Windows Analysis Report
https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42

Overview

General Information

Sample URL:	https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42
Analysis ID:	1520600
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Detected non-DNS traffic on DNS port

HTML body contains low number of good links

Classification

Signatures

HTML body contains low number of good links

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: Number of links: 0
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: Number of links: 0

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: <input type="password" .../> found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: <input type="password" .../> found

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:49735 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/theme.css.jsf?ln=primefaces-aristo HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/components.css.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery-plugins.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/core.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/components.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/hotkey/hotkey.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/core.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /formpostdir/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jsf.js.jsf?ln=javax.faces HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/hotkey/hotkey.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery-plugins.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /formpostdir/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/components.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1190947317 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /formpostdir/fonts/sourcesanspro-regular.ttf.woff HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://securemail.zionsbancorp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jsf.js.jsf?ln=javax.faces HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1190947317 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=ezRt5BS0QrxO+LoAUzOLDXONnzLbYwHOrB4ZXLi5h6JrueemerHUR+XM3nL59tkK7BIJw5eaRokwgyUHueBKy/3ajJ2T/sUzetWtV9nc8E8yMOSDGVmE770RJhxew869WQ6hQ7w+d2H5zHTlypZrtO1y1OdKJmLLLc+kAHplUi7lwSHYYGmX3I+xEdN37cpQ+amO1iyPJRx9uHSX4q9InnH7Q4ElrXxNok82S6Z7l1yXeytc1RRcVOVSeTJvMHK1OUjInZ7hFukYWVmWm1YoAEG9FhyLPlCCLUbkBEKNfkDMJtzAZ+gkkOJf7c39dlPRuZREndxwwqtRBBNzSBnCQyr+JK+2G1qQJaJzgrQu3TR8DMiLhBsKfnlB7uLSgknw9/3w/jkL2hY8LaVkRQ54G0RSCGxycq1i6MulMafRHtlkdBV5JfiOsDHrk88tmcrJ7qv+oNVIiLi3wT1sXvWu+SLnv6xwtPAWNtjLbxfiVlloGbkHsHERirlhl3CoKQBeyFHdApWqj0ZZORaU81QnCv70mgen3xYKkVxHEOtFD+hPyEdgKP3katiOJenFUFLW3TARBrrM24ZFTWUmA2deoJNoI/lKfOlJ23whnLWqCKR9yJAMT06UHfEkFK7ODshDP4rURQUx0gRNdYCuOOK2NYGmLqf6x5flvoYRviIV9auxjAK1YZgZ6IjM0jwHug0hZeq/y3z+xL7DhMBJ1/uqtWtXjh7AcfqSFjgz01Yw7ahgXKEQ9PQOkqmlUvkti7TWNYIfzHtCLv7yovQH/41xi2RUutVj9ZsaKtgr8u4TbjSNia/KN0Q91GviJFKUWdztSTZTlOnYdZXb1BVRV9/8AHvmqdrZe52cUPWF3IMR4nB1IpUQQsNuO74deJSiU0MDfuhpxM+5ohCYPGdbOaiTUJZcrV+cnkbZR4SYhhSpvH5fRC5uG0Hv2aZYO0li7qdeam3+7sESDYbCHR3bU0kpZaIJuLWO1iDZvpjBhCTC0RHQ325cIhqQ2XtgN0q6NJ1VLEE+3Ej6qs6ZOh8TqovTIKwJok7sAK83cpoV6xP4Q044DOnZZkq3FBNF+yEO3rEAgTiONwS5/4QC00kWA29VmcA+tE5hRz5ZwFPrb/W5SuLdjQNXmfMjGWYJKhKsf+2CmvJRrLNMduQzlzPvcM2Txp/c3VHym41AnxVl8FusPZh4pH5ckJIOei6UWe0KWDZuT/EzocLfy/IuMlJbchQFInaUh4zpkHIwyZbYYRGyLnydl64QPWNnLgFulWXplFAez/5Ozs6S+hqvo4322dhANZzhCfxPzYtKnwOMojjVIBG0pfisTNA/LbsRPojyiiaMqpLtEnSlQRiADt2A7J0N+Ms8jFwv7H95eEo4inWvsDGYyjXUKr3lZS5PSerq8AqDD7yLJJHrD7iTkr7IkCa2S3ItoGgEodgyDPl1QoV5ko6iYbtsDyy/aCkmCo8Px09uqCHMfjuZbaszxXSCq8PaQdD8zUSSwRLUKUzWxzgi7geEgHiNGAG35Vx7/ngIefRZweRT6ZpV88pzm/83+VM3SDOc70IYz8lfMDScGh3NvrN0WYUamOLJQII27CBEiAq4jbpH9tBPxgdlwyldK82iFrVTlcYFSuZ72Nu9hVnw2oJFDS5lMEyoc3V+oUJSpVPEPcBy6L6gDELgo/ZVH+ntY8xBO6R+9GmRq8jZOViwdmKFwOj2bnx7qk5ks47Bmf0j+IIUVFDl71OR/bzJfkjdRBJtabICMnYmuiYAbbUNrU7+Hih2sqJP8zLuA4BU+BLcfBkp9hr4J/7c/bfqnebtbgNvZYuFKZE5NKtDi8N0Uyo3LkB3hufjeZ+70XjK41FdLgmyCf6l0Olf1AUw8fTaE/G0IoEuGIwl5R1snkz/3EsDogxXuniKX01lEdbkobTRBvei7kKeHoibwXM3WehytwB0Z1KMPpJtWnpoXyGzTNFVT3HXuCfcyBqHbyz+gf5KtDX3vzjkMy21wJqF1jT2R+8KZ9C0NW2UnBoawS7STgbZ+fzUXm1uMr4DvZRGgkWy/hhEF1d7ZM9LiKWQOiP3mRwzrtXTehoy8ayIU0v/KfE6JFDFI75qgXZY7sjrA4tC7N3MjHzGq8/7W0bru7Mxd5w/VTQFEY8U3eee9npSgNxMRuJuMkcORjIFTIPeTDZR/BUj4gCr3b7F3rYVKohE0PjX/l9b6fPVPHSwJytiaYt96b9MQfQRlxuwUDaJnRa00YvSt5NpgO1eu8zCPiqvGB4OVp++nrqco688hbwhxdeXY+yCWNHu2IhFmnvSL6EQZ37huC3QwQXUWxB1QmpOoJvBJYYeYI2oQLpbfTwdhHElXXd0PRh5iZuSqyDHy7jPMoNL0egPs5s5FqNQzvfo77x99XRNC0Bx0o
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/securereader/login.jsfAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/messages/messages.png.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/securereader/javax.faces.resource/components.css.jsf?ln=primefaces&v=7.0.17Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/fonts/sourcesanspro-regular.ttf.woff HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://securemail.zionsbancorp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://securemail.zionsbancorp.com/securereader/login.jsfAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/messages/messages.png.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/fonts/sourcesanspro-regular.ttf.woff HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://securemail.zionsbancorp.comIf-None-Match: W/"128612-1712877320000"If-Modified-Since: Thu, 11 Apr 2024 23:15:20 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://securemail.zionsbancorp.com/securereader/login.jsfAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==

