Report - send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar

Report Overview

Submitted URL
send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
IP
104.26.12.123
ASN
#13335 CLOUDFLARENET
Submitted
2024-03-28 19:40:59
Access
public
Website Title
send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Final URL
send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
send.cm	338619	2019-03-18	2019-08-16	2024-03-27	17 kB	1.3 MB	172.67.70.61
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-03-28	338 B	942 B	143.204.53.97
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-03-26	415 B	414 B	3.72.189.164
killerrubacknowledge.com	unknown	2024-02-27	2024-02-28	2024-03-18	460 B	1.1 kB	192.243.59.20
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-03-27	404 B	86 kB	188.114.96.1
dismantlepenantiterrorist.com	17847	2021-11-01	2021-11-01	2024-03-19	742 B	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-03-28	medium	killerrubacknowledge.com	Sinkholed
2024-03-28	medium	downstairsnegotiatebarren.com	Sinkholed
2024-03-28	medium	dismantlepenantiterrorist.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-03-28	2024-03-28
Pretty URL send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 20:41:00 Last Seen2024-03-28 20:41:00 Times Seen2 Hash 22cecd7e68ec42f34d13f71b07d97419 acb8f2efac543a72ac0034e5741253e02e50aa63 05fa1c6382253595438bcc8ad97adccb57a1c0f312a2bfa13b0d9e262cfb069a Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2023-11-23	2024-03-29
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35:39 Last Seen2024-03-29 19:41:27 Times Seen10518 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	send.cm/static/js/jquery.min.js	93 kB	2023-03-07	2024-04-25
Pretty URL send.cm/static/js/jquery.min.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:49 Last Seen2024-04-25 20:03:56 Times Seen1818 Hash bdce12c949e78d570c8d44e9c2b23508 9afdc4fec954646bd6270caf82f107fdef605bc5 c73b004ebf31b395cf237c3d2b13c1e576f385e04660ceb5f7be163ff3c201dc Loading...

	send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar	1.1 kB	2024-03-28	2024-03-28
Pretty URL send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-28 20:41:00 Last Seen2024-03-28 20:41:00 Times Seen1 Hash 3b3886fcd387b408eda6c71671f1e3e4 319f2089b682c50628a4c146b98109e8ec75adf8 c9ef552f77f4ddecdea800c400bb53ef4ba35129dc95c3d5d5e49d20b8bad009 Loading...

	send.cm/static/js/clipboard.min.js	9.0 kB	2023-03-07	2024-04-24
Pretty URL send.cm/static/js/clipboard.min.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:35 Last Seen2024-04-24 16:14:54 Times Seen635 Hash ad98572d415d2f2452845a6068a913c0 6674f81dd01c76be986cf0a8172d1073e56d7ef4 baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1 Loading...

	unknown	71 kB	2024-03-27	2024-03-28
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-27 03:18:12 Last Seen2024-03-28 20:41:00 Times Seen3 Hash f5c4b6ad731888c608e5988b3a07ac0e e6b92c1407af77c09e1feb8eb9c8800dc350e4c0 a3d9e7e57badf2991c8a980f267e6b17d724c7397350f1d97b8d95da76c98866 Loading...

	send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-04-27
Pretty URL send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-27 20:03:41 Times Seen43179 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	unknown	247 B	2024-03-28	2024-03-28
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 20:41:00 Last Seen2024-03-28 20:41:00 Times Seen1 Hash 23afa01c3f8ff13d0a68a7237e511701 e6fe937317fed3d16087ecc89176044a665b1ef5 7df7674dcd59c02b7d3271850b67f21b1bae734a0e45cbf521ff794a5a21d197 Loading...

	send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js	18 kB	2023-03-07	2024-04-27
Pretty URL send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:24 Last Seen2024-04-27 17:34:40 Times Seen2207 Hash 4a10bcfa0a9c9fa9d503b5a498cac31e c4f6c403e99fb37cb496c3844b332823db7c5837 a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634 Loading...

	unknown	202 B	2023-12-24	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-24 07:49:38 Last Seen2024-04-18 15:35:39 Times Seen33 Hash d4c4525fb689407dbb954dc0a69a6423 6d9c829975342c1636d82495259fe85393b9bb9f 6487011447de42f0ab52e33b026ae76b27ff113c63d345123614ef3f47c81495 Loading...

	send.cm/lib/bootstrap/js/bootstrap.bundle.min.js	79 kB	2023-03-07	2024-04-26
Pretty URL send.cm/lib/bootstrap/js/bootstrap.bundle.min.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2024-04-26 04:19:55 Times Seen15689 Hash a454220fc07088bf1fdd19313b6bfd50 265a733cb7fbc481fd2510a659a85ad55c93c895 7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c Loading...

