Report - www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY

Report Overview

Submitted URL
www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
IP
104.21.22.23
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 03:07:34
Access
public
Website Title
Google
Final URL
www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.claimbigwindraw.top	unknown	2023-06-27	2024-01-05	2024-04-14	12 kB	146 kB	172.67.202.11
www.claimbigwindraw.top	unknown	2023-06-27	2023-10-17	2023-11-26	727 B	10 kB	172.67.202.11

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed
2024-04-24	medium	claimbigwindraw.top	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY	308 B	2024-04-24	2024-04-24
Pretty URL www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY IP 172.67.202.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 05:07:35 Last Seen2024-04-24 05:07:35 Times Seen1 Hash 907777b650dbd5381c483aa6ba486362 9344f9392a5af16546d64f20e51b0eca0742ede9 55585f10e4c66594bb589f9273a549ccaabfdc4236086cc1bbb43ef234d8c022 Loading...

	www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY	594 B	2024-04-24	2024-04-24
Pretty URL www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY IP 172.67.202.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 05:07:35 Last Seen2024-04-24 05:07:35 Times Seen1 Hash 9529f92df62e70b5242c5eb67acf1aff 2dd4846a6de848e99c89098c39d40febae3bc85e 56fe0d71996a79b0021e6ca904ad4eca8c27457cc769b7ca7d5e34b376fba487 Loading...

	www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY	78 B	2023-03-07	2024-04-30
Pretty URL www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY IP 172.67.202.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:25:16 Last Seen2024-04-30 19:44:15 Times Seen43 Hash 985462355c280bd73f8d0f5aa42fae66 9751c8a78d12bf5b18d275d59f347f9e78275d86 001d88eda4af893407ae71661fb48feeebf2fa8b5772f1f6ef2a99be923f238e Loading...

	cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/confetti.js	5.8 kB	2023-03-07	2024-04-24
Pretty URL cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/confetti.js IP 172.67.202.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:25:16 Last Seen2024-04-24 05:07:36 Times Seen20 Hash 569f8cac29e28c0c0c3840eb3ea57f97 c063225fbdc6653a0881ae93513215ca4cf0e370 620eb11860249bad4de011d39202d9b01ef791565fc332e79047c0e5429e7fba Loading...

	cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/script0.js	4.3 kB	2023-03-11	2024-04-24
Pretty URL cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/script0.js IP 172.67.202.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:51:53 Last Seen2024-04-24 05:07:36 Times Seen9 Hash 424a00082c13a4b9f8151fda740c5b97 39165df2985bac750db9c7d402982499f7b843ec 77114571749c83601b02c250d17dd2ee4ecbe90ee381ad56cd92b7d21fac9ab0 Loading...

	cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/audio1.js	349 B	2023-03-07	2024-04-24
Pretty URL cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/audio1.js IP 172.67.202.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:25:16 Last Seen2024-04-24 05:07:36 Times Seen17 Hash f18441557cc617ee1b3a0d8be7af32db 24db320f59da11c3c2e41ab24d02f4dad4083bae a066ba39b39fcbd933227e93b5db6c992250c40324eff333c311aaecefa6bb78 Loading...

	www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY	726 B	2024-04-24	2024-04-24
Pretty URL www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY IP 172.67.202.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 05:07:35 Last Seen2024-04-24 05:07:35 Times Seen1 Hash 17a23dba0e9820f09f33b7feb4b4f69a f23b33bf719f355dfce8cc2acf971ae3d2a6dfa3 de65ab1c0d9c625c99ca9ec3cbd9fedc519a8820277070866dd09d803b33ea02 Loading...

		Size	First Seen	Last Seen
	#1 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11	2024-05-05
Pretty Observations First Seen2023-03-11 11:15:57 Last Seen2024-05-05 21:16:12 Times Seen2156 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

HTTP Transactions (25)

