URL: https://phishtank.com/
Submission: On June 30 via manual from GB

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 10 HTTP transactions.
The main IP is 2606:4700::6811:b155, located in United States and belongs to CLOUDFLARENET, US. The main domain is phishtank.com.
TLS certificate: Issued by CloudFlare Inc ECC CA-2 on April 7th 2020. Valid for: 6 months.
This is the first time this domain was scanned on urlscan.io!

Verdict: No classification

Domain & IP information

IP Address AS Autonomous System
7 2606:4700::68... 13335 (CLOUDFLAR...)
1 2606:4700::68... 13335 (CLOUDFLAR...)
2 2a00:1450:400... 15169 (GOOGLE)
10 3
Domain
Subdomains
Transfer
7 phishtank.com
18 KB
2 google-analytics.com
17 KB
1 cloudflareinsights.com
4 KB
10 3
Domain Requested by
7 phishtank.com phishtank.com
static.cloudflareinsights.com
2 ssl.google-analytics.com phishtank.com
1 static.cloudflareinsights.com phishtank.com
10 3

This site contains links to these domains. Also see Links.

Domain
www.opendns.com
www.phishtank.com
Subject / Issuer Validity Valid
sni.cloudflaressl.com
CloudFlare Inc ECC CA-2
2020-04-07 -
2020-10-09
6 months
*.google-analytics.com
GTS CA 1O1
2020-06-10 -
2020-09-02
3 months

Screenshot


Detected technologies

Web
Overall confidence: 100%
Detected patterns
  • headers server /^cloudflare$/i

Web
Overall confidence: 100%
Detected patterns
  • script /google-analytics\.com\/(?:ga|urchin|analytics)\.js/i


Stats

0
Requests

0
Ad-blocked

0
Malicious

0 %
HTTPS

0 %
IPv6

0
Domains

0
Subdomains

0
IPs

0
Countries

0 kB
Transfer

0 kB
Size

0
Cookies

10 HTTP transactions

Resource
Path
Size
x-fer
Type
MIME-Type
/
9 KB
4 KB
Document
General
Full URL
https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6811:b155 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
3a244ccfaae471420c7be5203357ffff18821a5fe2ac51a5b00685e6352c03e9
Security Headers
Name Value
Strict-Transport-Security max-age=15552000

Request headers

:method
GET
:authority
phishtank.com
:scheme
https
:path
/
pragma
no-cache
cache-control
no-cache
upgrade-insecure-requests
1
user-agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36
accept
text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site
none
sec-fetch-mode
navigate
sec-fetch-user
?1
sec-fetch-dest
document
accept-encoding
gzip, deflate, br
accept-language
en-US
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

status
200
date
Tue, 30 Jun 2020 21:36:43 GMT
content-type
text/html; charset=UTF-8
set-cookie
__cfduid=d404c24d58ce81127c38168e5415afd4e1593553003; expires=Thu, 30-Jul-20 21:36:43 GMT; path=/; domain=.phishtank.com; HttpOnly; SameSite=Lax; Secure PHPSESSID=fhtvrk03k5qmktiva4s6kp9ud3; expires=Tue, 07-Jul-2020 21:36:43 GMT; Max-Age=604800; path=/
expires
Thu, 19 Nov 1981 08:52:00 GMT
cache-control
no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma
no-cache
vary
Accept-Encoding
cf-cache-status
DYNAMIC
cf-request-id
03a8c23c2d00000ebb4e81d200000001
expect-ct
max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security
max-age=15552000
server
cloudflare
cf-ray
5abb0640493a0ebb-FRA
content-encoding
gzip
alt-svc
h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400
main.css
/css
17 KB
4 KB
Stylesheet
General
Full URL
https://phishtank.com/css/main.css
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6811:b155 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
64a3fc4676a8e3773a50ac6f53b9d9ec83c41ed98f2831485ff11229fd81068f
Security Headers
Name Value
Strict-Transport-Security max-age=15552000

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

date
Tue, 30 Jun 2020 21:36:43 GMT
content-encoding
gzip
vary
Accept-Encoding
cf-cache-status
EXPIRED
status
200
alt-svc
h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
4059
cf-request-id
03a8c23cdf00000ebb4e82a200000001
last-modified
Fri, 19 Oct 2018 20:40:25 GMT
server
cloudflare
etag
"4305-5789ae9b80040-gzip"
expect-ct
max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security
max-age=15552000
content-type
text/css
accept-ranges
bytes
cf-ray
5abb06416ba40ebb-FRA
phishtank.js
/js
2 KB
1 KB
Script
General
Full URL
https://phishtank.com/js/phishtank.js
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6811:b155 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
874fc111365e468cb07b2797aef776dfcdb44d0cbf2dc13a8aee79deb8ebd780
Security Headers
Name Value
Strict-Transport-Security max-age=15552000