	send.cm/lib/feather-icons/feather.min.js	66 kB	2023-03-07	2024-04-18
Pretty URL send.cm/lib/feather-icons/feather.min.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:44 Last Seen2024-04-18 15:35:39 Times Seen222 Hash 44dee7fbafd7dc2404fa62713a8398c2 34f8691360e3548d1c9c18534cb0ec38b5c63154 a90582369e8cfed7b41dca4758e2fbe09fccf55b89f0cd0b7d46efd0745db831 Loading...

	send.cm/assets/js/dashforge.js	2.3 kB	2023-03-07	2024-04-18
Pretty URL send.cm/assets/js/dashforge.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:15:58 Last Seen2024-04-18 15:35:39 Times Seen204 Hash 6ede26a7d7238a4ed67bcbdb67b30bb6 581c80a8cfec9844478e3b99b7774221c78d2be9 ccc7d942a1cfa3c238044a4885889799d7b215b5b29b2c48f5db28bececc2040 Loading...

	send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-03-28	2024-03-28
Pretty URL send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 20:41:00 Last Seen2024-03-28 20:41:00 Times Seen2 Hash b1e709b4b6e25532253495a77ba660f5 fe6f3a47185b6f9855ecb2cdd7f062daacf2e842 ea45f19b5aa65b5febbefbe9d9127ba885cdd376eb8fae4720cf11394063a3d8 Loading...

	send.cm/js/share.js	329 B	2023-03-07	2024-04-26
Pretty URL send.cm/js/share.js IP 172.67.70.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:51 Last Seen2024-04-26 06:56:23 Times Seen510 Hash e38522ef9b2fe6940894f9f35a29f407 d5227e21fbae55e23bd87bf084a4049e797d0775 59b3cd5e8d2207976f8f687c84eba22d83cf960318fa8f7a6f31022ef4e69208 Loading...

HTTP Transactions (32)

URL IP Response Size

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff

172.67.70.61

200 OK

82 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
Web Open Font Format, TrueType, length 82076, version 1.1
Size
82 kB (82076 bytes)
Hash
dac78b0f1626eb1aa95d41b488e699c1
a377d0df34945fc45bdc030dc63139bd9cf28a2d
ee6d9467e82f91146b9f71f3ac572d66f4aeed0f261b30ef4765550edc11119d

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: font/woff
content-length: 82076
last-modified: Thu, 17 Sep 2020 12:29:20 GMT
vary: Accept-Encoding
etag: "5f6356a0-1409c"
expires: Wed, 10 Apr 2024 12:16:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1489199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OdUAG%2BOjjDK4hFPWvDkcUZhaIyc%2BdEcV6UmvTfVnjj0GHvKuzk1Bzad7KhjOou4utgdf8zq%2BW6k%2BphXZbn0lYOmBs8NNY%2Bum4s4l0XWddw4fs%2FK2MMjh0ms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b35a6156c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/css/auth.min.css

172.67.70.61

200 OK

86 kB

URL GET HTTP/3
send.cm/static/css/auth.min.css
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
ASCII text, with very long lines (789), with no line terminators
Size
86 kB (85487 bytes)
Hash
f095cdbc5703353ae870aa6fd1504bb8
395b5898fde4cb72dc30e7752bde4e68317fb299
d7091a28d7048b34315acc78d543eb1181751aec851df73f83da7d3b07081116

HTTP Headers

GET /static/css/auth.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/css; charset=utf-8
last-modified: Tue, 23 Mar 2021 17:04:40 GMT
etag: W/"315-5be372d95fefb-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:43:24 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eCHA%2BFHf0lhYvf7M5Z8P1%2B07o%2BQ%2BydJMJoRfkp38XyC407xy2Dg5AJxrR3b1chWNOQVPvic2i%2BeuOanALUsF9DtOz2kFrRVCBvMoStlf7lss0N7gG%2BPSYLY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2b9b256c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff

172.67.70.61

200 OK

82 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
Web Open Font Format, TrueType, length 81760, version 1.1
Size
82 kB (81760 bytes)
Hash
220843e2f1927e726e78ca63f426ce50
d86801f8452cda25025530f406773162decd1458
ae9310191397b69cd6dd015ba0c6f9d674f493d35384f29c9c7d23e3c7df0d24

