd9605be6c0f42070 Loading...

	widget-v2.smartsuppcdn.com/static/js/6.d679ef16.chunk.js	537 kB	2023-04-19	2023-07-10
Pretty URL widget-v2.smartsuppcdn.com/static/js/6.d679ef16.chunk.js IP 185.76.9.25 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-19 15:55:09 Last Seen2023-07-10 19:22:32 Times Seen209 Hash 64c2ec0869bcc8c293ee74cf7ea23626 749de8a0a146fe9fc138bcf400ef987f5a203473 35576539f0f6b98f9f7aef04b2dca0d7b03c974e6109415534729f5a90a236fc Loading...

	loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/get-client-info	31 B	2023-03-07	2024-01-30
Pretty URL loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/get-client-info IP 45.81.39.246 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:41:12 Last Seen2024-01-30 03:19:58 Times Seen56 Hash ab306976ae9082d558484093cac112eb c637f476058227b6958e390b6557eb595f29fe3e 361fb61c38730a1ce44f167945a46c323d6a148d3d68161485ce5861ab6722b8 Loading...

HTTP Transactions (121)

URL IP Response Size

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/

45.81.39.246

200 OK

24 kB

URL User Request GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
IP
45.81.39.246:443
ASN
#0

Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (566)
Size
24 kB (23560 bytes)
Hash
593bc761a019a7a91d9c5f4444a2839c
925f389fdca1bac5a03a5479d79e610ffc6a55bd
547f4dacabafdce3e628c651918a6663eb16ec31560796994d12a5ad055b9545

Detections

Analyzer	Verdict	Alert
openphish	Poste Italiane S.p.A
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/ HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:27 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap.css

45.81.39.246

200 OK

122 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (64985)
Size
122 kB (122291 bytes)
Hash
6181a38a601eb664522623bae7db95c9
9671b5fc92e27a915769b59bc60bf26fde343d7e
8b922a249c9f81562d99eee24407bf38c7feac74a10dfe712292c0b032144dfa

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 122291
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/owl.css

45.81.39.246

200 OK

4.6 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/owl.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
4.6 kB (4614 bytes)
Hash
b51416af9e8adbe3d16f5f2526aba221
097c8d67412f44534449ed4cadc6dd22b025801d
dd7b97c7ad9d7b3eb79bdc728bcbc6a7ab8e3d5db0421fb0dd16d34f3dc88277

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/owl.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 4614
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick.css

45.81.39.246

200 OK

1.7 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
1.7 kB (1729 bytes)
Hash
13b1b6672b8cfb0d9ae7f899f1c42875
6e9d13342a11a8cfd9e42ee243eaeae01cda4e25
d917660c3d6f7aad32ebc4b0012c6d0bb84a13e201a012e334bcca4b9f4686c9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/slick.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 1729
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/retina.css

45.81.39.246

200 OK

54 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/retina.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
54 B (54 bytes)
Hash
ab8dd1efc4d35cfc2bd56e4ace43a9c4
c8a6572e9648197bc2fb41d0ad4d34c917d4709c
b9046229b1ec61510b1e34c28da4adf2174e08fd62b30daba49f8616cdb9e9a8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/retina.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 54
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick-theme.css

45.81.39.246

200 OK

3.4 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick-theme.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
3.4 kB (3446 bytes)
Hash
14c9d122ba3eb0a4a6beba74a462ff1b
99bcd014cc3c5649657b3669244039ee3dbf1311
ddb311355c47c29688cab28a8c3df71f46d86d9b6baf2141e0e9db011076352d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/slick-theme.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 3446
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css

45.81.39.246

200 OK

404 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
404 B (404 bytes)
Hash
3d62bda6ae1fea3f206610635ecad6fa
86207b1f9c79d7a2190846d7ee884c2046684bab
0b288d467bb30911b3df7e57b6aca634a72a4714d2e47c0402caacb351fb90e4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/base.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:29:50 GMT
Accept-Ranges: bytes
Content-Length: 404
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-datepicker.css