URL IP Response Size

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_type/gsw2022/style1.css

172.67.202.11

200 OK

35 B

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_type/gsw2022/style1.css
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
ASCII text
Size
35 B (35 bytes)
Hash
170cbaaa737111ee215256fbdc1e8b83
ead31b1aa23c8a37d7160ec2b1fbe0713414db09
c64fe04adedf49610b35b2829c6c365ddfff139e21ba59111102897793ffdae6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_type/gsw2022/style1.css HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: text/css
content-length: 35
x-guploader-uploadid: ABPtcPrqvq7tgYIe7yyBqGQ4g6q5rK11Il_ygwFnMIhd3RrvkXLQtpTGSQYphOjLoLey-mR4qd4Mesc98g
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "170cbaaa737111ee215256fbdc1e8b83"
x-goog-generation: 1667220702932740
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 35
x-goog-hash: crc32c=7Kzw3A==, md5=Fwy6qnNxEe4hUlb73B6Lgw==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=91g4552iqtUoWQSnDlY3%2B0GhEDKQP60RkKC9r%2BowWU5zSHsjurAXCGyh78HWm4KIZP8jfH0WGCcbq5EkiCI%2F8d1IBIc8HeXVtwP2atRb%2B8eENBel%2BNoSP9elkATI8sUUW4b8g8XhQFCIHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a64a03569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_okeyword/ipe14/pz.jpg

172.67.202.11

200 OK

2.6 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_okeyword/ipe14/pz.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 120x144, components 3
Size
2.6 kB (2579 bytes)
Hash
ba606c35ad4c46da82d0f90705e1f63c
f610573347c17318ef231987caf005cb6c923842
1250d628dd7228b333073e6df6ca4783b94a3cdbca8c280b238acf78acbf2817

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_okeyword/ipe14/pz.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 2579
x-guploader-uploadid: ABPtcPr5pZvqvsBO7K-iIPVGIpEjpiDuIWb5VSsHB_cq7dO2RFGePafOZT2dPnvag4iPI8XH-5U
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "ba606c35ad4c46da82d0f90705e1f63c"
x-goog-generation: 1667220702847563
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2579
x-goog-hash: crc32c=Z7T95w==, md5=umBsNa1MRtqC0PkHBeH2PA==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qgGXRvCRpVMQL5ZXPgCvAuEqBJApbQjDa%2BuqSYxl0IyY6D5LVcRMc5Ooh6NZfxGRmOangQeroOlfvOx3ORHXSQL9rVt8FQrI12cGehRTwSHWuduIAUpvwVjRTXAqR5%2FHq6JwIUeUoRQuqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a0f569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w8.jpg

172.67.202.11

200 OK

1.3 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w8.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3
Size
1.3 kB (1340 bytes)
Hash
78fddcaf244f729ef63e328e049f2110
e6f80bbc3c7e2d1c23ddfb9ceaf73c359647ce0f
6ece261ffa4d54c68f8fc1b0441fe423a121d7f4bdfd72613e9187e310944ae1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w8.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 1340
x-guploader-uploadid: ABPtcPrjlkFA6eaqree8iKexTD8i4xALTAFUk6HZiWRGCsS5wCPj1J9LvNiDcjB-L48XfMcyCOo
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "78fddcaf244f729ef63e328e049f2110"
x-goog-generation: 1667220702876447
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1340
x-goog-hash: crc32c=bJkVcw==, md5=eP3cryRPcp72PjKOBJ8hEA==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nm9Qs57%2F3cXVlNZz9MFq0x7nIz15vDsQD06LM%2F9BEohAlTMfgnZ%2F2XJubzHaD%2Bb8DD0qkw5ONjGp080atXL8nEbL5q%2B5mEndobPgTeI7aEucuTyR8pFUYV7k%2B9beulQnUUWSwaELr09%2FpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a1d569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w1.jpg

172.67.202.11

200 OK

1.2 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w1.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3
Size
1.2 kB (1182 bytes)
Hash
309e0c6e696ab0d985dcac8a2043e5a3
e69adc2f0232d33accd670005f52e72431f5893b
a501e4ab792d9c068357fef9f2cd69ebaedce0dbb67f4f861696736dc41fbd4f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w1.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 1182
x-guploader-uploadid: ABPtcPqHcBvdoXu6SXmYC0fpqIYqFLA5BPKnDCJ5sLReW3mpHWJI_F6Ku_7nuKy3MVDAjf-a07xW8hrQcA
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "309e0c6e696ab0d985dcac8a2043e5a3"
x-goog-generation: 1667220702778462
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1182
x-goog-hash: crc32c=VL6e0A==, md5=MJ4MbmlqsNmF3KyKIEPlow==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3QcRjBhbZh1HJTYqWBPLZ79xHSkZjj3gh2JAROsWSt7NIIAndLVP3lJl98l58PYAMJLFIKe4Ls04QeDveLjF%2BoNX76l8itD6H%2FvC2aHqvPUMoYT%2B%2Fvl0X5iaK0AQaUOzc4s53QAIJbF8vA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a16569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w2.jpg