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: font/woff
content-length: 81760
last-modified: Thu, 17 Sep 2020 12:29:20 GMT
vary: Accept-Encoding
etag: "5f6356a0-13f60"
expires: Wed, 10 Apr 2024 12:16:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1489199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sqMImH%2BK9LZjaJx64KE75N5si8j30xsu2LH1Z8lJqOPtSbNFH6scq98f8JW4U6mKiJbND4jnC8MWzjJjeeBBu05ObK1caUvAN3egfShgp%2BJrwClhMNThYHk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b37a7956c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/lib/feather-icons/feather.min.js

172.67.70.61

200 OK

92 kB

URL GET HTTP/3
send.cm/lib/feather-icons/feather.min.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (62372)
Size
92 kB (91724 bytes)
Hash
44dee7fbafd7dc2404fa62713a8398c2
34f8691360e3548d1c9c18534cb0ec38b5c63154
a90582369e8cfed7b41dca4758e2fbe09fccf55b89f0cd0b7d46efd0745db831

HTTP Headers

GET /lib/feather-icons/feather.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"101aa-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:17:25 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DfFTa72YQEzEVdsuTwL9MVSLaxbqLxQWVWA65GzYmhLop4rERiPfzNiUGazgul2DuXmyRn13uhXcCBJyjXvejmbfrpkrk6kWPP6hEdaT6dtcUSzRln2YxL8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2b9b556c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.70.61

302 Found

0 B

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 28 Mar 2024 19:40:33 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bYZePJg%2BB10fpTL42%2BQZdtZfs6epncEObuSDj1rjXn3nijfhQYeQDPIKr9kdTLL8MA%2FxpqitVD24eXVJz6PNM5Xp3RCLrFI5x43xtTNN6OiihfCx8MXDaI8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86ba17b3cacf56c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.70.61

302 Found

0 B

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB; cf_clearance=dqpgKYsAcvWC6qE_8_JYu9Is1Bb3YgNrD0XA.mic90U-1711654833-1.0.1.1-lorCgiOCe9ELD3DDM4CeGWXvEgPj4NewXZ4JTNoekw33SPtSeKC.PUt1OPH5DoRZwNn6QTes7_UrmSIQAQFnbA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 28 Mar 2024 19:40:33 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V3vMnywyMcSGjl%2BKVtpQZ0UD39QBRyakT6G%2BODMhCEe72TAma537RDqly%2Bon0jvqqMmwM1hVpDKOvqDnG7NSqjbsDiJfuRqnDleSwSUdNKruO7rsj%2BD6xzU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86ba17b52c5656c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff

172.67.70.61

200 OK

82 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
Web Open Font Format, TrueType, length 82076, version 1.1
Size
82 kB (82076 bytes)
Hash
dac78b0f1626eb1aa95d41b488e699c1
a377d0df34945fc45bdc030dc63139bd9cf28a2d
ee6d9467e82f91146b9f71f3ac572d66f4aeed0f261b30ef4765550edc11119d

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB; cf_clearance=dqpgKYsAcvWC6qE_8_JYu9Is1Bb3YgNrD0XA.mic90U-1711654833-1.0.1.1-lorCgiOCe9ELD3DDM4CeGWXvEgPj4NewXZ4JTNoekw33SPtSeKC.PUt1OPH5DoRZwNn6QTes7_UrmSIQAQFnbA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: font/woff
content-length: 82076
last-modified: Thu, 17 Sep 2020 12:29:20 GMT
vary: Accept-Encoding
etag: "5f6356a0-1409c"
expires: Wed, 10 Apr 2024 12:16:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1489199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hCCwyFAVsOFnUV6hzlpFjlcvz6odQWl1oGys9ykR2h8FCisYeaAUyimhkNT07sqXEFBJasIeh%2FE7s2s8t4u273I5FR4%2B7tbFWCejT%2F%2F4FJKnsj1YY3FE9Oc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b53c6b56c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Regular.woff

172.67.70.61

200 OK

77 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Regular.woff
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
Web Open Font Format, TrueType, length 77420, version 1.1
Size
77 kB (77420 bytes)
Hash
2afba28a9ce96315436db858db163c47
550d4374a60527b4f68d4700019aaac11a9140a2
b51d665d9cfebb31a2b61491bf408a172a5791166a0eb99a57ae4a7acbcba0d4