45.81.39.246

200 OK

6.6 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-datepicker.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
6.6 kB (6577 bytes)
Hash
1b92d23524baef291a2762e0aa1c77f9
896a973433d0f4869e68efbe728484a10a107399
6ca3835d5b60efee0ff567dd579a509f27615f44b0bdb3c0901941702a0f801e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap-datepicker.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 6577
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion_002.css

45.81.39.246

200 OK

3.4 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion_002.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
3.4 kB (3355 bytes)
Hash
ebeaf8ee0e04d67d172ee639713fad1b
81dc58f28df7ca458306d493ae9c78c8450d48f8
e5ce02a6caedb279a23c84d2f04055f556fc03a44f3fa6f92f038288fbc70484

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/ion_002.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 3355
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion.css

45.81.39.246

200 OK

2.1 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
2.1 kB (2148 bytes)
Hash
429c6186bcef8bf4420c719cb9dc2d97
a71cd29ce0db8410328cfc7696185720e8d8943e
037af37cf0e800755f5f0bc42d94a4c0662978d087fecbb29f9448b6ce472b70

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/ion.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 2148
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/megamenu-pi.css

45.81.39.246

200 OK

27 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/megamenu-pi.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
27 kB (27071 bytes)
Hash
9355b6944324d4d3995b2937fc32a4f0
9789f41d32a25c1f13d423dbfb87f7e981fca63e
bedb0670e6d9ce62dc61d7d4c045738c16a8bff5f731e6c031225030ee6c3813

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/megamenu-pi.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 27071
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom-form-element.css

45.81.39.246

200 OK

18 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom-form-element.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (376)
Size
18 kB (18049 bytes)
Hash
8084b66cd9e664ff1460a438f01520c4
84fa84286bc22221d9edebb4b31d08f027eda5e2
3b6ab4f04f1b4a7fc95fe18decfdba00a35194f9a9a0fdbf6a601fdc0b0faf0d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/custom-form-element.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 18049
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/poste-it.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/poste-it.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/poste-it.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/megamenu-pi.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/megamenu-pi.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/megamenu-pi.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/scroll-pi.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/scroll-pi.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/scroll-pi.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/nav-tabs-vertical.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/nav-tabs-vertical.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/nav-tabs-vertical.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/owl.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/owl.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/owl.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/slick.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_003.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_003.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery_003.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-datepicker.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-datepicker.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap-datepicker.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/typeahead.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/typeahead.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/typeahead.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/ion.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom-form-element.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom-form-element.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/custom-form-element.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-tagsinput.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-tagsinput.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap-tagsinput.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_005.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_005.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery_005.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/utilita-app.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/utilita-app.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/utilita-app.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/configuratore.css

45.81.39.246

200 OK

2.8 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/configuratore.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.8 kB (2763 bytes)
Hash
12ec7121a0cefeaf8ef455108a720af3
81051706c325bcf01d42bca53d2b9f3a9066a49a
78a7768bc9eb1a9f426a0d6b2e065d86172e0f33e570253f1f2e93334206cea8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/configuratore.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 2763
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/js.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/js.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/js.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bowser.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bowser.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bowser.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/responsive-bootstrap-toolkit.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/responsive-bootstrap-toolkit.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/responsive-bootstrap-toolkit.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/image-loader.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom.css

45.81.39.246

200 OK

806 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
806 B (806 bytes)
Hash
87f54187380be584d2efc2eb41889fa5
14936ff20255cab28815d590385f3e3d61a6132f
ac4ecdf6fd109e1dd9738f37de3dc037e4927dfd665bf62bc7d0d4dcfae82fb1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/custom.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 806
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginoncheckme.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginoncheckme.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/secureloginoncheckme.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginrewritedomainurl.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginrewritedomainurl.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/secureloginrewritedomainurl.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginondocready.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginondocready.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/secureloginondocready.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/x-jod-poste-id.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/x-jod-poste-id.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/x-jod-poste-id.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/get-client-info