Source: global traffic	DNS traffic detected: DNS query: securemail.zionsbancorp.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com

Source: unknown

HTTP traffic detected: POST /securereader/login.jsf HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveContent-Length: 155Cache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1Origin: https://securemail.zionsbancorp.comContent-Type: application/x-www-form-urlencodedUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==

Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://adomas.org/javascript-mouse-wheel/
Source: chromecache_73.2.dr	String found in binary or memory: http://api.jqueryui.com/category/theming/
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://api.jqueryui.com/position/
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://brandonaaron.net)
Source: chromecache_73.2.dr, chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_69.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://trentrichardson.com/examples/timepicker
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://www.jacklmoore.com/autosize
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://www.mathias-bank.de)
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/carhartl/jquery-cookie
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/furf/jquery-ui-touch-punch
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/gabceb
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/gabceb/jquery-browser-plugin
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/jquery/jquery-color
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/markrian/jquery-ui-touch-punch-improved

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@16/40@6/4

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2004,i,13221287546496257904,3716479039099036390,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2004,i,13221287546496257904,3716479039099036390,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
239.255.255.250	unknown	Reserved	unknown	unknown	false
45.60.233.23	uwdn2vu.impervadns.net	United States	19551	INCAPSULAUS	false
142.250.186.132	www.google.com	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
uwdn2vu.impervadns.net	45.60.233.23	true
www.google.com	142.250.186.132	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
securemail.zionsbancorp.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/components.js.jsf?ln=primefaces&v=7.0.17	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/messages/messages.png.jsf?ln=primefaces&v=7.0.17	false	unknown
https://securemail.zionsbancorp.com/securereader/fonts/sourcesanspro-regular.ttf.woff	false	unknown
https://securemail.zionsbancorp.com/formpostdir/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/theme.css.jsf?ln=primefaces-aristo	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/jquery/jquery-plugins.js.jsf?ln=primefaces&v=7.0.17	false	unknown
https://securemail.zionsbancorp.com/formpostdir/fonts/sourcesanspro-regular.ttf.woff	false	unknown
https://securemail.zionsbancorp.com/_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/components.css.jsf?ln=primefaces&v=7.0.17	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/hotkey/hotkey.js.jsf?ln=primefaces&v=7.0.17	false	unknown
https://securemail.zionsbancorp.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1190947317	false	unknown
https://securemail.zionsbancorp.com/securereader/login.jsf	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/jquery/jquery.js.jsf?ln=primefaces&v=7.0.17	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/jsf.js.jsf?ln=javax.faces	false	unknown
https://securemail.zionsbancorp.com/securereader/javax.faces.resource/core.js.jsf?ln=primefaces&v=7.0.17	false	unknown
https://securemail.zionsbancorp.com/favicon.ico	false	unknown
https://securemail.zionsbancorp.com/securereader/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3	false	unknown
https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	false	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 69	ASCII text, with very long lines (19425)	540804DAC5A11DF20E7119A35D01E2F8	6D1AB351BC7568ACB90E29C6ABDF4570A907A431	52D03B5EA1D204F7E6917075ECBB1C562F2FBE9029FE95C4BD25A70EDDDE2728
Chrome Cache Entry: 70	HTML document, ASCII text, with very long lines (44333), with no line terminators	3E4F4050044D88C1DD0ED50742A7785D	188C5A4A665650BEFA953ACF5FEC87A8969BE5CA	E905FFB004E884DECC0118B5596596FE6FB88FEFDE62113402F3F8E1AC3BBA8A
