Click to jump to signature section
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: Iframe src: https://consent.trustarc.com/get?name=crossdomain.html&domain=sharefile.com |
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: Iframe src: https://consent.trustarc.com/get?name=crossdomain.html&domain=sharefile.com |
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: Number of links: 1 |
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: Base64 decoded: {"ApiUrl":"https://secure.sharefile.com/sf/v3/","OAuthUrl":"https://secure.sharefile.com/oauth/oauthapi.aspx","CachePath":"/","ErrorCorrelationId":"6ce5417f-d23c-45f0-ab8f-85bbb893b22a","Theme":{"Name":"onecitrix"},"PageWidth":"device-width","FixViewport"... |
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: No <meta name="author".. found |
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: No <meta name="author".. found |
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: No <meta name="copyright".. found |
Source: https://secure.sharefile.com/Authentication/Login#/StartViaSubdomain | HTTP Parser: No <meta name="copyright".. found |
Source: unknown | HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49746 version: TLS 1.2 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown | TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown | TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown | TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown | TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: global traffic | HTTP traffic detected: GET /r/b1e2eac3b09dede2c2832eec9?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319& HTTP/1.1Host: campaignstudio.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /Authentication/Login?ct=YTo1OntzOjY6InNvdXJjZSI7YToyOntpOjA7czoxNDoiY2FtcGFpZ24uZXZlbnQiO2k6MTtpOjgwO31zOjU6ImVtYWlsIjtpOjI3O3M6NDoic3RhdCI7czoyMjoiNjZmYTg0YjczYWY3MjE3OTk4NjkyNSI7czo0OiJsZWFkIjtzOjc6IjY0NTEzMDUiO3M6NzoiY2hhbm5lbCI7YToxOntzOjU6ImVtYWlsIjtpOjI3O319 HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /login HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=MJcPaFxn8M2lrgvjo3jTPR9n3KrRT2he2KBXfiQZu4H36QlOT+LP9q36xgsaT5iH+u1l7q2+ZaHt5B11qHo7v7NC9wQUPyHR2sfpecERH8Kt+os8Zq5t5iSGUdpp0+TVgEzEQ8PI3rI3xEx/ANJIQg9hOmenlD2wK123ydPYtnNg; AWSALBTGCORS=MJcPaFxn8M2lrgvjo3jTPR9n3KrRT2he2KBXfiQZu4H36QlOT+LP9q36xgsaT5iH+u1l7q2+ZaHt5B11qHo7v7NC9wQUPyHR2sfpecERH8Kt+os8Zq5t5iSGUdpp0+TVgEzEQ8PI3rI3xEx/ANJIQg9hOmenlD2wK123ydPYtnNg; AWSALB=xQxVu2aaH0NrKOEkt0IaJN0ls+wTWNm6w+BWF+77pGdOCMb47AShRuSIQO9JwWxoioqgwbNYOsOu1HEOIdgylUxq45vR1gN72r9RuqZN7nxXEofH0o/9e1tn6KIm; AWSALBCORS=xQxVu2aaH0NrKOEkt0IaJN0ls+wTWNm6w+BWF+77pGdOCMb47AShRuSIQO9JwWxoioqgwbNYOsOu1HEOIdgylUxq45vR1gN72r9RuqZN7nxXEofH0o/9e1tn6KIm |