45.81.39.246

200 OK

31 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/get-client-info
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
31 B (31 bytes)
Hash
ab306976ae9082d558484093cac112eb
c637f476058227b6958e390b6557eb595f29fe3e
361fb61c38730a1ce44f167945a46c323d6a148d3d68161485ce5861ab6722b8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/get-client-info HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 31
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/json2.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/json2.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/json2.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/pbase-css.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css-poste.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css-poste.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/pbase-css-poste.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/cookie-adv-pi.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/cookie-adv-pi.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/cookie-adv-pi.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/start-script.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/start-script.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/start-script.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticlogin.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticlogin.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/staticlogin.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ie10-viewport-bug-workaround.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ie10-viewport-bug-workaround.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/ie10-viewport-bug-workaround.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader-post.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader-post.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/image-loader-post.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bloodhoud.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bloodhoud.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bloodhoud.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base-element-search.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base-element-search.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/base-element-search.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/check-login.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/check-login.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/check-login.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticrecommendation.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticrecommendation.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/staticrecommendation.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_002.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_002.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery_002.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/webtrends.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/webtrends.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/webtrends.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/typography.css

45.81.39.246

200 OK

4.9 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/typography.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
assembler source, ASCII text
Size
4.9 kB (4859 bytes)
Hash
91fa61eb994cda0c41c7d5b82c850f2d
a114361dc36535956dc35982ee364acc00143bd5
17f1fb9364505bcbf4a68b8d97f702df57d1d5d31a17ab6255525407910d6f3c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/typography.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:21:46 GMT
Accept-Ranges: bytes
Content-Length: 4859
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css

45.81.39.246

200 OK

5.1 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
5.1 kB (5093 bytes)
Hash
ff790e111320153dfc71ee8d3d4ade06
914c46d74fe10c877a2d479dbeede44e0c7ff680
6b62f06b5b3d8d2abcea3a476a3fcb498f6380769a5189db7071c3afc3641b71

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/fonts.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:22:04 GMT
Accept-Ranges: bytes
Content-Length: 5093
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/alignment.css

45.81.39.246

200 OK

2.7 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/alignment.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
assembler source, ASCII text
Size
2.7 kB (2721 bytes)
Hash
6f9e18e697638bf4bd2a94a50c0d5f15
b256dab4f0b948da98ac3866d6b830cb226f93af
315e1de19edaf825cddf43a75b7ae9cd62fe7288b2f2674f8fe7b1e06d018550

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/alignment.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:22:30 GMT
Accept-Ranges: bytes
Content-Length: 2721
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/extra.css

45.81.39.246

200 OK

5.0 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/extra.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
5.0 kB (4981 bytes)
Hash
0973bed5361b9426d3b7fc80669d3f53
778b62a8da42639013ecd74a01d814ad008e3a53
195172e3c256562c4fbafa35d6c4b0c3f0807c94961862a0a80b6fe7e37d50c9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/extra.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:22:46 GMT
Accept-Ranges: bytes
Content-Length: 4981
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/nav-tabs-vertical.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/nav-tabs-vertical.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/nav-tabs-vertical.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/spaces.css

45.81.39.246

200 OK

30 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/spaces.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
30 kB (29944 bytes)
Hash
261f6ccbc1776eb3371b236f35d20d3f
3873f7063dae37cd47768e0fe888174abf1b0ebb
908ad1f94a8a19ad0b279811e56c864af9135da12828c813865e4707c7e9256f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/spaces.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:22:18 GMT
Accept-Ranges: bytes
Content-Length: 29944
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base-element.css

45.81.39.246

200 OK

192 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base-element.css
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
192 kB (191761 bytes)
Hash
6fd5c1cb8278e0b0c912ec0d9c8489b7
0813c0216ff61410f9480f5835b851ca2871412e
a43e0fad9cf10a5b8861192f727fee6d8ebacc62d3d92cb5b60b5c9fe01536b9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/base-element.css HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:23:00 GMT
Accept-Ranges: bytes
Content-Length: 191761
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/owl.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/owl.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/owl.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/logo-posteid.png

45.81.39.246

200 OK

8.1 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/logo-posteid.png
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
PNG image data, 170 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
8.1 kB (8121 bytes)
Hash
513a7ca24dfd5959091166869efc71cc
85acaab94b209c5882b6a9e44bb314cb5f88c072
64a42f338dfeb8a8d96426afc134df194afce1dcf0fb9771e02905b8e366103a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/logo-posteid.png HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 8121
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/logo-poste-italiane-small.png