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Regular.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB; cf_clearance=dqpgKYsAcvWC6qE_8_JYu9Is1Bb3YgNrD0XA.mic90U-1711654833-1.0.1.1-lorCgiOCe9ELD3DDM4CeGWXvEgPj4NewXZ4JTNoekw33SPtSeKC.PUt1OPH5DoRZwNn6QTes7_UrmSIQAQFnbA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: font/woff
content-length: 77420
last-modified: Thu, 17 Sep 2020 12:29:21 GMT
vary: Accept-Encoding
etag: "5f6356a1-12e6c"
expires: Wed, 10 Apr 2024 12:16:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1489199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0o6uDlWVELHKKbbWBpQ2uZiayHEG7A4umRu87kP9AANBfGvopraSLNPQaIBXK8E8%2FXZbglf%2BONr2LsQG6JKERTXSBCH9%2FrXS8d6c3yUUBbAqxvxMfyrGO%2Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b53c6e56c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff

172.67.70.61

200 OK

82 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
Web Open Font Format, TrueType, length 81760, version 1.1
Size
82 kB (81760 bytes)
Hash
220843e2f1927e726e78ca63f426ce50
d86801f8452cda25025530f406773162decd1458
ae9310191397b69cd6dd015ba0c6f9d674f493d35384f29c9c7d23e3c7df0d24

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB; cf_clearance=dqpgKYsAcvWC6qE_8_JYu9Is1Bb3YgNrD0XA.mic90U-1711654833-1.0.1.1-lorCgiOCe9ELD3DDM4CeGWXvEgPj4NewXZ4JTNoekw33SPtSeKC.PUt1OPH5DoRZwNn6QTes7_UrmSIQAQFnbA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: font/woff
content-length: 81760
last-modified: Thu, 17 Sep 2020 12:29:20 GMT
vary: Accept-Encoding
etag: "5f6356a0-13f60"
expires: Wed, 10 Apr 2024 12:16:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1489199
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aodG8vkBN1XBs9tLa%2FuO%2Bq4Jy8AQPPdETsFBK2fTbuSGaUFItdkKCiu9Orf0bRvRT7DRmwlh%2B1qqOUyxZFRmUh%2B0anP92dC3FFO10ZxOiArXCZsraRI4Vyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b54c7456c1-OSL
alt-svc: h3=":443"; ma=86400

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e0720567b89e85a074c0401003b4b7fb
4c9bd983308c50da9266d2d5a4a5e010b6736408
520b6f66e6827aed3facc07d0cdeb0f06ac5785dbf68439e82a20face8555e5c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 28 Mar 2024 19:40:33 GMT
Last-Modified: Thu, 28 Mar 2024 17:52:34 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LzMmd4xQmqusMfurmW2GLDhPMxmgoId9kT6YsvTdNPPpVzAmDCnAhA==
Age: 6479

proftrafficcounter.com/stats

3.72.189.164

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.72.189.164:443
ASN
#16509 AMAZON-02

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
294d46334ad9bc74a581a9749eae3785
290d5983e05fff2459f78b97ce8417a91f33f064
0bab3afbda5f23a728c51fc872e7a04a47621c05825a51eec59dda608f32673c

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://send.cm
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=db3c85c0-4b04-488b-a5d9-cb7a53ab84bc:1:1; expires=Sun, 26 Mar 2034 19:40:33 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js

172.67.70.61

200 OK

10 kB

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, ASCII text, with very long lines (7865), with no line terminators
Size
10 kB (10409 bytes)
Hash
22cecd7e68ec42f34d13f71b07d97419
acb8f2efac543a72ac0034e5741253e02e50aa63
05fa1c6382253595438bcc8ad97adccb57a1c0f312a2bfa13b0d9e262cfb069a

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB; cf_clearance=dqpgKYsAcvWC6qE_8_JYu9Is1Bb3YgNrD0XA.mic90U-1711654833-1.0.1.1-lorCgiOCe9ELD3DDM4CeGWXvEgPj4NewXZ4JTNoekw33SPtSeKC.PUt1OPH5DoRZwNn6QTes7_UrmSIQAQFnbA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=UTF-8
content-encoding: br
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uKMYo5XZMTiGBTkNY7SOOSIyXNeVPH0GhaRZXtG0Y1quxrS%2Fr97QM%2BpEeKFSTBAH8GMdi8hyUL1ucKbQwpG%2BrE1%2Bsz%2F1QUVlKSFt7RzNe2KJ691XpedldVw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b55c7f56c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js

172.67.70.61

200 OK

4.1 kB

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, ASCII text, with very long lines (7830), with no line terminators
Size
4.1 kB (4145 bytes)
Hash
b1e709b4b6e25532253495a77ba660f5
fe6f3a47185b6f9855ecb2cdd7f062daacf2e842
ea45f19b5aa65b5febbefbe9d9127ba885cdd376eb8fae4720cf11394063a3d8