Source: global traffic | HTTP traffic detected: GET /Authentication/StartLogin?client_id=Dzi4UPUAg5l8beKdioecdcnmHUTWWln6&state=f4uVqL4mHe4wOn7HGYp3uA--&redirect_uri=https%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin&saml_noiframe=False&subdomain=secure&autoredirect=False&requirev3=False&fix_mie_viewport=False&PromptLoginAfterActivation=False&device_id_supported=True&wcs_auth_login_url=https%3a%2f%2fauth.sharefile.io%2fconnect%2fauthorize%3fclient_id%3dDzi4UPUAg5l8beKdioecdcnmHUTWWln6%26state%3df4uVqL4mHe4wOn7HGYp3uA--%26acr_values%3dtenant%253Asecure%26response_type%3dcode%26redirect_uri%3dhttps%3a%2f%2fsecure.sharefile.com%2flogin%2foauthlogin%26scope%3dsharefile%253Arestapi%253Av3%2520sharefile%253Arestapi%253Av3-internal%2520offline_access%2520openid HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=OghBqkRMdeCerenm4ijvxcWPBmK7nxBUebAl2bgCnB+SZugwYfwNrB/nLhfUt9FcYxN26XrYkEkddWO/35/QQ9YVALIVZTna6J8XVe96EyNeSQrer4YyalP/O+yCYQSvrosGO8HgDHr+MH+K5ghcGIAdA4bQp1xhBUH+EPiTaXhl; AWSALBTGCORS=OghBqkRMdeCerenm4ijvxcWPBmK7nxBUebAl2bgCnB+SZugwYfwNrB/nLhfUt9FcYxN26XrYkEkddWO/35/QQ9YVALIVZTna6J8XVe96EyNeSQrer4YyalP/O+yCYQSvrosGO8HgDHr+MH+K5ghcGIAdA4bQp1xhBUH+EPiTaXhl; AWSALB=e8wExK9+NBJy5fo+BCNPL8V6kNwH1m7/Va6g382K6OLnTczRwMprE/SeLbVnjOtl7ecLgQr1gmUIncJyj5pbs4KG8TcSUn+R9tzX/3Z7EwmT6YXkhza3qqQ+IkxU; AWSALBCORS=e8wExK9+NBJy5fo+BCNPL8V6kNwH1m7/Va6g382K6OLnTczRwMprE/SeLbVnjOtl7ecLgQr1gmUIncJyj5pbs4KG8TcSUn+R9tzX/3Z7EwmT6YXkhza3qqQ+IkxU; SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca |
Source: global traffic | HTTP traffic detected: GET /Authentication/Login HTTP/1.1Host: secure.sharefile.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: SF_Subdomain=secure; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtQ0SU56Y9jWBdwZqUvgDqbKOdktjhag8PTVCx2TUtKHIuA5fspPxsbFSOIJUUFvt7IL5qBgHyuyH5BkUUoWjIFz4kjWBcclEaOjQw5ouWsaFbS2trEZXX%2Fg7%2BWxFkQrfh1GjqhgMhl8wpamgdKYCca; AWSALBTG=CLKuR0R1cPjbBsP57I4sGf2rBPKf7t51rZ1MS3Xiz63TtIw6X1rZ1Wp8wwiodGO+Wa9fWiWY6yLovot/ixC8JbXkg/fmW/yw8DJk9EniPsu9S+OkPapPfMmXjfqmKUiAtZeGSWlr+e83N/JnmxFNNQ8HkFxGRkBMOn8wxL4itA4F; AWSALBTGCORS=CLKuR0R1cPjbBsP57I4sGf2rBPKf7t51rZ1MS3Xiz63TtIw6X1rZ1Wp8wwiodGO+Wa9fWiWY6yLovot/ixC8JbXkg/fmW/yw8DJk9EniPsu9S+OkPapPfMmXjfqmKUiAtZeGSWlr+e83N/JnmxFNNQ8HkFxGRkBMOn8wxL4itA4F; AWSALB=LGbLBiunbVANG3Dzsz7wUUzKDVYZ3WBFx4F+EwrPsMpwR71g2YKbQyCQjE2qDy1gm3pOCI4ScNFkVC4mYI8XbvKF4Ibj7T5ZSZX8y/YLG90wQy3RcH6c6DKWaGza; AWSALBCORS=LGbLBiunbVANG3Dzsz7wUUzKDVYZ3WBFx4F+EwrPsMpwR71g2YKbQyCQjE2qDy1gm3pOCI4ScNFkVC4mYI8XbvKF4Ibj7T5ZSZX8y/YLG90wQy3RcH6c6DKWaGza; clientRequest=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 |