45.81.39.246

200 OK

1.7 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/logo-poste-italiane-small.png
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
PNG image data, 109 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1654 bytes)
Hash
a260babf05d96f697264bbb8fd16807d
b395fe3b73e40c8084d2baeb2517e89f019218bf
41171011db6a6fed5cf69b1acbe8638018b2ee182fb037cd77288eeff5443c48

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/logo-poste-italiane-small.png HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 1654
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/vieni-in-poste-cerca-up.png

45.81.39.246

200 OK

669 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/vieni-in-poste-cerca-up.png
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
PNG image data, 25 x 24, 8-bit/color RGBA, interlaced\012- data
Size
669 B (669 bytes)
Hash
c2183ee46d94411a5660f4b8451e2aa1
c85784401fb87e8e7a6a5e07240b23ce5b6ddeeb
f97dc8796d6188136c4f09f80b425be64a2eda69fb9401bf3adf5f383dc34f10

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/vieni-in-poste-cerca-up.png HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 669
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/chiamaci.png

45.81.39.246

200 OK

677 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/chiamaci.png
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
PNG image data, 25 x 24, 8-bit/color RGBA, interlaced\012- data
Size
677 B (677 bytes)
Hash
793af7b683aa2f83ef13f04b46290a7e
e43f553eb001023d3c05ee896943a9a58e425ccb
4107c25521da5ee37c5d24e380378112c466e5e3d26925e2e296c7783de26f53

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/chiamaci.png HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 677
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/scrivici.png

45.81.39.246

200 OK

630 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/scrivici.png
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
PNG image data, 25 x 24, 8-bit/color RGBA, interlaced\012- data
Size
630 B (630 bytes)
Hash
e08dd2c986ffe801621f2d483838dca8
555a41c4815de5a71bda66ab8698743c60c3cd1d
9ff77f4a96667c4c35e7572f597b733d13f34396c8d5d4c9fac1d61da11c35f0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/scrivici.png HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 630
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/spinner_bianco.gif

45.81.39.246

200 OK

14 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/spinner_bianco.gif
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
GIF image data, version 89a, 150 x 150\012- data
Size
14 kB (13836 bytes)
Hash
c9f73f73610b1dbeb9986b1c776826d4
7fea41894b77024098b46cbe2ba93e8c5ab67872
7a2a801cacf1796cde2505da006cb385ae65cdf0c75f3ac55e87a3653d59482f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/spinner_bianco.gif HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 13836
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/gif

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/slick.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/slick.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/logo-poste-italiane-medium.png

45.81.39.246

200 OK

5.2 kB

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/logo-poste-italiane-medium.png
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
PNG image data, 128 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
5.2 kB (5213 bytes)
Hash
9cd2e2f9fc86184757f36a95393cd362
24917b0e502b63c8c79d99f02d4de6a47653cbd1
d26cdfa4e4c99bcd4d99047beff09a62f8e0c955654b7a4968acf1ebdc293cb8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/logo-poste-italiane-medium.png HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2018 23:19:28 GMT
Accept-Ranges: bytes
Content-Length: 5213
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_003.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_003.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery_003.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-datepicker.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-datepicker.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap-datepicker.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/typeahead.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/typeahead.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/typeahead.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:28 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom-form-element.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/custom-form-element.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/custom-form-element.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ion.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/ion.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-tagsinput.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap-tagsinput.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap-tagsinput.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_005.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_005.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery_005.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/utilita-app.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/utilita-app.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/utilita-app.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/js.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/js.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/js.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bowser.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bowser.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bowser.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/responsive-bootstrap-toolkit.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/responsive-bootstrap-toolkit.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/responsive-bootstrap-toolkit.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/image-loader.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginoncheckme.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginoncheckme.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/secureloginoncheckme.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=76
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginrewritedomainurl.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginrewritedomainurl.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/secureloginrewritedomainurl.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginondocready.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/secureloginondocready.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/secureloginondocready.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/x-jod-poste-id.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/x-jod-poste-id.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/x-jod-poste-id.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/json2.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/json2.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/json2.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/pbase-css.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css-poste.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/pbase-css-poste.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/pbase-css-poste.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/cookie-adv-pi.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/cookie-adv-pi.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/cookie-adv-pi.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/start-script.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/start-script.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/start-script.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Regular/Texta-Regular.woff