172.67.202.11

200 OK

950 B

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w2.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 48x48, components 3
Size
950 B (950 bytes)
Hash
62a261739e9a386d39d542903d5ab050
6cc87f77a580ce13068a1324b397070db3817511
669c7de8cc4685bb673f13db0b8de84fd8142005c4db680cbe35fad7b852c631

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w2.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 950
x-guploader-uploadid: ABPtcPpwh4XPSvLC2shflmL_kO0ZlgODcWOy5gOhK70X6YEfo9NCBJPlDctJ6y0pmXep4WylmWI
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:43 GMT
etag: "62a261739e9a386d39d542903d5ab050"
x-goog-generation: 1667220703868439
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 950
x-goog-hash: crc32c=2LDN9Q==, md5=YqJhc56aOG051UKQPVqwUA==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a5kMFOHT8a8d8P1dOO3%2Bv15vAA6kkECP36NTXryKI0ru1jXojZu984NMbExoPWwOeT16aSYuqNUtm7M4nfM7shDqGP5jSaF6p3TK6Q8Yfchsh%2Fs%2FDCisVsUKvzEMxv6y90dbJQ4RQZ8d4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a17569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w9.jpg

172.67.202.11

200 OK

1.2 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w9.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3
Size
1.2 kB (1172 bytes)
Hash
19fdf1324a5920f70b9be0dcd7a59590
3bf1ae07a2b6cc66a9451e380f5cfe69d5fa0c3a
693cd7b96cc6f528b604624a2ba915041b093203d956986fe4f57f1f230c7ad9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w9.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 1172
x-guploader-uploadid: ABPtcPqt4WhBChLgKwZ28kZvaCtGK3njHMBZUgNTtvhvFoHUo05nushfXI9I0RH22Gg3TujCa7uMfR8LjA
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "19fdf1324a5920f70b9be0dcd7a59590"
x-goog-generation: 1667220702851835
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1172
x-goog-hash: crc32c=mJlmDw==, md5=Gf3xMkpZIPcLm+Dc16WVkA==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JjgdNjJfQbAY1T2Y9rwjSpf9cgRObXAQK1o3Ow54zYNkF5LdgRP1cjgU9PzDxHA4NYW7hQ2nLBE85lczppOpG0exg6lzsO5CDMdblXBMO5Ofvz4u%2BGb5Sg51oV88oy4a53RGl3dXTCiDAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a67a1e569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w5.jpg

172.67.202.11

200 OK

1.3 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w5.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3
Size
1.3 kB (1337 bytes)
Hash
d3a09cd99db03d6956fc6823501a54ef
4d79137e1c2a2fd217c1afeccc8ad72e837b221c
c522456471f528146faf2bd9f46bd771e11fd37016a819cf9106a996e8affcb4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w5.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 1337
x-guploader-uploadid: ABPtcPq8GEVrQZmXRiSeoyQvLQgTmUvNGUWfdQT56rWzzfyXPCGo_MAqk8slRF-RLX2wvYv0ORt0PVZ-dg
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "d3a09cd99db03d6956fc6823501a54ef"
x-goog-generation: 1667220702924184
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1337
x-goog-hash: crc32c=XCLv6A==, md5=06Cc2Z2wPWlW/GgjUBpU7w==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sDgMk4lAyLHpbZkuHuWT58E0GEW8lXBQg5gWnPY15n7GkkNhFUq2tgsApN37jGPIfb%2BSnMA9yw7z5bvUzx5yf2bsGmAhPw7cp2kTfiQYpHdlxwPpoFc6ylQdtML7aWJJxJIYV0Ro2vj2gw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a1a569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/audio1.js

172.67.202.11

200 OK

349 B

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/audio1.js
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
ASCII text
Size
349 B (349 bytes)
Hash
f18441557cc617ee1b3a0d8be7af32db
24db320f59da11c3c2e41ab24d02f4dad4083bae
a066ba39b39fcbd933227e93b5db6c992250c40324eff333c311aaecefa6bb78

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/audio1.js HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/octet-stream
content-length: 349
x-guploader-uploadid: ABPtcPpZL5kRyyo8925_qHGLS1r5ysGi7aX8A2uvf-VT6y0cRfI0JapoOxkh9Jxx2qVOqNWjXDVAicfcFQ
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Sun, 02 Oct 2022 16:56:53 GMT
etag: "f18441557cc617ee1b3a0d8be7af32db"
x-goog-generation: 1664729813271471
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 349
x-goog-hash: crc32c=EfWotQ==, md5=8YRBVXzGF+4bOg2L568y2w==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sJMTcKg7%2BvhtCYlsefL9%2FoMkXSj%2Ff2QiBUg%2F2pvwyfhTd9TCMxEmvNsYCQc55KZM4ULeqy3d%2BWFKrl1eY6g7iHsQQNHWl1F85KkWz1Dtix7jeqATspvpD2UyMYQ%2BqDqayhQEx2Oqf7oFhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a68a27569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/logo.png