Chrome Cache Entry: 71	ASCII text, with very long lines (18546)	1EC2E61D03A4C0EF91BE8E321D07C5D8	31034A0F1087C879BB12D3E16D85D341783E3249	A73D718DED1E36A2B0330EE5C0B5806AE9DA6306C406149EF0D4D7D0DB1670BA
Chrome Cache Entry: 72	ASCII text, with no line terminators	058EFFD2AC6D58BEB0389AC38C0E1A79	EE8ADFBDA03D87E6D0139403D931BD9DDE287144	3256DE1EEE898A4E920E9C985F2E26469D5EA291A1381602ACDC19FF51C04E08
Chrome Cache Entry: 73	ASCII text, with very long lines (15488)	CA00B2BD616FFC3C6041350A592C7426	EA082A42F3BB7A907B5A05E1E5EA5F6B967E3EFE	19846DEA837AA2A28869F608DB27827473E96713C9DE87ED94906AF0A928DDC2
Chrome Cache Entry: 74	ASCII text, with very long lines (13183)	5B3C7AC6A53B9D9BDB7A1C7B27EE036F	E4116A2AF7920957C0B26FE3B8B6212BFCA3B876	60A0E7BCF2F261816807201BB2A09522F62C399293CDF4B0B6443A42F6228C8B
Chrome Cache Entry: 75	ASCII text, with very long lines (18546)	1EC2E61D03A4C0EF91BE8E321D07C5D8	31034A0F1087C879BB12D3E16D85D341783E3249	A73D718DED1E36A2B0330EE5C0B5806AE9DA6306C406149EF0D4D7D0DB1670BA
Chrome Cache Entry: 76	ASCII text, with very long lines (65451)	12108007906290015100837A6A61E9F4	1D6AE46F2FFA213DEDE37A521B011EC1CD8D1AD3	C4DCCDD9AE25B64078E0C73F273DE94F8894D5C99E4741645ECE29AEEFC9C5A4
Chrome Cache Entry: 77	MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel	A05A05DCD6158CC4F8701173734F484A	FEEF99DC27E3DB5BF07A255B8EE509CCCACFF245	CA9A42575D5AD76A2915ED24034A512413392423BC5EC029B4605AEE7EDF5D46
Chrome Cache Entry: 78	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 79	ASCII text, with very long lines (2266), with no line terminators	3EC16AA44D720657743FB21B8843A42A	63585295ACACCEFA397927146CDF66DD4E61B2D1	AA45349925767E946B92475663269F3388B684612CAF430E23E5080C60D617DF
Chrome Cache Entry: 80	HTML document, ASCII text, with very long lines (44333), with no line terminators	3E4F4050044D88C1DD0ED50742A7785D	188C5A4A665650BEFA953ACF5FEC87A8969BE5CA	E905FFB004E884DECC0118B5596596FE6FB88FEFDE62113402F3F8E1AC3BBA8A
Chrome Cache Entry: 81	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 82	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 83	ASCII text, with very long lines (13183)	5B3C7AC6A53B9D9BDB7A1C7B27EE036F	E4116A2AF7920957C0B26FE3B8B6212BFCA3B876	60A0E7BCF2F261816807201BB2A09522F62C399293CDF4B0B6443A42F6228C8B
Chrome Cache Entry: 84	ASCII text, with very long lines (25115), with no line terminators	6C9193EACA3F3316140C7A96D8E2EDEA	853589DF20768E14568C2A37177F440DDADB95D4	4E4A1EDD64E32C55BB71E49FDDAF41EE58AAD04BDC1570A93A89645CB3C09895
Chrome Cache Entry: 85	PNG image data, 32 x 508, 8-bit/color RGBA, non-interlaced	93D46004C954437039DB089DD097EB38	61BED313EE1EFA40DA3E9C18FBFA7CA214190DE7	4C5C882C57946ED56E325D16C508BE939D9B46936B958DF23EE8B42BAB1F1BAC
Chrome Cache Entry: 86	PNG image data, 32 x 508, 8-bit/color RGBA, non-interlaced	93D46004C954437039DB089DD097EB38	61BED313EE1EFA40DA3E9C18FBFA7CA214190DE7	4C5C882C57946ED56E325D16C508BE939D9B46936B958DF23EE8B42BAB1F1BAC
Chrome Cache Entry: 87	ASCII text, with very long lines (65451)	12108007906290015100837A6A61E9F4	1D6AE46F2FFA213DEDE37A521B011EC1CD8D1AD3	C4DCCDD9AE25B64078E0C73F273DE94F8894D5C99E4741645ECE29AEEFC9C5A4
Chrome Cache Entry: 88	ASCII text, with very long lines (2266), with no line terminators	3EC16AA44D720657743FB21B8843A42A	63585295ACACCEFA397927146CDF66DD4E61B2D1	AA45349925767E946B92475663269F3388B684612CAF430E23E5080C60D617DF
Chrome Cache Entry: 89	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 90	Web Open Font Format, TrueType, length 128612, version 2.10	03ADBB294261977089607CDEA10B520C	4DD8B4AD179F3F9B64EC980418F2C9D354A9983D	D79149C9559597EFFB066E4ED38C2C4B429C88D0420725C296D52C40363EAF68
Chrome Cache Entry: 91	MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel	A05A05DCD6158CC4F8701173734F484A	FEEF99DC27E3DB5BF07A255B8EE509CCCACFF245	CA9A42575D5AD76A2915ED24034A512413392423BC5EC029B4605AEE7EDF5D46
Chrome Cache Entry: 92	Web Open Font Format, TrueType, length 128612, version 2.10	03ADBB294261977089607CDEA10B520C	4DD8B4AD179F3F9B64EC980418F2C9D354A9983D	D79149C9559597EFFB066E4ED38C2C4B429C88D0420725C296D52C40363EAF68
Chrome Cache Entry: 93	ASCII text, with very long lines (19425)	540804DAC5A11DF20E7119A35D01E2F8	6D1AB351BC7568ACB90E29C6ABDF4570A907A431	52D03B5EA1D204F7E6917075ECBB1C562F2FBE9029FE95C4BD25A70EDDDE2728