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Regular/Texta-Regular.woff
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Regular/Texta-Regular.woff HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Book/Texta-Book.woff

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Book/Texta-Book.woff
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Book/Texta-Book.woff HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Light/Texta-Light.woff

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Light/Texta-Light.woff
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Light/Texta-Light.woff HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Medium/Texta-Medium.woff

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Medium/Texta-Medium.woff
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Medium/Texta-Medium.woff HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticlogin.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticlogin.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/staticlogin.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Book/Texta-Book.ttf

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Book/Texta-Book.ttf
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Book/Texta-Book.ttf HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Regular/Texta-Regular.ttf

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Regular/Texta-Regular.ttf
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Regular/Texta-Regular.ttf HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Medium/Texta-Medium.ttf

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Medium/Texta-Medium.ttf
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Medium/Texta-Medium.ttf HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Light/Texta-Light.ttf

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/risorse_dt/condivise/fonts/texta/old/Texta-Light/Texta-Light.ttf
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /risorse_dt/condivise/fonts/texta/old/Texta-Light/Texta-Light.ttf HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/fonts.css
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bootstrap.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bootstrap.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ie10-viewport-bug-workaround.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/ie10-viewport-bug-workaround.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/ie10-viewport-bug-workaround.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader-post.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/image-loader-post.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/image-loader-post.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bloodhoud.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/bloodhoud.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/bloodhoud.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base-element-search.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/base-element-search.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/base-element-search.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/check-login.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/check-login.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/check-login.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticrecommendation.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/staticrecommendation.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/staticrecommendation.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:29 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_002.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/jquery_002.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/jquery_002.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:30 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/webtrends.js

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/login_files/webtrends.js
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /PosteItaliane/login_files/webtrends.js HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:30 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=58
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

loginsicuro.45-81-39-246.cprapid.com/favicon.ico

45.81.39.246

404 Not Found

315 B

URL GET HTTP/1.1
loginsicuro.45-81-39-246.cprapid.com/favicon.ico
IP
45.81.39.246:443
ASN
#0

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuercPanel, Inc.
Subjectloginsicuro.45-81-39-246.cprapid.com
FingerprintFC:6F:CB:2E:DD:F9:9F:8A:B4:E4:65:00:50:AF:73:33:C6:EC:81:C3
ValidityTue, 23 May 2023 00:00:00 GMT - Mon, 21 Aug 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Poste Italiane
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: loginsicuro.45-81-39-246.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Cookie: PHPSESSID=db432e0f171d388a19ce815a037bfb27
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Fri, 02 Jun 2023 00:08:30 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=57
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d3715d2b7139c00cc94e2572a32e4d6f
bbb0c12905fd3cf85752132c7eafcbd52a2b3833
d3e299d9fa48d950b47e1b6b6688352fba397902e4b8ce6c3597d25215d6fbe8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 02 Jun 2023 00:08:30 GMT
Last-Modified: Thu, 01 Jun 2023 22:36:33 GMT
Server: ECAcc (nya/1C5C)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: y6P2T4ZB_3YFYnYZOymGpAiv1p9d299rlMs2mYd4xw-PIEqkdSGpUA==
Age: 5517

ocsp.r2m01.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
fc753d62753ed00a2dd94c853972b950
2296bc3064b0775f733e509292553874dac49db8
c2f765d8f7ef7508e48ddccaaf4117477adf58fa887b88127e24c00090e95d77