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
content-encoding: br
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AVMK%2Fo0pc%2FSg5V30nhbnrTlk4oVhmma8bzNvXndpls13ZRlLuOrsxOvisJ9wMUzi9cvSXl51W4Oc8XPinGmRRCUI3Kdz6LGM6eHaKrF9F0n8VX%2FNzhSwkL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b3eafb56c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar

172.67.70.61

200 OK

78 kB

URL User Request GET HTTP/2
send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type

Size
78 kB (78534 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 28 Mar 2024 19:40:32 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=0;includeSubDomains;
expires: Wed, 27 Mar 2024 19:40:28 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2UxhUfa8x3XdbnLMhIp0iAnhoXIyHzdxyAFiD7Kbv1lZxELDzxHueETZOXDTy5AurHCJ2ZmvyQWsxkjaxQl2GDlI3C3TzythEcZHbErGF1at9QguhSKcEbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; domain=.send.cm; path=/
lang=english; domain=.send.cm; path=/
__cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB; SameSite=None; Secure; path=/; expires=Thu, 28-Mar-24 20:10:32 GMT; HttpOnly
server: cloudflare
cf-ray: 86ba17b03de3568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

send.cm/qr/0

172.67.70.61

200 OK

14 B

URL GET HTTP/3
send.cm/qr/0
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
13fdcfd8c40a252a0b03c1ce082da7fd
fdc40291b31cde2c6f3134408974a51d2c2a13dc
b44bfeecfe0a5844676a3d713fab5608c1491b477b68ae423fb9c7b2a52c3c61

HTTP Headers

GET /qr/0 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hKI1M68E63Jb8wpaHyDoXJrR%2BO9kLvM8qoy%2F0t7rEdH49j1jZR54G8FmJbQS9dueEdhShESP%2FJ1v0Ce7l970e%2BxxJyllNyKj4NC8D0Bzsyg2W4zgM73%2BnfA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2b9b456c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2

172.67.70.61

200 OK

74 kB

URL GET HTTP/3
send.cm/lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

HTTP Headers

GET /lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-length: 74256
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: "12210-5ae64b14b0680"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cache-control: max-age=259200
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5l2ZR7%2B5eHO77nCkQtqr%2BCqdO8vzRw5QWrptlEHRy2CLFnIeEHhCTOZmY3oags60FcGS5oc9w7T%2BjnW7rjDhuZVYBnUdZWSr5DONvUj0g2chJAoGRAzxTgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86ba17b36a6b56c1-OSL
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/86ba17b03de3568f

172.67.70.61

200 OK

0 B

URL POST HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/86ba17b03de3568f
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/86ba17b03de3568f HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12207
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB; cf_clearance=dqpgKYsAcvWC6qE_8_JYu9Is1Bb3YgNrD0XA.mic90U-1711654833-1.0.1.1-lorCgiOCe9ELD3DDM4CeGWXvEgPj4NewXZ4JTNoekw33SPtSeKC.PUt1OPH5DoRZwNn6QTes7_UrmSIQAQFnbA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=db3c85c0-4b04-488b-a5d9-cb7a53ab84bc%3A1%3A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=0hcXKqVtvlObRAUM_aFlXp7DRaH2LBPcDLBDv5nYsa8-1711654833-1.0.1.1-dh_z5XiOKvwU9L1uxbcWGpHuoPx_jQEH7nPCVdGl9RN.Mp0w.emyVOEuiM8VvjEjPzzePlm2BVhLxzwdNZMQCQ; path=/; expires=Fri, 28-Mar-25 19:40:33 GMT; domain=.send.cm; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nOVMNsGJwIo1fdMpCpfsp0IuCb4whmUEcTijr%2BYOcdZ3Bh0Yrvz7i4iZZvSYeGR2k8xqYsM9G9BhNEgHvKwRPB70FVdhzY43xvuhsi7YybsfDj2w62fY6gE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b67daa56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css

172.67.70.61

200 OK

6.8 kB

URL GET HTTP/3
send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
ASCII text, with very long lines (7103), with no line terminators
Size
6.8 kB (6752 bytes)
Hash
3a4e6fe620850879f073fbeb7d915969
1ea842aabcf1d80ffd383b84c8da0650baefc68f
5a072970160446a139243170334741139bd414e1285dfd785bd552db7c263f80

