Source: https://capitaltrustllc9843.globalstransloading.com/ |
LLM: Score: 9 Reasons: The brand 'Cloudflare' is well-known and typically associated with the domain 'cloudflare.com'., The URL 'capitaltrustllc9843.globalstransloading.com' does not match the legitimate domain of Cloudflare., The domain 'globalstransloading.com' is not associated with Cloudflare and appears suspicious., The presence of a subdomain 'capitaltrustllc9843' is unusual and could indicate phishing., The input field 'Verify you are human' is commonly used in phishing sites to appear legitimate. DOM: 1.5.pages.csv |
Source: Yara match |
File source: 0.1.pages.csv, type: HTML |
Source: Yara match |
File source: 0.2.pages.csv, type: HTML |
Source: Chrome DOM: 0.2 |
OCR Text: New PDF Document Recieved Received on Monday, October 07 2024 You've received (3) PDF Documents for your review File Type: PDF Size: 1301<8 VIEW DOCUMENT HERE |
Source: https://capitaltrustllc9843.globalstransloading.com/ |
HTTP Parser: Base64 decoded: <svg xmlns="http://www.w3.org/2000/svg" width="32" height="32" fill="none"><path fill="#B20F03" d="M16 3a13 13 0 1 0 13 13A13.015 13.015 0 0 0 16 3m0 24a11 11 0 1 1 11-11 11.01 11.01 0 0 1-11 11"/><path fill="#B20F03" d="M17.038 18.615H14.87L14.563 9.5h2.... |
Source: https://capitaltrustllc9843.globalstransloading.com/ |
HTTP Parser: No favicon |
Source: https://capitaltrustllc9843.globalstransloading.com/ |
HTTP Parser: No favicon |
Source: https://capitaltrustllc9843.globalstransloading.com/ |
HTTP Parser: No favicon |
Source: unknown |
HTTPS traffic detected: 23.60.203.209:443 -> 192.168.2.4:49748 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 23.60.203.209:443 -> 192.168.2.4:49760 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:49780 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:49834 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 52.149.20.212:443 -> 192.168.2.4:49840 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:49985 version: TLS 1.2 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.60.203.209 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 93.184.221.240 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 52.149.20.212 |
Source: global traffic |