172.67.202.11

200 OK

22 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/logo.png
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
PNG image data, 300 x 112, 8-bit/color RGBA, non-interlaced
Size
22 kB (21993 bytes)
Hash
5174f0e365f25d1db538eb424cda65f1
64893ed4e3d3a40a89a04552137cc400bd3f0086
d28c8d82a8cd25f75e54a83d258fde5c00d2d13e783b0b49ece6adfc4be7104e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/logo.png HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/png
content-length: 21993
x-guploader-uploadid: ABPtcPpcgFSVqDbQiB-LmiLYF2MDawDKFWUxbWQ1xi18BJa6f4QNA4kvjabpY5gZA9ps1bxtJ4MqWYp6hw
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "5174f0e365f25d1db538eb424cda65f1"
x-goog-generation: 1667220702893240
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 21993
x-goog-hash: crc32c=f8SwIw==, md5=UXTw42XyXR21OOtCTNpl8Q==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PT4CPs%2FbJ36l7wmdeF1o5IVqPS%2FrNgHVSm4jzHDH9ShrokMCF%2FjneegbEHaOG44zizQH4PPBOkdz%2BatzmcrmrVgPWMkAAHOGwS9nzhZH%2F45%2FJwh%2FJFi7CzHR2HACch%2BlZno%2FQV3SoHyXnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a11569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w4.jpg

172.67.202.11

200 OK

1.1 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w4.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3
Size
1.1 kB (1074 bytes)
Hash
3f485bf10773a10e38ddafe8c5a8b7d9
e0d0f5a89ae566ef2b31ce067cb212551a1b2f2a
40babb909cb2cf358b9ee157f2e4c3a562cc30c76f95a1c5305270d020391ce2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w4.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 1074
x-guploader-uploadid: ABPtcPoVQAo3iwfnP1lGem5-YceWU17GFg-zkvCv--2dKVzVqs_hXRZRtHbIcixwD6-iQZoG7_gfs-FPRw
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "3f485bf10773a10e38ddafe8c5a8b7d9"
x-goog-generation: 1667220702836929
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1074
x-goog-hash: crc32c=0YMQoQ==, md5=P0hb8QdzoQ443a/oxai32Q==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sn8G3C9ITZsDnXVYvrLy0ZYgip2Zv4zRlGCh0whEgDthnKj6E301B%2Fx9h8AyIWk%2BoxI9XYYUx8n4l1TfsotMrMUAbMWEzdxtnG4Us4ryQz551IpIqtPDmtsH8yMSrrQWPW9UMGApS0JfYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a19569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/gloading.gif

172.67.202.11

200 OK

34 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/gloading.gif
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
GIF image data, version 89a, 250 x 250
Size
34 kB (33946 bytes)
Hash
e8640aa7e02dfbaec2cba46130841473
4b0847aaa40e23ddf46d786ba61c9f190185ec64
39e32f2337fbe5bf3fd7604d1e2d1b37e8d11052a55263f10f5e7d2d614a00fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/gloading.gif HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/octet-stream
content-length: 33946
x-guploader-uploadid: ABPtcPpKYNBGcq8ofc5F98BKu28WXvI3ltLZdS7q1hM9ujoM22Hq_RL-QK4oBsp7R0y0L9FEuG_m5r9fxg
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Sun, 02 Oct 2022 16:56:53 GMT
etag: "e8640aa7e02dfbaec2cba46130841473"
x-goog-generation: 1664729813306293
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 33946
x-goog-hash: crc32c=aVCr1Q==, md5=6GQKp+At+67Cy6RhMIQUcw==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bpkm1uK9xxi6s%2BeXPoU8N53DVEFLiePzwqZdnecevPIaD3m7barjIj%2FYx%2FNWUxMngUiOjZP2%2FKvHQE098dUozxObMwDPuqNhNJyogmfViw6DjvWfLR4gaCc%2BK4MwF0izOnQzzaIhvCUZWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a64a06569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w6.jpg

172.67.202.11

200 OK

1.3 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w6.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3
Size
1.3 kB (1342 bytes)
Hash
95002cd3fbc38552be3bd52eb11e1eda
3233afcc53bb01622592cb14b7fdaa590fca697c
b942e9ba4c5f2ae8d8895aff97ab414b4aaef7e5d93097a29bc8570bd4057558