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 02 Jun 2023 00:08:31 GMT
Last-Modified: Thu, 01 Jun 2023 22:51:07 GMT
Server: ECAcc (bsa/EAE4)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HOb8U2LnVU_npCaSE71AGKoJfOeRCazgm2Zwr-ds-TRdIITGE4JY6A==
Age: 4644

websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket

3.65.75.204

0 B

URL
websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket
IP
3.65.75.204:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /socket/?EIO=3&transport=websocket HTTP/1.1
Host: websocket-visitors.smartsupp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://loginsicuro.45-81-39-246.cprapid.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WIyRfWT/RuYsGocftMO5mA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Fri, 02 Jun 2023 00:08:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GaenLAHPBmwRAUXL9rJVkyXR/XE=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets

translations.smartsuppcdn.com/api/v1/widget/translations/lang/it/defaults

185.76.9.25

200 OK

5.8 kB

URL GET HTTP/2
translations.smartsuppcdn.com/api/v1/widget/translations/lang/it/defaults
IP
185.76.9.25:443
ASN
#60068 Datacamp Limited

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerDigiCert, Inc.
Subject*.smartsuppcdn.com
Fingerprint4E:BC:9D:3D:64:C6:3B:79:8A:67:22:0B:0E:C4:F9:E7:C8:CB:85:16
ValidityWed, 19 Oct 2022 00:00:00 GMT - Sun, 19 Nov 2023 23:59:59 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (6219), with no line terminators
Size
5.8 kB (5825 bytes)
Hash
06b91aa554cdafcf3f24407225be3731
f017b38f72b3daa497b1681d0ff606165b8aebd8
259bcb77f6aaa21cae057545f65bc1cd159daa493f1857096f509b3b41dca29a

HTTP Headers

GET /api/v1/widget/translations/lang/it/defaults HTTP/1.1
Host: translations.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://loginsicuro.45-81-39-246.cprapid.com/
Origin: https://loginsicuro.45-81-39-246.cprapid.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 00:08:30 GMT
content-type: application/json; charset=utf-8
x-version: c4df37eeab7f25cf7af72bdd57d6635d6432017b
vary: Accept-Encoding, Origin
access-control-allow-origin: *
cache-control: max-age=600
x-response-time: 0ms
server: CDN77-Turbo
x-77-nzt: AblMCRQRcpj/awEAAA
x-77-nzt-ray: af5856306a8d9b8dfe327964f6b07335
x-accel-expires: @1685664747
x-accel-date: 1685664147
x-cache: HIT
x-age: 363
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

widget-v2.smartsuppcdn.com/static/js/runtime-main.1934e153.js

185.76.9.25

200 OK

2.5 kB

URL GET HTTP/2
widget-v2.smartsuppcdn.com/static/js/runtime-main.1934e153.js
IP
185.76.9.25:443
ASN
#60068 Datacamp Limited

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerDigiCert, Inc.
Subject*.smartsuppcdn.com
Fingerprint4E:BC:9D:3D:64:C6:3B:79:8A:67:22:0B:0E:C4:F9:E7:C8:CB:85:16
ValidityWed, 19 Oct 2022 00:00:00 GMT - Sun, 19 Nov 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2563), with no line terminators
Size
2.5 kB (2493 bytes)
Hash
efe5429bdb46951562283a6b11855bdb
05947a1e906c241ba9442cb31d54852fdb6287a6
cdb70b1c5ba6a9053835d608f2a37bab1c38838424b68fb0f3b60e2e92cbf2e5

HTTP Headers

GET /static/js/runtime-main.1934e153.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 00:08:30 GMT
content-type: application/javascript
vary: Accept-Encoding
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 18 Apr 2023 20:26:14 GMT
etag: W/"643efce6-9bd"
expires: Thu, 18 Apr 2024 05:08:02 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: AblMCRT3i6L/zLs5AA
x-77-nzt-ray: af5856303690dc8dfe327964ecb45c28
x-accel-expires: @1713416882
x-accel-date: 1681880882
x-cache: HIT
x-age: 3783628
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

www.smartsuppchat.com/loader.js?

