Source: http://logiamutusliber.com.ar/dan/gbsources |
SlashNext: detection malicious, Label: Credential Stealing type: Phishing & Social Engineering |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
LLM: Score: 9 Reasons: The brand 'Global Sources' is a known brand associated with the domain 'globalsources.com'., The provided URL 'logiamutusliber.com.ar' does not match the legitimate domain of Global Sources., The URL 'logiamutusliber.com.ar' does not contain any recognizable elements related to 'Global Sources'., The domain extension '.com.ar' is unusual for a global brand like Global Sources, which typically uses '.com'., The URL does not contain any subdomains or elements that suggest a legitimate association with Global Sources. DOM: 0.0.pages.csv |
Source: Yara match |
File source: 0.0.pages.csv, type: HTML |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: Number of links: 0 |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: Title: Global Sources does not match URL |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: Invalid link: Terms of Use |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: Invalid link: Privacy Policy |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: Has password / email / username input fields |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: Form action: post.php |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: <input type="password" .../> found |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: No <meta name="author".. found |
Source: http://logiamutusliber.com.ar/dan/gbsources/ |
HTTP Parser: No <meta name="copyright".. found |
Source: unknown |
HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49747 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 13.107.253.45:443 -> 192.168.2.4:49756 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 13.107.253.45:443 -> 192.168.2.4:49890 version: TLS 1.2 |
Source: Network traffic |
Suricata IDS: 2030302 - Severity 2 - ET PHISHING Common Form POST - Possible Generic Phishing Landing 2020-06-11 : 198.27.76.221:80 -> 192.168.2.4:49735 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: global traffic |
HTTP traffic detected: HTTP/1.1 200 OKConnection: Keep-AliveKeep-Alive: timeout=5, max=100x-powered-by: PHP/8.3.11content-type: text/htmlcontent-length: 1522content-encoding: gzipvary: Accept-Encodingdate: Mon, 07 Oct 2024 06:57:57 GMTserver: LiteSpeedData Raw: 1f 8b 08 00 00 00 00 00 00 03 ed 18 5d 6f db 36 f0 59 01 f2 1f 0e f4 b3 2d db a9 db c0 91 0c 6c 49 3a f4 69 01 da 75 d8 23 2d d1 16 17 49 d4 48 ca b1 3b ec 07 ed 6f ec 97 0d c7 0f 7d 38 72 9a 6e ed b6 02 b3 2c 89 22 ef 8e c7 e3 7d 32 ca 74 91 af a2 8c d1 74 15 15 4c 53 c8 b4 ae c6 ec 97 9a ef 62 72 2d 4a cd 4a 3d 7e 77 a8 18 81 c4 7e c5 44 b3 bd 0e 11 f1 0a 92 8c 4a c5 74 fc c0 cb 54 3c a8 f1 6c be 98 93 d5 f9 d9 f9 59 a4 b9 ce d9 ea bb 5c ac 69 0e 6f 45 2d 13 a6 a2 d0 f6 1a 00 a5 0f 39 5b 9d 9f d1 65 26 76 4c fe 9a 88 5c c8 e5 e8 f5 eb e9 74 3a bd 82 8d 28 f5 d8 c0 2c b9 a6 39 4f ae e0 b7 f3 b3 28 f4 68 e7 67 51 ce cb 7b 90 2c 8f 89 ca 84 d4 49 ad 81 27 a2 24 a0 0f 15 8b 09 2f e8 96 85 55 b9 25 90 49 b6 89 09 ae 4d 2d c3 90 4f 78 b1 ad e5 24 11 45 f8 e3 cd 4f 7c 5f bc 9c 20 98 65 3c 34 d2 40 16 ed 15 ad 45 7a 00 9c 2b 26 a3 c5 25 5e 04 28 7e fb af 98 10 d8 f5 01 0c a9 f3 b3 20 d2 74 9d 33 04 df 96 31 49 58 a9 99 b4 f3 04 91 46 c2 ab 48 cb 55 a4 53 c8 18 df 66 3a 26 64 15 85 3a c5 87 74 44 90 8d c0 81 99 ae 60 98 2c 3c f0 54 67 86 42 8f b4 c3 09 22 5e 6c 41 c9 64 58 10 df cb 52 a8 f9 6e f2 73 e5 04 11 04 2d 23 51 e8 28 86 66 3d 96 62 3b ec 45 d5 7f 7b 9e 3f b2 34 8f e4 c1 9b 55 9f 5a e6 7a 6b 54 05 a5 9e b0 3c 57 15 4d 78 b9 8d c9 14 05 1b 04 fe 3e 92 6f 83 35 ba bd b9 bd be bd 26 0d 5b 17 d3 be cc 5b 12 48 ca ef cf 63 7c 27 ee c5 e5 b4 a5 65 78 40 b4 53 cc 7b a4 39 4e 7a bc 4d 88 66 91 83 08 f5 1f 36 34 61 31 a1 92 d3 9c 80 e2 1f 58 4c e6 68 89 b9 90 66 9f d7 ab bb 9c 51 c5 60 c7 24 df 1c e0 20 6a 09 aa ae aa 9c 33 09 6f 6e 40 0b d8 71 f6 00 3a e3 0a 2a 29 d2 3a d1 93 c9 c4 a8 94 61 32 5c af a2 10 e7 32 b2 f3 d3 b7 5b 3b b8 f3 1d cd f0 d2 1e 7a 7f 9a e8 9c 59 a0 e4 32 e9 75 79 31 9f 1a 63 7b 64 3d 7f 9b 05 6f 6f b8 11 9e f9 00 00 20 da 08 59 40 c1 74 26 d2 98 54 42 69 02 34 d1 5c 94 f6 6b 52 65 55 8b e2 51 5b 89 f9 9e ee fb a4 24 56 51 ca 77 c0 d3 98 ac 59 22 0a 76 4d 35 d2 8e c2 94 ef 5a b6 8e ec bd a7 39 38 8d df 36 40 47 e2 35 cc 6b 75 17 c0 b6 3b 50 33 54 fe 2e 44 60 18 72 fe 4a a2 4b f2 e3 cf 53 49 4b 2b b8 16 45 45 cb 03 dc 16 94 e7 4b d7 d9 53 b4 a0 5d a3 67 df c8 b0 cb cc e3 76 87 f5 85 b3 da c7 40 dd 9e 48 a7 47 eb e3 65 55 6b 28 69 c1 62 92 8b 2d 6f e2 05 43 5e |