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w6.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 1342
x-guploader-uploadid: ABPtcPq8gmucAOH33Q60EJ-3_8Amv4Q82DN_RxVcEFxhAF-jI0mvcw5Oz8EDbqNCemUR-j2D-suA6TfE0g
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "95002cd3fbc38552be3bd52eb11e1eda"
x-goog-generation: 1667220702696185
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1342
x-goog-hash: crc32c=dwqn1Q==, md5=lQAs0/vDhVK+O9UusR4e2g==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5f2CHtrN7hcNmTTqwJaaqLdXMft2V7flXxwb6VBhg6I7tlaH26xJ5yk2QBCUWq%2Bt5SbV8jdtGjZxX3Y0QEj1G%2Bt7nH83MBaSTGf2ki5uZitwpxPOZDEclwMgNJ7H88d8cIRzDFae4kACXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a1b569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/script0.js

172.67.202.11

200 OK

4.3 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/script0.js
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JavaScript source, ASCII text
Size
4.3 kB (4318 bytes)
Hash
424a00082c13a4b9f8151fda740c5b97
39165df2985bac750db9c7d402982499f7b843ec
77114571749c83601b02c250d17dd2ee4ecbe90ee381ad56cd92b7d21fac9ab0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/script0.js HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/octet-stream
content-length: 4318
x-guploader-uploadid: ABPtcPozYVWSTQJf35w5lPnRIPfIWbziQMhfZazksi9e-S-XcLfeTI-4JSa9j0FMkQy2sIyL8BE
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "424a00082c13a4b9f8151fda740c5b97"
x-goog-generation: 1667220702845463
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4318
x-goog-hash: crc32c=xXTESA==, md5=QkoACCwTpLn4FR/adAxblw==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6aKayfAZwq0MDL%2BWxjzWy4qqAO9bTVrdwXVfThqNXf%2BPxKvNpq%2F0PNCqw7VAB1yXZ9PRwNaOhDs%2FM7hiTaABaBJh%2FYrdONTataIue7Rnfn3N1c6d1E3eZ69YC97Cq%2BSrN6ANbXO1EJf6hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a67a24569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/loading4.gif

172.67.202.11

200 OK

7.9 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/loading4.gif
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
GIF image data, version 89a, 50 x 50
Size
7.9 kB (7916 bytes)
Hash
2b19ca3439b94b7a398b56ea9b5afa49
d132175327753974c4b00e47f4ee91c0cd2065fb
11894f102437796ba20a1b49a71253e51c340d5ae28ea83e7dcb6fcf9d83e2d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/loading4.gif HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/octet-stream
content-length: 7916
x-guploader-uploadid: ABPtcPo-Fw03mT3KquBfH2bw7c-W7JnIvt2w4V7O0HZF6ZIiiQisFAZGQ4W21B4nHuEth42-mSxsvHERhw
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "2b19ca3439b94b7a398b56ea9b5afa49"
x-goog-generation: 1667220702658397
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 7916
x-goog-hash: crc32c=D2nRgA==, md5=KxnKNDm5S3o5i1bqm1r6SQ==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OSQwNfMNZGXYD%2B3JI7YDK5BKZ44jH22%2FABxH%2Ft%2BCuVTRHU1Vvbc3bogTtdBcNZ6aVEOF43SCUrQIyzRodNvR%2BX4kQUPS7Z4bMx5TMvLVI2TFqNDOwDk%2B2RrhCAo3y%2Fx%2BY5tTt7tbWiwM5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a13569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/confetti.js

172.67.202.11

200 OK

5.8 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/confetti.js
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JavaScript source, ASCII text
Size
5.8 kB (5802 bytes)
Hash
569f8cac29e28c0c0c3840eb3ea57f97
c063225fbdc6653a0881ae93513215ca4cf0e370
620eb11860249bad4de011d39202d9b01ef791565fc332e79047c0e5429e7fba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/confetti.js HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/octet-stream
content-length: 5802
x-guploader-uploadid: ABPtcPqbXg73fEAX9TiucvKENvXXdo_RIVCh9jAexIvLrNw_-x447L5f8ExbzLB2lG2fI-aH6fw
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Sun, 02 Oct 2022 16:56:53 GMT
etag: "569f8cac29e28c0c0c3840eb3ea57f97"
x-goog-generation: 1664729813279964
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5802
x-goog-hash: crc32c=+NDKIg==, md5=Vp+MrCnijAwMOEDrPqV/lw==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6CF2KBiOlX3PMoE%2BPyrED7b2ZBsF7Vm7lFm2Gv9l5HQmIVr5GGh1gKXbIGH3o56mU7ZopP2BEszGtif59PD5q0hcCKrBuStFDF4VyXGLnnZBMfVjh1EJ%2BdQNSf%2FLjBSxGtd0oW634BBbGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a67a23569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w7.jpg

172.67.202.11

200 OK

751 B

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w7.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 48x48, components 3
Size
751 B (751 bytes)
Hash
e8c1454c15c6596bb21d99f4d907f632
60e15b6db64c05951cfdafafe7bf75309f8e8e3f
7125f531b9cdb3ef75f1b5b608b974f492794764638bfe482c4b4c5083acbcdb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w7.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 751
x-guploader-uploadid: ABPtcPqAeJDsOTEpGDzS7Lxyj2c9HlnLRSEG-kNK4LTyH_4Eg57u1BfGU1B4ipE1QM0cCNd6MrU
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "e8c1454c15c6596bb21d99f4d907f632"
x-goog-generation: 1667220702871279
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 751
x-goog-hash: crc32c=xTtf5Q==, md5=6MFFTBXGWWuyHZn02Qf2Mg==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ipQZFB3YkW%2BqW%2BL21TTtNxXg8q6kdPDAm3WFMYD%2Faua9ca9e%2BM%2BxdldriYclWFcO2dQLND%2B94%2BBF%2BMo9BpRUNtOPlUjcEDs3ItWTQ27lP10SP7XVKJRTeTW%2BcRuT6a5sa9Z3W%2BDSdFktcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a1c569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/user.png

172.67.202.11

200 OK

2.2 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/user.png
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
PNG image data, 96 x 96, 8-bit colormap, non-interlaced
Size
2.2 kB (2208 bytes)
Hash
54f5f2e7c2c3e4eddc04cfdd5360e68d
4cbbe8136fcee8d5ae78a207eff3a5c08dce46a8
7c4575354c41980db26473d56e60e1e4e43da1cff091af0819bdc05acfea442d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/user.png HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/png
content-length: 2208
x-guploader-uploadid: ABPtcPpv-lU3o9haCiHUequBWBL-9kyaXJ5BIXILF9mC6qmzrXg1shiSUui94WleYAqvlk4XBdw
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "54f5f2e7c2c3e4eddc04cfdd5360e68d"
x-goog-generation: 1667220702714721
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2208
x-goog-hash: crc32c=ddKJCA==, md5=VPXy58LD5O3cBM/dU2DmjQ==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UyqrWQjnFxB%2BfMmwDMtAO9kRho2iqnVd4dBvdpQAkdPWE55Z2QsC2ZfZLX%2FcZjSx%2BR0rXEBTG7%2Fb04rxa9aQK8xAF%2FaUTWElPGUipIVMgkSxWO%2Bs48sEuGMAbYczll%2Biy%2FnzcO2oYkkWVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a12569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/trophy.jpg

172.67.202.11

200 OK

11 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/trophy.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 276x276, components 3
Size
11 kB (10902 bytes)
Hash
8e4c1ba9f0874a6a954cf0049b97b99e
2f04b63303ab930d291b2b8efbf92e1c42128501
41fd835af982f40043cd15cea0c03c558e39f4db87c18349157f83a7e5443d76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/trophy.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 10902
x-guploader-uploadid: ABPtcPoEvtSDSckINZ1hThYyRN5VL7kyi1efo9n_eOMcE7rhqHB1o8HesNVUUEotSZNU_aRCrnBb5vWUYQ
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "8e4c1ba9f0874a6a954cf0049b97b99e"
x-goog-generation: 1667220702959028
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 10902
x-goog-hash: crc32c=lh8pTg==, md5=jkwbqfCHSmqVTPAEm5e5ng==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VoyG00quVmGDqrhOQkHxwCj3FDPvcZBt5ZgZtFQeyjuUL4YeB%2BD4pYPo9V9nTHuenywNGB2N5NAk%2F%2FmKHvb55okGz3xB9BX16oT8ipPYSXmMT1eIe9Hlxi56VuajIw%2BZ0qex1kQ0%2BgT20g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a14569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w10l.jpg

172.67.202.11

200 OK

807 B

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w10l.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 48x48, components 3
Size
807 B (807 bytes)
Hash
3c777668dafeeb70ccc712b2772d7bc5
c896b95b8de6a5773f805862b7eda76afdcee5bf
7fbbaed15a8beaf623f6eaab8c739875e3f90dd929e09a03bcdb2327e486c438

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w10l.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 807
x-guploader-uploadid: ABPtcPpm3l_T27EiPj8X1meZKCCqMICBVKtnF6nZoRFCjuY_gCf4KdLaVaIygtYzABYdcKxWeAo
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "3c777668dafeeb70ccc712b2772d7bc5"
x-goog-generation: 1667220702906574
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 807
x-goog-hash: crc32c=98kVEQ==, md5=PHd2aNr+63DMxxKydy17xQ==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nNwdfx14xkAcH4TOR528uuhpTacy9cBJehfuMwdjZ4azdegCB%2BaHU21sH4bYiixP1GcvSS%2Fy9w1m7AUEaO%2FYmFVvcRfQ72u0leQO3iYwK%2BVW90Wq7CP3YyWR%2FEH%2B%2BMEBb71suGTDoRDQng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a67a21569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w3.jpg

172.67.202.11

200 OK

1.3 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w3.jpg
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3
Size
1.3 kB (1265 bytes)
Hash
cdf43a51ae38685e65481ccdce3577e5
581a7ab85b933f840aa43b33c6f1b63252b4f0c6
6f56c67fa70da83eee1efc01fc4249d2dbe12787d9b1496cd568ebdaab17ff15

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/w3.jpg HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: image/jpeg
content-length: 1265
x-guploader-uploadid: ABPtcPorOsRC_aekqEUrENRafqyacvv_YxaMKdcetWp3z5sG9RXz4YLXd5K15rN9obE53dIwzujmYrZw6A
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: "cdf43a51ae38685e65481ccdce3577e5"
x-goog-generation: 1667220702836556
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1265
x-goog-hash: crc32c=iatI5Q==, md5=zfQ6Ua44aF5lSBzNzjV35Q==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gOABQu2Jly7rhhisf4sCJ3yjSQlRUjzzH%2FYDq5fHJD9gtAZvPYvEMYfmgaYcZevTBukpa6p0HTfRtxYKMfK3N6aQA29bcI0C8JexWBd1REE9L4VI5mB%2BRojkP053nSu%2FXSWp7O0V10a5bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a66a18569b-OSL
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/favicon.ico

172.67.202.11

200 OK

5.4 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/favicon.ico
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
5.4 kB (5430 bytes)
Hash
f3418a443e7d841097c714d69ec4bcb8
49263695f6b0cdd72f45cf1b775e660fdc36c606
6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/favicon.ico HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/octet-stream
content-length: 5430
x-guploader-uploadid: ABPtcPqpNQSRXeWz--FLmWxQXvw6C0g2IvgHavsEc5rm2J6JO03TuTJIVkZGL9yIiBdR631FUaUGS-Kfdg
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:43 GMT
etag: "f3418a443e7d841097c714d69ec4bcb8"
x-goog-generation: 1667220703839505
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5430
x-goog-hash: crc32c=C4jvBQ==, md5=80GKRD59hBCXxxTWnsS8uA==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m133Z%2F1YTQHEs%2BnI1zs6IYZAttAxWzyIQxqwPHiq2nK05McNSMM7UaVRjv0au4d2izJ6gobEwG1Vg8bIh7KsLw8eyyt9Vc40UNGpDyMXqCBxWrxh%2BhgEeliZlEURKzWyJpywmsRr4ZfMXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a89ab0569b-OSL
alt-svc: h3=":443"; ma=86400

www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY

172.67.202.11

200 OK

9.8 kB

URL User Request GET HTTP/2
www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
9.8 kB (9779 bytes)
Hash
de3883d694faf448128bbe5dea0b1304
404ac3c154ce910b5bcf328add140973c4fdb6f9
0381b429c03e5f00a56e68c9d3e82d736b096eca00288cfd2ad9147966d9c03e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY HTTP/1.1
Host: www.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 03:07:08 GMT
content-type: text/html; charset=utf-8
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dphWZUup9bEgxmrTehQDQjyz8mVl%2BeUh8KmfsfiLAm3o2yUCmMwFpwKOuPZcgepkz%2Fov8ue92E8HfQy7Cy7fXuacmCguVvL1d535ZXjnuhVuF2Ym7NyIBBfNe%2BKBQTvXzxOlLUo6KP%2FtPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8792e1a39897712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/_style11.css

172.67.202.11

200 OK

12 kB

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/_style11.css
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type
ASCII text, with CRLF line terminators
Size
12 kB (12073 bytes)
Hash
3cdfa0cfeb4c54e4a8d124c9eee0b681
f414ce167bd0b12b4df1ad2a75b1da386493e268
9b2ae61a7b3cbd37c1efb5fa8227bd01891f1cb0f74ab9edd8bf0f73ae9e2585

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/_style11.css HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: text/css
x-guploader-uploadid: ABPtcPo4cGT9RtF6nd1YSiKX9NNlQ_LePovX-BEd7_UhX_KOql_n6xtyjjKo4vLVYdUo3INU2lQliINmMA
cache-control: public, max-age=14400
expires: Wed, 24 Apr 2024 04:07:09 GMT
last-modified: Mon, 31 Oct 2022 12:51:42 GMT
etag: W/"3cdfa0cfeb4c54e4a8d124c9eee0b681"
x-goog-generation: 1667220702699530
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 10128
x-goog-hash: crc32c=fLfx2A==, md5=PN+gz+tMVOSo0STJ7uC2gQ==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g3Qhvdc2V5AD8sMIMRgZ9NrwhojQm3FbmRF4qEhPl3YfMgqviW13950YKBJCmLGBXO0%2FmZcWtzBCInaTAyPRvMcKJFBVCvbkJfxEVkOCEmEybioWdcJ8T9wpQF9Ob867P%2BcIDq2i7e9ENA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a64a02569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/style.css

172.67.202.11

403 Forbidden

0 B

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/style.css
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_brand/hw/style.css HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/xml; charset=UTF-8
x-guploader-uploadid: ABPtcPr7Ta2N40BfotyZXDogxTBLqOheRW-LKARrtgOdJCsY36ExGtHlMgfboao50esquhMGm_2ODkNtRw
access-control-allow-origin: *
access-control-expose-headers: Content-Type
expires: Wed, 24 Apr 2024 03:07:09 GMT
cache-control: private, max-age=0
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t8X%2BBoBpCNj%2B5Z7MyaaGer8XlZXhTb6tPL38q0INMNmakHWWdKCa4vxy%2B%2FyvNtH39E3aBAUWNogEFjSb8dD7gRsOpEmNyHrf1wU8FH0C0MjIfFe5yQLUqc8OH6C8Y1cR5q0dfRYrbh0q%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a64a04569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_okeyword/ipe14/_style.css

172.67.202.11

403 Forbidden

0 B

URL GET HTTP/3
cdn.claimbigwindraw.top/bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_okeyword/ipe14/_style.css
IP
172.67.202.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.claimbigwindraw.top/1hs712fui/l?btd=dHJrLmNvbG9ueS1zY29yZS1yZWxhdGVkLWRvbmtleS5ydW4&exptoken=MTcxMzkyODAyNDg2OA==&lang=en&lid=bbfa5f1b-bb88-405e-a07a-a1194e345385&r_countrycode=AU&r_ip=124.171.68.235&r_lang=en&r_okeyword=ipe14&td=dHJrLnRlY2hpZXdlYm5ldy5ydW4vc253ZGFydGY
Certificate
IssuerGoogle Trust Services LLC
Subjectclaimbigwindraw.top
Fingerprint34:7E:FD:89:A7:E0:6C:37:D8:71:57:AF:E6:57:11:BB:1B:4F:FA:DC
ValidityWed, 17 Apr 2024 00:18:18 GMT - Tue, 16 Jul 2024 00:18:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bundles/b94d1dc0-4568-465f-91f6-4019b585d28a/static/r_okeyword/ipe14/_style.css HTTP/1.1
Host: cdn.claimbigwindraw.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.claimbigwindraw.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Wed, 24 Apr 2024 03:07:09 GMT
content-type: application/xml; charset=UTF-8
x-guploader-uploadid: ABPtcPpGhPCkz7wVAUSqhOOa-7OcfRZxadd4vjBC10mLdHGtl2mKbKrkT26OdJ_o4Sxi4vPW8gKhLHhrQA
access-control-allow-origin: *
access-control-expose-headers: Content-Type
expires: Wed, 24 Apr 2024 03:07:09 GMT
cache-control: private, max-age=0
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4x%2BfYBZEGAbZ6PJWU5NBCT%2Bjym1ZZBxilGGP5LPbXny8u9yRGDVr%2FDlkmbViogmBxBu1kRDlzSZZJNBvgWvAw6j1KNWpAKcTxVbXSV8Ijot46%2FFVcxZTaN1q5rpdPF2wZX%2FL0ZxuM%2Bv6Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8792e1a64a05569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (25)

URL GET HTTP/3

IP