185.76.9.18

200 OK

20 kB

URL GET HTTP/2
www.smartsuppchat.com/loader.js?
IP
185.76.9.18:443
ASN
#60068 Datacamp Limited

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerDigiCert, Inc.
Subject*.smartsuppchat.com
Fingerprint3D:07:0A:15:0E:99:7E:22:E6:C5:1E:2F:F2:09:E9:BA:AE:AC:3B:37
ValidityWed, 30 Nov 2022 00:00:00 GMT - Fri, 29 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (19443)
Size
20 kB (19516 bytes)
Hash
1e2da31016b19fd5d6c9518bdfa234c7
159dde529fce19a9e31ac4a9293f198c39c69f49
f0969edad783e34a759e08b2353ed6198ea01969e2557393bf55c47f1a2c13a7

HTTP Headers

GET /loader.js? HTTP/1.1
Host: www.smartsuppchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 00:08:30 GMT
content-type: application/javascript
vary: Accept-Encoding
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 23 May 2023 04:17:26 GMT
etag: W/"646c3e56-4c3c"
expires: Tue, 23 May 2023 04:24:38 GMT
cache-control: max-age=300, public, s-maxage=60
server: CDN77-Turbo
x-77-nzt: AblMCQ1et87eQQAAAA
x-77-nzt-ray: c0a4cc28e29a4ea8fe3279648ecfc408
x-accel-expires: @1685664570
x-accel-date: 1685664445
x-cache: REVALIDATED
x-age: 65
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

widget-v2.smartsuppcdn.com/static/js/6.d679ef16.chunk.js

185.76.9.25

200 OK

537 kB

URL GET HTTP/2
widget-v2.smartsuppcdn.com/static/js/6.d679ef16.chunk.js
IP
185.76.9.25:443
ASN
#60068 Datacamp Limited

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerDigiCert, Inc.
Subject*.smartsuppcdn.com
Fingerprint4E:BC:9D:3D:64:C6:3B:79:8A:67:22:0B:0E:C4:F9:E7:C8:CB:85:16
ValidityWed, 19 Oct 2022 00:00:00 GMT - Sun, 19 Nov 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65462)
Size
537 kB (537267 bytes)
Hash
64c2ec0869bcc8c293ee74cf7ea23626
749de8a0a146fe9fc138bcf400ef987f5a203473
35576539f0f6b98f9f7aef04b2dca0d7b03c974e6109415534729f5a90a236fc

HTTP Headers

GET /static/js/6.d679ef16.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 00:08:30 GMT
content-type: application/javascript
vary: Accept-Encoding
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 18 Apr 2023 20:26:14 GMT
etag: W/"643efce6-832b3"
expires: Thu, 18 Apr 2024 05:08:01 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: AblMCRSx4Dr/zbs5AA
x-77-nzt-ray: af5856303690dc8dfe327964bdbec328
x-accel-expires: @1713416881
x-accel-date: 1681880881
x-cache: HIT
x-age: 3783629
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket

3.65.75.204

101 Switching Protocols

0 B

URL GET HTTP/1.1
websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket
IP
3.65.75.204:443
ASN
#16509 AMAZON-02

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerAmazon
Subject*.smartsupp.com
FingerprintB1:90:DE:A6:3E:77:4D:7D:7B:81:AA:CC:A5:D9:1C:D9:A2:4E:8E:03
ValidityTue, 14 Feb 2023 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /socket/?EIO=3&transport=websocket HTTP/1.1
Host: websocket-visitors.smartsupp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://loginsicuro.45-81-39-246.cprapid.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WIyRfWT/RuYsGocftMO5mA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Fri, 02 Jun 2023 00:08:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GaenLAHPBmwRAUXL9rJVkyXR/XE=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets

widget-v2.smartsuppcdn.com/static/js/main.f4b290f4.chunk.js

185.76.9.25

200 OK

118 kB

URL GET HTTP/2
widget-v2.smartsuppcdn.com/static/js/main.f4b290f4.chunk.js
IP
185.76.9.25:443
ASN
#60068 Datacamp Limited

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerDigiCert, Inc.
Subject*.smartsuppcdn.com
Fingerprint4E:BC:9D:3D:64:C6:3B:79:8A:67:22:0B:0E:C4:F9:E7:C8:CB:85:16
ValidityWed, 19 Oct 2022 00:00:00 GMT - Sun, 19 Nov 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
118 kB (117887 bytes)
Hash
1f8aa486dd275a2fb1de7bfdd1e8f725
ea4cf0270057bf6f22d3513cec13ff78c15bc10c
75ea317ee21302c78430cbd83c6d26cc46c6d59246eeed8ddf8dc3074afa8183