HTML body contains low number of good links

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: Number of links: 0
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: Number of links: 0

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: <input type="password" .../> found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: <input type="password" .../> found

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No favicon

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="author".. found

Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found
Source: https://securemail.zionsbancorp.com/securereader/login.jsf	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:49735 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/theme.css.jsf?ln=primefaces-aristo HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/components.css.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery-plugins.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/core.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/components.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/hotkey/hotkey.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/core.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /formpostdir/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jsf.js.jsf?ln=javax.faces HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/hotkey/hotkey.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jquery/jquery-plugins.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /formpostdir/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/components.js.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1190947317 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /formpostdir/fonts/sourcesanspro-regular.ttf.woff HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://securemail.zionsbancorp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/jsf.js.jsf?ln=javax.faces HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1190947317 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=ezRt5BS0QrxO+LoAUzOLDXONnzLbYwHOrB4ZXLi5h6JrueemerHUR+XM3nL59tkK7BIJw5eaRokwgyUHueBKy/3ajJ2T/sUzetWtV9nc8E8yMOSDGVmE770RJhxew869WQ6hQ7w+d2H5zHTlypZrtO1y1OdKJmLLLc+kAHplUi7lwSHYYGmX3I+xEdN37cpQ+amO1iyPJRx9uHSX4q9InnH7Q4ElrXxNok82S6Z7l1yXeytc1RRcVOVSeTJvMHK1OUjInZ7hFukYWVmWm1YoAEG9FhyLPlCCLUbkBEKNfkDMJtzAZ+gkkOJf7c39dlPRuZREndxwwqtRBBNzSBnCQyr+JK+2G1qQJaJzgrQu3TR8DMiLhBsKfnlB7uLSgknw9/3w/jkL2hY8LaVkRQ54G0RSCGxycq1i6MulMafRHtlkdBV5JfiOsDHrk88tmcrJ7qv+oNVIiLi3wT1sXvWu+SLnv6xwtPAWNtjLbxfiVlloGbkHsHERirlhl3CoKQBeyFHdApWqj0ZZORaU81QnCv70mgen3xYKkVxHEOtFD+hPyEdgKP3katiOJenFUFLW3TARBrrM24ZFTWUmA2deoJNoI/lKfOlJ23whnLWqCKR9yJAMT06UHfEkFK7ODshDP4rURQUx0gRNdYCuOOK2NYGmLqf6x5flvoYRviIV9auxjAK1YZgZ6IjM0jwHug0hZeq/y3z+xL7DhMBJ1/uqtWtXjh7AcfqSFjgz01Yw7ahgXKEQ9PQOkqmlUvkti7TWNYIfzHtCLv7yovQH/41xi2RUutVj9ZsaKtgr8u4TbjSNia/KN0Q91GviJFKUWdztSTZTlOnYdZXb1BVRV9/8AHvmqdrZe52cUPWF3IMR4nB1IpUQQsNuO74deJSiU0MDfuhpxM+5ohCYPGdbOaiTUJZcrV+cnkbZR4SYhhSpvH5fRC5uG0Hv2aZYO0li7qdeam3+7sESDYbCHR3bU0kpZaIJuLWO1iDZvpjBhCTC0RHQ325cIhqQ2XtgN0q6NJ1VLEE+3Ej6qs6ZOh8TqovTIKwJok7sAK83cpoV6xP4Q044DOnZZkq3FBNF+yEO3rEAgTiONwS5/4QC00kWA29VmcA+tE5hRz5ZwFPrb/W5SuLdjQNXmfMjGWYJKhKsf+2CmvJRrLNMduQzlzPvcM2Txp/c3VHym41AnxVl8FusPZh4pH5ckJIOei6UWe0KWDZuT/EzocLfy/IuMlJbchQFInaUh4zpkHIwyZbYYRGyLnydl64QPWNnLgFulWXplFAez/5Ozs6S+hqvo4322dhANZzhCfxPzYtKnwOMojjVIBG0pfisTNA/LbsRPojyiiaMqpLtEnSlQRiADt2A7J0N+Ms8jFwv7H95eEo4inWvsDGYyjXUKr3lZS5PSerq8AqDD7yLJJHrD7iTkr7IkCa2S3ItoGgEodgyDPl1QoV5ko6iYbtsDyy/aCkmCo8Px09uqCHMfjuZbaszxXSCq8PaQdD8zUSSwRLUKUzWxzgi7geEgHiNGAG35Vx7/ngIefRZweRT6ZpV88pzm/83+VM3SDOc70IYz8lfMDScGh3NvrN0WYUamOLJQII27CBEiAq4jbpH9tBPxgdlwyldK82iFrVTlcYFSuZ72Nu9hVnw2oJFDS5lMEyoc3V+oUJSpVPEPcBy6L6gDELgo/ZVH+ntY8xBO6R+9GmRq8jZOViwdmKFwOj2bnx7qk5ks47Bmf0j+IIUVFDl71OR/bzJfkjdRBJtabICMnYmuiYAbbUNrU7+Hih2sqJP8zLuA4BU+BLcfBkp9hr4J/7c/bfqnebtbgNvZYuFKZE5NKtDi8N0Uyo3LkB3hufjeZ+70XjK41FdLgmyCf6l0Olf1AUw8fTaE/G0IoEuGIwl5R1snkz/3EsDogxXuniKX01lEdbkobTRBvei7kKeHoibwXM3WehytwB0Z1KMPpJtWnpoXyGzTNFVT3HXuCfcyBqHbyz+gf5KtDX3vzjkMy21wJqF1jT2R+8KZ9C0NW2UnBoawS7STgbZ+fzUXm1uMr4DvZRGgkWy/hhEF1d7ZM9LiKWQOiP3mRwzrtXTehoy8ayIU0v/KfE6JFDFI75qgXZY7sjrA4tC7N3MjHz
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.2987383674441728 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==; ___utmvc=ezRt5BS0QrxO+LoAUzOLDXONnzLbYwHOrB4ZXLi5h6JrueemerHUR+XM3nL59tkK7BIJw5eaRokwgyUHueBKy/3ajJ2T/sUzetWtV9nc8E8yMOSDGVmE770RJhxew869WQ6hQ7w+d2H5zHTlypZrtO1y1OdKJmLLLc+kAHplUi7lwSHYYGmX3I+xEdN37cpQ+amO1iyPJRx9uHSX4q9InnH7Q4ElrXxNok82S6Z7l1yXeytc1RRcVOVSeTJvMHK1OUjInZ7hFukYWVmWm1YoAEG9FhyLPlCCLUbkBEKNfkDMJtzAZ+gkkOJf7c39dlPRuZREndxwwqtRBBNzSBnCQyr+JK+2G1qQJaJzgrQu3TR8DMiLhBsKfnlB7uLSgknw9/3w/jkL2hY8LaVkRQ54G0RSCGxycq1i6MulMafRHtlkdBV5JfiOsDHrk88tmcrJ7qv+oNVIiLi3wT1sXvWu+SLnv6xwtPAWNtjLbxfiVlloGbkHsHERirlhl3CoKQBeyFHdApWqj0ZZORaU81QnCv70mgen3xYKkVxHEOtFD+hPyEdgKP3katiOJenFUFLW3TARBrrM24ZFTWUmA2deoJNoI/lKfOlJ23whnLWqCKR9yJAMT06UHfEkFK7ODshDP4rURQUx0gRNdYCuOOK2NYGmLqf6x5flvoYRviIV9auxjAK1YZgZ6IjM0jwHug0hZeq/y3z+xL7DhMBJ1/uqtWtXjh7AcfqSFjgz01Yw7ahgXKEQ9PQOkqmlUvkti7TWNYIfzHtCLv7yovQH/41xi2RUutVj9ZsaKtgr8u4TbjSNia/KN0Q91GviJFKUWdztSTZTlOnYdZXb1BVRV9/8AHvmqdrZe52cUPWF3IMR4nB1IpUQQsNuO74deJSiU0MDfuhpxM+5ohCYPGdbOaiTUJZcrV+cnkbZR4SYhhSpvH5fRC5uG0Hv2aZYO0li7qdeam3+7sESDYbCHR3bU0kpZaIJuLWO1iDZvpjBhCTC0RHQ325cIhqQ2XtgN0q6NJ1VLEE+3Ej6qs