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

date
Tue, 30 Jun 2020 21:36:43 GMT
content-encoding
gzip
vary
Accept-Encoding
cf-cache-status
EXPIRED
status
200
alt-svc
h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
885
cf-request-id
03a8c23cdf00000ebb4e82b200000001
last-modified
Wed, 24 Oct 2018 15:19:34 GMT
server
cloudflare
etag
"987-578fb0379ed80-gzip"
expect-ct
max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security
max-age=15552000
content-type
application/javascript
accept-ranges
bytes
cf-ray
5abb06416ba70ebb-FRA
logo_with_tagline.gif
/images
7 KB
8 KB
Image
General
Full URL
https://phishtank.com/images/logo_with_tagline.gif
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6811:b155 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
146a0968d7ddd9cdec060702ba248452bff45ceb41bf906dc82c3956704ad301
Security Headers
Name Value
Strict-Transport-Security max-age=15552000

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

date
Tue, 30 Jun 2020 21:36:44 GMT
vary
Accept
cf-cache-status
REVALIDATED
cf-polished
origFmt=gif, origSize=11804
status
200
content-disposition
inline; filename="logo_with_tagline.webp"
alt-svc
h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
7564
cf-request-id
03a8c23d6200000ebb4e839200000001
last-modified
Fri, 19 Oct 2018 20:40:25 GMT
server
cloudflare
etag
"2e1c-5789ae9b80040"
expect-ct
max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security
max-age=15552000
content-type
image/webp
accept-ranges
bytes
cf-ray
5abb06423d460ebb-FRA
cf-bgj
imgq:100,h2pri
email-decode.min.js
/cdn-cgi/scripts/5c5dd728/cloudflare-static
1 KB
838 B
Script
General
Full URL
https://phishtank.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6811:b155 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8
Security Headers
Name Value
Strict-Transport-Security max-age=15552000
X-Frame-Options SAMEORIGIN

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

date
Tue, 30 Jun 2020 21:36:43 GMT
content-encoding
gzip
vary
Accept-Encoding
last-modified
Fri, 26 Jun 2020 09:13:11 GMT
server
cloudflare
etag
W/"5ef5bc27-4d7"
expect-ct
max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
x-frame-options
SAMEORIGIN
content-type
application/javascript
status
200
cache-control
max-age=172800, public
strict-transport-security
max-age=15552000
cf-ray
5abb06423d3a0ebb-FRA
cf-request-id
03a8c23d5f00000ebb4e838200000001
expires
Thu, 02 Jul 2020 21:36:43 GMT
beacon.min.js
static.cloudflareinsights.com
9 KB
4 KB
Script
General
Full URL
https://static.cloudflareinsights.com/beacon.min.js
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6810:5f41 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
569f1ac2f407832f2aebfd01a5ea9d5a4a3793b4aac4fa3bc40b985e6ab591c8

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

date
Tue, 30 Jun 2020 21:36:43 GMT
content-encoding
gzip
server
cloudflare
expect-ct
max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary
Accept-Encoding
content-type
text/javascript;charset=UTF-8
status
200
cf-ray
5abb06425afd96e6-FRA
cf-request-id
03a8c23d74000096e68a252200000001
header_bg_blue.gif
/images
400 B
631 B
Image
General
Full URL
https://phishtank.com/images/header_bg_blue.gif
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6811:b155 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
ff701457513e829ec9e559c5bd4ae7f3c6b46211276aa3775f743382a1e320cb
Security Headers
Name Value
Strict-Transport-Security max-age=15552000

Request headers

Referer
https://phishtank.com/css/main.css
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

date
Tue, 30 Jun 2020 21:36:44 GMT
vary
Accept
cf-cache-status
REVALIDATED
cf-polished
origFmt=gif, origSize=556
status
200
content-disposition
inline; filename="header_bg_blue.webp"
alt-svc
h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400
content-length
400
cf-request-id
03a8c23d6500000ebb4e83a200000001
last-modified
Fri, 19 Oct 2018 20:40:25 GMT
server
cloudflare
etag
"22c-5789ae9b80040"
expect-ct
max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security
max-age=15552000
content-type
image/webp
accept-ranges
bytes
cf-ray
5abb06423d4f0ebb-FRA
cf-bgj
imgq:100,h2pri
ga.js
ssl.google-analytics.com
45 KB
17 KB
Script
General
Full URL
https://ssl.google-analytics.com/ga.js
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:80b::2008 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
Golfe2 /
Resource Hash
1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f
Security Headers
Name Value
Strict-Transport-Security max-age=10886400; includeSubDomains; preload
X-Content-Type-Options nosniff

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

strict-transport-security
max-age=10886400; includeSubDomains; preload
content-encoding
gzip
x-content-type-options
nosniff
last-modified
Thu, 04 Jun 2020 23:38:14 GMT
server
Golfe2
age
3612
date
Tue, 30 Jun 2020 20:36:31 GMT
vary
Accept-Encoding
content-type
text/javascript
status
200
cache-control
public, max-age=7200
alt-svc
h3-27=":443"; ma=2592000,h3-25=":443"; ma=2592000,h3-T050=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
17168
expires
Tue, 30 Jun 2020 22:36:31 GMT
__utm.gif?utmwv=5.7.2&utms=1&utmn=729356270&utmhn=phishtank.com&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=PhishTank%20%7C%20Join%20the%20fight%20aga...
ssl.google-analytics.com/r
35 B
196 B
Image
General
Full URL
https://ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=729356270&utmhn=phishtank.com&utmcs=UTF-8&utmsr=1600x1200&utmvp=1600x1200&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=PhishTank%20%7C%20Join%20the%20fight%20against%20phishing&utmhid=710438907&utmr=-&utmp=%2F&utmht=1593553003982&utmac=UA-1163522-7&utmcc=__utma%3D32426495.362649562.1593553004.1593553004.1593553004.1%3B%2B__utmz%3D32426495.1593553004.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1987719062&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
Requested by
Host: phishtank.com
URL: https://phishtank.com/
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:80b::2008 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
Golfe2 /
Resource Hash
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
Security Headers
Name Value
X-Content-Type-Options nosniff

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36

Response headers

pragma
no-cache
date
Tue, 30 Jun 2020 21:36:43 GMT
x-content-type-options
nosniff
last-modified
Sun, 17 May 1998 03:00:00 GMT
server
Golfe2
status
200
content-type
image/gif
access-control-allow-origin
*
cache-control
no-cache, no-store, must-revalidate
alt-svc
h3-27=":443"; ma=2592000,h3-25=":443"; ma=2592000,h3-T050=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
content-length
35
expires
Fri, 01 Jan 1990 00:00:00 GMT
performance?req_id=5abb0640493a0ebb
/cdn-cgi/beacon
0
56 B
XHR
General
Full URL
https://phishtank.com/cdn-cgi/beacon/performance?req_id=5abb0640493a0ebb
Requested by
Host: static.cloudflareinsights.com
URL: https://static.cloudflareinsights.com/beacon.min.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2606:4700::6811:b155 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Frame-Options SAMEORIGIN

Request headers

Referer
https://phishtank.com/
User-Agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36
content-type
application/json

Response headers

status
204
date
Tue, 30 Jun 2020 21:36:44 GMT
x-frame-options
SAMEORIGIN
server
cloudflare
cf-ray
5abb0644ba050ebb-FRA
cf-request-id
03a8c23ef000000ebb4e85b200000001

Redirect requests

There were HTTP redirects (301, 302) for the following requests:

12 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

object| onformdata object| onpointerrawupdate function| setcookie function| getcookie function| phishwarning function| lbfocus function| toggle function| flagphishreport function| phishflagvalidate object| _gaq object| _gat object| gaGlobal

7 Cookies

Domain/Path Name / Value
.phishtank.com/ Name: __utmt
Value: 1
.phishtank.com/ Name: __utmc
Value: 32426495
.phishtank.com/ Name: __utmz
Value: 32426495.1593553004.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)
.phishtank.com/ Name: __utmb
Value: 32426495.1.10.1593553004
.phishtank.com/ Name: __cfduid
Value: d404c24d58ce81127c38168e5415afd4e1593553003
.phishtank.com/ Name: __utma
Value: 32426495.362649562.1593553004.1593553004.1593553004.1
phishtank.com/ Name: PHPSESSID
Value: fhtvrk03k5qmktiva4s6kp9ud3

Security Headers

This page lists any security headers set by the main page. If you want to understand what these mean and how to use them, head on over to this page

Header Value
Strict-Transport-Security max-age=15552000