HTTP Headers

GET /static/js/main.f4b290f4.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 00:08:30 GMT
content-type: application/javascript
vary: Accept-Encoding
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 18 Apr 2023 20:26:14 GMT
etag: W/"643efce6-1cc7f"
expires: Thu, 18 Apr 2024 05:08:03 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: AblMCRT36Pf/y7s5AA
x-77-nzt-ray: af5856303690dc8dfe327964fd8e9e28
x-accel-expires: @1713416883
x-accel-date: 1681880883
x-cache: HIT
x-age: 3783627
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

widget-v2.smartsuppcdn.com/asset-manifest.json

185.76.9.25

200 OK

1.7 kB

URL GET HTTP/2
widget-v2.smartsuppcdn.com/asset-manifest.json
IP
185.76.9.25:443
ASN
#60068 Datacamp Limited

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerDigiCert, Inc.
Subject*.smartsuppcdn.com
Fingerprint4E:BC:9D:3D:64:C6:3B:79:8A:67:22:0B:0E:C4:F9:E7:C8:CB:85:16
ValidityWed, 19 Oct 2022 00:00:00 GMT - Sun, 19 Nov 2023 23:59:59 GMT

File type
ASCII text, with very long lines (1875), with no line terminators
Size
1.7 kB (1742 bytes)
Hash
24fcaa10dd241ff7f25fcda33018ede5
7eb3ddd7da464b0706ac1183637464aeda80f709
df47f2c554085db3837d332b6f22b554005d3e9d839c13128571a205e95a035f

HTTP Headers

GET /asset-manifest.json HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://loginsicuro.45-81-39-246.cprapid.com
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 00:08:30 GMT
content-type: application/json
vary: Accept-Encoding
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 18 Apr 2023 20:26:14 GMT
etag: W/"643efce6-6ce"
expires: Wed, 19 Apr 2023 05:13:01 GMT
cache-control: max-age=300, public, s-maxage=60
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: AblMCRRC9bv/NwAAAA
x-77-nzt-ray: af5856306a8d9b8dfe327964f90df823
x-accel-expires: @1685664515
x-accel-date: 1685664455
x-cache: HIT
x-age: 55
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

bootstrap.smartsuppchat.com/widget/694e49092cc6396a968a9871ab1bcd502627670b.json

18.184.113.62

200 OK

1.2 kB

URL GET HTTP/2
bootstrap.smartsuppchat.com/widget/694e49092cc6396a968a9871ab1bcd502627670b.json
IP
18.184.113.62:443
ASN
#16509 AMAZON-02

Requested by
https://loginsicuro.45-81-39-246.cprapid.com/PosteItaliane/
Certificate
IssuerAmazon
Subject*.smartsuppchat.com
FingerprintFB:A0:29:E0:96:ED:8F:79:37:A1:55:7A:15:40:BA:EC:19:E8:AE:AA
ValidityFri, 03 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1327), with no line terminators
Size
1.2 kB (1187 bytes)
Hash
7ceb61366cb642438309e522da271622
55deffdb6b55772156e1abe315b0beb37e406e56
ae80fcf8b7bfddf5e1a7c16809b05257cc1c542dca072fbeb6fda643fde81e69

HTTP Headers

GET /widget/694e49092cc6396a968a9871ab1bcd502627670b.json HTTP/1.1
Host: bootstrap.smartsuppchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://loginsicuro.45-81-39-246.cprapid.com
DNT: 1
Connection: keep-alive
Referer: https://loginsicuro.45-81-39-246.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 00:08:30 GMT
content-type: application/json; charset=utf-8
x-version: 62713eedc1f171511be259caec0493e3a10586ea
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private, max-age=0, must-revalidate
x-hit: redis
etag: "4a3-JD4cJbhRMAFJZZt+IP2JRtZWXM0"
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML