| files.catbox.moe/favicon.ico |  108.181.20.37 | 200 OK | 5.4 kB |
URL GET HTTP/2files.catbox.moe/favicon.ico IP108.181.20.37:443
Requested byhttps://files.catbox.moe/yxnki1.txt CertificateIssuerLet's Encrypt Subjectcatbox.moe Fingerprint39:D9:8F:B6:28:27:0B:83:FF:34:5D:CD:EF:B7:DC:17:C4:51:98:5B ValidityThu, 29 Feb 2024 08:26:47 GMT - Wed, 29 May 2024 08:26:46 GMT
File typeMS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash6c5064b85ac0ca9ca7176983f4e1ccc7 35e2af3b324604e6fd92460cae86265352574f5f 6d6267ff22032bdca0f0363f159f5dd485271b8c60bd4635ed13926666f62627
GET /favicon.ico HTTP/1.1
Host: files.catbox.moe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://files.catbox.moe/yxnki1.txt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:44:00 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sat, 20 Jun 2015 06:06:00 GMT
etag: "558502c8-1536"
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://files.catbox.moe; style-src https://files.catbox.moe 'unsafe-inline'; img-src 'self' data:; font-src 'self'; media-src 'self'; object-src 'self';
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
X-Firefox-Spdy: h2
|
| files.catbox.moe/yxnki1.txt | 108.181.20.37 | 200 OK | 59 kB |
URL User Request GET HTTP/2files.catbox.moe/yxnki1.txt IP108.181.20.37:443
CertificateIssuerLet's Encrypt Subjectcatbox.moe Fingerprint39:D9:8F:B6:28:27:0B:83:FF:34:5D:CD:EF:B7:DC:17:C4:51:98:5B ValidityThu, 29 Feb 2024 08:26:47 GMT - Wed, 29 May 2024 08:26:46 GMT
File typeASCII text, with very long lines (58712), with no line terminators Hash4a092469d24d1880118812c15a0347e9 f78a6c4648b5b97b043120af5adf172654073100 24e1fa01b26364f95517db96a707fa2f03f2d3e3e8fbeb843b39cf52063b19d7
| Analyzer | Verdict | Alert |
|---|
| urlquery | suspicious | Suspicious - Base64 encoded file |
GET /yxnki1.txt HTTP/1.1
Host: files.catbox.moe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 18:43:59 GMT
content-type: text/plain
last-modified: Fri, 29 Mar 2024 08:01:35 GMT
vary: Accept-Encoding
etag: W/"6606755f-e558"
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://files.catbox.moe; style-src https://files.catbox.moe 'unsafe-inline'; img-src 'self' data:; font-src 'self'; media-src 'self'; object-src 'self';
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: gzip
X-Firefox-Spdy: h2
|