6ZOh8TqovTIKwJok7sAK83cpoV6xP4Q044DOnZZkq3FBNF+yEO3rEAgTiONwS5/4QC00kWA29VmcA+tE5hRz5ZwFPrb/W5SuLdjQNXmfMjGWYJKhKsf+2CmvJRrLNMduQzlzPvcM2Txp/c3VHym41AnxVl8FusPZh4pH5ckJIOei6UWe0KWDZuT/EzocLfy/IuMlJbchQFInaUh4zpkHIwyZbYYRGyLnydl64QPWNnLgFulWXplFAez/5Ozs6S+hqvo4322dhANZzhCfxPzYtKnwOMojjVIBG0pfisTNA/LbsRPojyiiaMqpLtEnSlQRiADt2A7J0N+Ms8jFwv7H95eEo4inWvsDGYyjXUKr3lZS5PSerq8AqDD7yLJJHrD7iTkr7IkCa2S3ItoGgEodgyDPl1QoV5ko6iYbtsDyy/aCkmCo8Px09uqCHMfjuZbaszxXSCq8PaQdD8zUSSwRLUKUzWxzgi7geEgHiNGAG35Vx7/ngIefRZweRT6ZpV88pzm/83+VM3SDOc70IYz8lfMDScGh3NvrN0WYUamOLJQII27CBEiAq4jbpH9tBPxgdlwyldK82iFrVTlcYFSuZ72Nu9hVnw2oJFDS5lMEyoc3V+oUJSpVPEPcBy6L6gDELgo/ZVH+ntY8xBO6R+9GmRq8jZOViwdmKFwOj2bnx7qk5ks47Bmf0j+IIUVFDl71OR/bzJfkjdRBJtabICMnYmuiYAbbUNrU7+Hih2sqJP8zLuA4BU+BLcfBkp9hr4J/7c/bfqnebtbgNvZYuFKZE5NKtDi8N0Uyo3LkB3hufjeZ+70XjK41FdLgmyCf6l0Olf1AUw8fTaE/G0IoEuGIwl5R1snkz/3EsDogxXuniKX01lEdbkobTRBvei7kKeHoibwXM3WehytwB0Z1KMPpJtWnpoXyGzTNFVT3HXuCfcyBqHbyz+gf5KtDX3vzjkMy21wJqF1jT2R+8KZ9C0NW2UnBoawS7STgbZ+fzUXm1uMr4DvZRGgkWy/hhEF1d7ZM9LiKWQOiP3mRwzrtXTehoy8ayIU0v/KfE6JFDFI75qgXZY7sjrA4tC7N3MjHz
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/securereader/login.jsfAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/messages/messages.png.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://securemail.zionsbancorp.com/securereader/javax.faces.resource/components.css.jsf?ln=primefaces&v=7.0.17Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/fonts/sourcesanspro-regular.ttf.woff HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://securemail.zionsbancorp.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://securemail.zionsbancorp.com/securereader/login.jsfAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/Image?key=logo_image_key_1%40path&r=33a498e7-5de7-4716-8255-4d6eb41f7fe3 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/javax.faces.resource/messages/messages.png.jsf?ln=primefaces&v=7.0.17 HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==
Source: global traffic	HTTP traffic detected: GET /securereader/fonts/sourcesanspro-regular.ttf.woff HTTP/1.1Host: securemail.zionsbancorp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://securemail.zionsbancorp.comIf-None-Match: W/"128612-1712877320000"If-Modified-Since: Thu, 11 Apr 2024 23:15:20 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://securemail.zionsbancorp.com/securereader/login.jsfAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=CEA0AFCFA65CE70C83E1791C66001FE1; BID=995e7a42; visid_incap_2604843=keDjyB0aTSaYRgFaC5uzbHnD9mYAAAAAQUIPAAAAAACHdiX2H9dFUr11NhX2bo7T; incap_ses_1353_2604843=Wr+bdYl24V6VyZ4hetLGEn3D9mYAAAAASkGRXGtKo/D/b5vUJRrBXw==