HTTP Headers

GET /lib/@fortawesome/fontawesome-free/css/fa.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/css; charset=utf-8
last-modified: Mon, 31 Jan 2022 10:52:41 GMT
etag: W/"1a60-5d6de95650b32-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:33:00 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XIWiQv82BSevOy2oElRm9R8R4rlHUVjkoTUBEMeiauSlkeAJgphgFeuHYk7Hrss03GmgCC3vP3DQOxDFZ%2FU4bdgV25b7Qv3Kju9aTnl8fzhZhqGemDNK0DY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2a9b056c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/assets/js/dashforge.js

172.67.70.61

200 OK

2.3 kB

URL GET HTTP/3
send.cm/assets/js/dashforge.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, ASCII text, with very long lines (2286), with no line terminators
Size
2.3 kB (2271 bytes)
Hash
6c469db96744ab501de112c9fac8f15e
a9795764586d64d918bb8a433b1d3043a61a6a70
d7d2ab9143404f0500f004976b62f44516128747d69ef3994a9a18b479173efe

HTTP Headers

GET /assets/js/dashforge.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: max-age=259200
cf-bgj: minify
cf-polished: origSize=3370
etag: W/"d2a-5d2f044f765a3-gzip"
expires: Thu, 28 Mar 2024 19:46:22 GMT
last-modified: Sun, 12 Dec 2021 10:17:54 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=emTiwN0dRISLcrWcb%2BS64LhWkT9NNfpe4yVO41Req%2FS57d6qD7V7K5KIEHtLIIEvwioIBLz8YVwtD3y5xxt1vMyMaBv%2BE%2FIbXNI0DdlKVzpLqC46S8TgrsE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2b9b856c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/js/clipboard.min.js

172.67.70.61

200 OK

9.0 kB

URL GET HTTP/3
send.cm/static/js/clipboard.min.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9258), with no line terminators
Size
9.0 kB (9034 bytes)
Hash
db9c29b300b6e957b611f437fe482b0c
a7ca1b86b66aa417e5ded8bddf571bd28775d7d1
02b7776bbff33fa250331338c8a085b5447d8575283a7943519c56f72215b2b2

HTTP Headers

GET /static/js/clipboard.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 14 Dec 2022 18:00:20 GMT
etag: W/"234a-5efcd82834534-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:30:43 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lygWNSqMWkISZFeA2uuc7g%2FFMFiEeWq7Ugvhl4V1vhDaz2dZSWsZcjqTptXe7WOJ17H36wT3rIEROot87v5I7pB7VVnve0Hlm6VMDaaYghlGXSxZnU9Ea0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b34a4456c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

killerrubacknowledge.com/9c/ed/24/9ced2453f41586bc39632e754938332a.json

192.243.59.20

200 OK

380 B

URL GET HTTP/1.1
killerrubacknowledge.com/9c/ed/24/9ced2453f41586bc39632e754938332a.json
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerLet's Encrypt
Subjectkillerrubacknowledge.com
Fingerprint5B:B4:B1:33:2D:4A:18:95:B4:2B:14:69:44:BD:AA:DA:4A:02:B5:8C
ValidityTue, 27 Feb 2024 23:07:24 GMT - Mon, 27 May 2024 23:07:23 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (464), with no line terminators
Size
380 B (380 bytes)
Hash
12ea5e628ddec0684eee022c321c99bc
8cd6a39445ad451a3da63bcb561fdb1923bbfa26
60d4b0f5a3f14d2405f218f8c48435e18d757bb99ea5917ae1896862123b6115

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9c/ed/24/9ced2453f41586bc39632e754938332a.json HTTP/1.1
Host: killerrubacknowledge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 28 Mar 2024 19:40:34 GMT
Content-Type: application/json
Content-Length: 380
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f193b7e3ff37a60f38f3f50976d0a61a
Strict-Transport-Security: max-age=0; includeSubdomains

send.cm/static/css/dl.min.css

172.67.70.61

200 OK

180 kB

URL GET HTTP/3
send.cm/static/css/dl.min.css
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
180 kB (179945 bytes)
Hash
3e85e3b581d51ddba21136119002fc2d
038a7216f7187936b4f4e5bee0975bf44e3e1449
dde25a807ebc087b35d1bbe9b3030ea528a52e414ce29a7894abd937bf67e7c6

HTTP Headers

GET /static/css/dl.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 07 Sep 2023 13:24:21 GMT
etag: W/"2bee9-604c4c72211a7-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:40:58 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FJbUcidlxSzGNsvsgoYWF9Vn8bMF6xEeGZjMvKRJvcKIMnOECX7B0GN1%2Br5R1WcDFvX2EWKmEla9ql4KNNQo%2BbEhXjui5N3zeUws9C9IKLmLh2FX%2FNiTCB4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2b9b156c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