HTTP traffic detected: GET /s/i78SCER7VQSp6YXNRsNfJF7h3vl?domain=customervoice.microsoft.com HTTP/1.1Host: url.us.m.mimecastprotect.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /r/q48kABFcR6_lCFpXiD7o241kiLUL5j9vA6u1EKZXfqlr-3otV7KvmsP0MkiZehnSOFrRb_pvAwjt-SO5Hyy0qyJMaWel4RaC44a9UFKGqt23wCo7Ny7i4DoDuLKStEpnwy6CgkzRbznWJbsttgjfF5Dj7ZAPIvAUltuPMm28f2d1yuN2kw0rlmwnrOEe69ut-i2oRzmJtkIil--Sp64v7COAYIP1SNAeDtF7jJQprP04Te3g4RpMB6ie5xUSfOWsXCQ9oAnhqvLFYlRFLRDzEb-78DM8Qwp4bobrAKFl1YDgZhQiTnahLdXf5ZPJFgC0ET5r6wPl6pCuWn9inKgp5IfT6rP8LeLTF6VyzpThFw7pdjst-uFq_SjQqV9wNxwlNSkkwPgWIGjNwrHS10paT3iPEE8aXoxW1WcNMLbhFK4INv9d7aWuMoYX6taSu7jMACtzLBJGWypS2WDXmrKjhVR_x9LDm8JKPdV8vDeEJqz22m_hh1BVWxP5hjOUQ7R6QpqyvF4Sr40aEZI5LlQkQl3HrbWQ7Qn3snaQYnSKlOra7EUMzp5lofBMYc1NQqp1zMXZql4Dp-AVNksOAvwJJDYwUNtSkx_14V5HpoXKnyqeZqloTs2acCHLTPEUgPzOEF9jnYc2Q-gcly3KWKFF6yBAqUPhg6SPU5QixMNUjpWC0J-3v3E00XyDQATpkpDyii1lEI8uusV51w2jJIq-kVeml2lLSFuMfimmyLRwrr-b3x4eNoBmvBYel5nYHjNgEl9zgpbgh64aaQ930ZVh9ff58ocwFRF-xUB3B0Nnmm5qDreXt5DobQdaAFu1fnUugVbrTvRDdmS1OtksYKl466pKVYuc0GR_JkazNiZmiq0_IGistcj-pTEFEeQ7v7WJdubVnVsAeLD9JRQhJpT780-MpLSb0sRi8EUc3ybJqaBuvg3YJfE3rlUo1C2XEioVGrDqVYZOeoCaH69DGKNnJT18jEbfPJdfK2MjUvIhCg1StmAPF3abb3snHAhqTZ89588FbhwkXF4yLez0q_SPV5ju5j9QdPJnS5rvL3MUVdyRtxdWup-ltdqNqipvRTAduszykeE9XbDUckdx2cNljj3nen0jNR5sGBso4iW-0rTd6_HBcKvukblXGEVC0lG-TVvrGbkMritSDenfpBT4ldX1T2c9Ve7DHuYyU03NtFQOAnFGRlxVZQT_V1wbMxN0Z_muCzSk1XquUSCA0qALS9R3_04742_y8GydpyeTEjSjGP0zBnzobwub57Z1zZothRyp1UJyuwrPx2jlx82Ko9GZdl1oFEVn12RusxKaUyZtLtOF2FudgtkHxTObeRBYhu-5sUkFIaXuD1tDm1Iggt0p6-TAwduyc1j8O9Qg_LqLBI-v_slURRe9WMj-TD4kjREMQMy-0W1gJlWfCaEdtVVSe6lVOq3L1mcFNeABKpl12gZm9DVjESY000DmzQ8_9nB9difOXfvAD9GdVNAA1vxjggoLAWuZlPdWnvnGy7TmsS3m4mq03mMpClq1GAuA017eQncX_PqQucH3zfNOCIJ0FtokZgc4Kl-b4GrAkI2mkHC9cgNBuVSKMOArgLPV98XlcqL3MACdKIHrmJLb1LVYppMI9t4qP3LkXnXWZ6PWkM3OQnhpyTGEmhXokXooyaTPTVobZBcvOh7RyTRKUWS5_97dAfZPNTUnC-V2KhdoorN92L4sXH_ODAqnpL0SQ1W3jRhGEh9ZwDYKYJD-rvvYrmsiCgWfyqaXtKD6E2nb5GSkf9chEsaUzf4DQrMS5Xssrmky56bzxMM_Rl_M53iPFb8ade1MipnYWr8-_2xArTgA2p6b_zaFM8iuelMSov0_Jh_kMB7cxZ83Vg-krEEpIIY6pboAHbgMK1bGvGvCiwbdB30JOiRmAoF8X7Q2bEiiB-UfHDnWOdOU-UGpbLL54rxPrRt3Fq_isqTxoc_j-cXTQCQaQNvsRjTH1o9eR1JCLVuu7JuNYyKiGeomLHAOFsiKM_LA8IGZAzqcbByq4UNqbLrmTn4Q78T98neEVgNItDVAc8ElWJXkurqnXJvFNsZQiJeoima5H8OgGOAFRkmtC_nR3TWqXaHJ1Po3Sosy3R7nocbTr4Hg2-tRuxC6UlXecLz9bzZug0i7frXGF4U1-6dV9dUP9pO6mzDiQN9s8pPwPkVpQnytJcGF3tQmXLtCWyutfCu7UIsuQ17E5_I4b0vpbhiwrivl_TnGRu4xZ9HwxKpKAPB5e_CyI1fxhIp_pLvQ2_u5fWjqZgx-CNtuUSrZR-cK7NWffXueDV_vh-ei26D0HJiWJy6aPQ HTTP/1.1Host: url.us.m.mimecastprotect.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 |