Source: global traffic	DNS traffic detected: DNS query: securemail.zionsbancorp.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com

Source: unknown

Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://adomas.org/javascript-mouse-wheel/
Source: chromecache_73.2.dr	String found in binary or memory: http://api.jqueryui.com/category/theming/
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://api.jqueryui.com/position/
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://brandonaaron.net)
Source: chromecache_73.2.dr, chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_69.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://trentrichardson.com/examples/timepicker
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://www.jacklmoore.com/autosize
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: http://www.mathias-bank.de)
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/carhartl/jquery-cookie
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/furf/jquery-ui-touch-punch
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/gabceb
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/gabceb/jquery-browser-plugin
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/jquery/jquery-color
Source: chromecache_93.2.dr, chromecache_69.2.dr	String found in binary or memory: https://github.com/markrian/jquery-ui-touch-punch-improved

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@16/40@6/4

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2004,i,13221287546496257904,3716479039099036390,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2084 --field-trial-handle=2004,i,13221287546496257904,3716479039099036390,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: continue

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1520600
Product:	CloudBasic
Start time:	16:37:52
Start date:	27.09.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://securemail.zionsbancorp.com/formpostdir/securereader?id=nDl8UYFg-mw2Hv8MSsp7YazN3E_e0tlJ&brand=995e7a42