172.67.70.61

200 OK

12 kB

URL GET HTTP/3
send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript
last-modified: Fri, 22 Mar 2024 11:37:58 GMT
etag: W/"65fd6d96-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T0nKsdMftOdgDbhpMHDjUxgUDs0f1vUr20WbRwfmKz7o70mU4m7xRkWiRMrvTuKvH4UBgzg1prJri96zb5%2FDhON8M9f%2BmWdMcQun9ZgF49WpxkLCKUUqeI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86ba17b2b9bc56c1-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 30 Mar 2024 19:40:33 GMT
cache-control: max-age=172800, public
content-encoding: gzip

downstairsnegotiatebarren.com/sfp.js

188.114.96.1

200 OK

86 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type

Size
86 kB (85468 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 28 Mar 2024 19:40:34 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 732807964f9711f9844f075146bcf76e
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 28 Mar 2024 19:40:34 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wtx9RwplHvUcWTjGksIgfFZgrU0Ri9a5qaXeM7XRD%2BI6hmPDRKMqUBSKidx664EYpDke7mnabNVllhqZbZ%2B2xOOOPXz0TjDJo4JIpI3%2FC8qm9RpsTs2W4wYm%2FlR8t6QrYmuPFH35pLArQP4yqA6p3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86ba17ba7fbc56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dismantlepenantiterrorist.com/pxf.gif?uuid=db3c85c0-4b04-488b-a5d9-cb7a53ab84bc&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19

0.0.0.0

0 B

URL GET
dismantlepenantiterrorist.com/pxf.gif?uuid=db3c85c0-4b04-488b-a5d9-cb7a53ab84bc&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP
0.0.0.0:0
ASN
#0

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=db3c85c0-4b04-488b-a5d9-cb7a53ab84bc&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js

172.67.70.61

200 OK

18 kB

URL GET HTTP/3
send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, ASCII text, with very long lines (18216)
Size
18 kB (18291 bytes)
Hash
4a10bcfa0a9c9fa9d503b5a498cac31e
c4f6c403e99fb37cb496c3844b332823db7c5837
a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634

HTTP Headers

GET /lib/perfect-scrollbar/perfect-scrollbar.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"4773-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:39:45 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8XxAsqJJIi5Dc3KF0UxXz6SEh1ATN%2FaVqBmyXilmn%2BCa5W6RmpF6OrYq%2F4bfJFpCEk7u5f4JOCXOV9va7b4eIuPlGDSoy68Q2kRr2FvgzsnRrAORxpTKRxo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2b9ba56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/js/share.js

172.67.70.61

200 OK

329 B

URL GET HTTP/3
send.cm/js/share.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
ASCII text, with very long lines (332), with no line terminators
Size
329 B (329 bytes)
Hash
1d2236286294d62230ccc88e96b5297b
de15f3e22b3e2719f872e47a63b5702c48835a3f
c482daeb5dbeb1b8b60adbd8a47e025cbfe19ea0a0f798d8f77b862781694dbc

HTTP Headers

GET /js/share.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: max-age=259200
cf-bgj: minify
cf-polished: origSize=354
etag: W/"162-5ae64b15a48c0-gzip"
expires: Thu, 28 Mar 2024 19:46:22 GMT
last-modified: Thu, 03 Sep 2020 08:39:39 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VThy%2F5JFfnrAxmsNO11qdQW5hx6tWq6wUbVJH4p9PJ5BjzQBWS3zmV6NxE%2FBcMaTkEFy%2FBqXh%2BJylh3UF9CDbMDJBdkoMjjevyIQJMWlKvHTCkggMmXERlA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b34a4856c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/favicon.ico

172.67.70.61

200 OK

65 kB

URL GET HTTP/3
send.cm/favicon.ico
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 64x64, 32 bits/pixel
Size
65 kB (64686 bytes)
Hash
22dab3b36a487940c539e179b7edd7ea
ad1d193daab9eb56c4d27b10e0f0638307c262cc
b64c225956915ee8b619ea190276ebe838880d3a16793a5614487e8be5b5d3bf

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 03 Sep 2020 08:39:39 GMT
etag: W/"fcae-5ae64b15a48c0"
expires: Thu, 28 Mar 2024 19:42:48 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bzg9FZHDcjN9FvEpROewChiy02MVgV%2BHy9NUxptu00dXklOGJgXMUknSfrD%2FYPmRC5hB6anYWO2L96Htcl52Wiz6EJWjiKR5E2mOborl41mQcJ%2BwmpWabCo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86ba17b3dadf56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/86ba17b03de3568f

172.67.70.61

200 OK

0 B

URL POST HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/86ba17b03de3568f
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/86ba17b03de3568f HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12208
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=dqpgKYsAcvWC6qE_8_JYu9Is1Bb3YgNrD0XA.mic90U-1711654833-1.0.1.1-lorCgiOCe9ELD3DDM4CeGWXvEgPj4NewXZ4JTNoekw33SPtSeKC.PUt1OPH5DoRZwNn6QTes7_UrmSIQAQFnbA; path=/; expires=Fri, 28-Mar-25 19:40:33 GMT; domain=.send.cm; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ihBIxhcQi35K9blu6h3IhgsaTfFkoMiuEIJY0Kk8zkR2sJOFm6seyyGj%2FWcsea%2FKPZt21gWJPq49Rs7Px95qAiQY7jjPKnhbmGl%2Bw8RiGyRmNjgruqCHCtM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b4ec1156c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/js/jquery.min.js

172.67.70.61

200 OK

93 kB

URL GET HTTP/3
send.cm/static/js/jquery.min.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, ASCII text, with very long lines (32072)
Size
93 kB (93064 bytes)
Hash
bdce12c949e78d570c8d44e9c2b23508
9afdc4fec954646bd6270caf82f107fdef605bc5
c73b004ebf31b395cf237c3d2b13c1e576f385e04660ceb5f7be163ff3c201dc

HTTP Headers

GET /static/js/jquery.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 26 Sep 2020 12:00:16 GMT
etag: W/"16b88-5b0362d29f400-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:29:54 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sqx3FaUh53A%2BD7tLLdGizBC0aTfigbW8m92Nnzk39a5HZaLjPtelMHfcoKnb2srtFL8O2wIqOaX5NbIaxA1lTk1VxqSfUEiNIVfkT2vnm%2FKb1874oU%2BeJlk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b2b9b356c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/css/skin.dark.min.css

172.67.70.61

200 OK

26 kB

URL GET HTTP/3
send.cm/static/css/skin.dark.min.css
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
ASCII text, with very long lines (25929), with no line terminators
Size
26 kB (25929 bytes)
Hash
0c1519bb7bb18406903533d589f5091a
9faaba81e49861e2f92b087ab0721b26b5e1e749
bb89ab9033d0932aa8517c1d97bfd7d60b6365f25eccd99648658e3ff487d7ec

HTTP Headers

GET /static/css/skin.dark.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 28 Mar 2024 16:57:41 GMT
etag: W/"6549-614bb6be35bd2-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:29:25 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e3Ip8IAAdW8rvM%2BgnC%2B%2BPoyfiBfhteKt42kYTnn0lUspLDD1a6CwvYLbtP6k3RXifegT2MF0JiKv2fh%2BYM1qaZmsB6Lo6N3vRZqOXkGdKjyBvV98HGrjFDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b32a1b56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/bootstrap/js/bootstrap.bundle.min.js

172.67.70.61

200 OK

79 kB

URL GET HTTP/3
send.cm/lib/bootstrap/js/bootstrap.bundle.min.js
IP
172.67.70.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint1F:3D:C1:07:88:0B:BE:51:BD:0E:7A:9A:E6:AE:CD:B9:52:BF:91:A2
ValidityWed, 31 Jan 2024 21:25:47 GMT - Tue, 30 Apr 2024 21:25:46 GMT

File type
JavaScript source, ASCII text, with very long lines (65297)
Size
79 kB (78635 bytes)
Hash
a454220fc07088bf1fdd19313b6bfd50
265a733cb7fbc481fd2510a659a85ad55c93c895
7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c

HTTP Headers

GET /lib/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/4gop7un2nbnz/e55ba0fbfff14245f9f4fbe0d208a11e.rar
Cookie: c_7hyj5tegwm4sd1=4gop7un2nbnz; lang=english; __cflb=0H28uocK7xWY9ysKQ1cySuqaJVQCCopLs1SxogFEgZB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 28 Mar 2024 19:40:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"1332b-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Thu, 28 Mar 2024 19:28:27 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 1388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mKdFXdR7%2BRiGdUfCjxjB5Wrmd4jK7d7BcxVU0oblJr2f0%2FzoYe2E9%2Ff%2Bmit8q%2BgRDyJ0e3czxe%2BnDP%2FyL04wl74qaeIHBqTO0J6sRkBeygauuCSBDRuP2r4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86ba17b34a4756c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by