Report - riga.sh

Report Overview

Submitted URL
riga.sh
IP
75.2.60.5
ASN
#16509 AMAZON-02
Submitted
2024-05-09 00:34:38
Access
public
Website Title
[OSINT/CTI] Investigating a terrorist IT infrastructure // Riga
Final URL
riga.sh/investigations/terroristinfrastructure/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
upload.wikimedia.org	2215	2003-03-16	2012-05-21	2024-05-08	443 B	961 B	185.15.59.240
riga.sh	unknown	unknown	No data	No data	15 kB	27 MB	75.2.60.5

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (32)

	URL	IP	Response	Size
	riga.sh/css/main.min.4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f.css	75.2.60.5	200 OK	797 B
URL GET HTTP/2 riga.sh/css/main.min.4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f.css IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type ASCII text, with very long lines (2377), with no line terminators Size 797 B (797 bytes) Hash d21bf43b8045e755b92fd0de490bf479 7f258e14a27093df8a1b04d8e129990c74c91cac 4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f HTTP Headers `GET /css/main.min.4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f.css HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-encoding: br content-type: text/css; charset=UTF-8 date: Thu, 09 May 2024 00:34:13 GMT etag: "46a1e4cefd456add46ed1167f793d29f-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HXDCB8VG0D98EECK64V8RXXY content-length: 797 X-Firefox-Spdy: h2`

	riga.sh/images/avatar.gif	75.2.60.5	200 OK	9.2 MB
URL GET HTTP/2 riga.sh/images/avatar.gif IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type GIF image data, version 89a, 384 x 384 Size 9.2 MB (9215031 bytes) Hash d027d29f2f8ac65736b0589bdb12eb47 2eb02808be1387b5b92c0706757e23e605a7a34f c8c0b68dad0519c5897571e6c3eb043c350dd3f7ecdd3ecb2a0a36a679d6b554 HTTP Headers `GET /images/avatar.gif HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/gif date: Thu, 09 May 2024 00:34:13 GMT etag: "85c8136725dd7022470d7fe54428a83d-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCB8VH37G32D19SHE8DD1M content-length: 9215031 X-Firefox-Spdy: h2`

	riga.sh/css/main.min.4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f.css	75.2.60.5	200 OK	797 B
URL GET HTTP/2 riga.sh/css/main.min.4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f.css IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type ASCII text, with very long lines (2377), with no line terminators Size 797 B (797 bytes) Hash d21bf43b8045e755b92fd0de490bf479 7f258e14a27093df8a1b04d8e129990c74c91cac 4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f HTTP Headers GET /css/main.min.4a7ec8660f9a44b08c4da97c5f2e31b1192df1d4d0322e65c0dbbc6ecb1b863f.css HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK accept-ranges: bytes age: 4 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; hit content-encoding: br content-type: text/css; charset=UTF-8 date: Thu, 09 May 2024 00:34:16 GMT etag: "46a1e4cefd456add46ed1167f793d29f-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HXDCBCPGKWNCD9HEWVKCF11Y content-length: 797 X-Firefox-Spdy: h2`

	riga.sh/posts/images/mailqassam.png	75.2.60.5	200 OK	5.2 kB
URL GET HTTP/2 riga.sh/posts/images/mailqassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 333 x 34, 8-bit/color RGB, non-interlaced Size 5.2 kB (5212 bytes) Hash 2ece0a208f639c5f5168aced01eeecb7 38ab07e3f5c50c1838b3e5f999b8b1df21a31475 655b1bbdff89cc24537394dedbddea207a5abd061154a69167c212d81880e5f3 HTTP Headers `GET /posts/images/mailqassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "60525427c03e39f61c2ed406e3835e9c-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPQEYY31N4WFEYWHG8X content-length: 5212 X-Firefox-Spdy: h2`

	riga.sh/posts/images/ftpqassam.png	75.2.60.5	200 OK	14 kB
URL GET HTTP/2 riga.sh/posts/images/ftpqassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 490 x 115, 8-bit/color RGB, non-interlaced Size 14 kB (13692 bytes) Hash 3070f46bac26b5cc3bb063e5076afaf6 931df2b4bd8b6123f0254195684b02d94c4c5ff9 04b4df4e9d07cfd58ea9570e485d914004c12ef75531660014a17176f27b30c8 HTTP Headers `GET /posts/images/ftpqassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "c7fbbb5f17fe856a27edb943e64a875a-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ3YSZ4VSYWWY2BD4KS content-length: 13692 X-Firefox-Spdy: h2`

	riga.sh/posts/images/abuseqassam.png	75.2.60.5	200 OK	36 kB
URL GET HTTP/2 riga.sh/posts/images/abuseqassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 410 x 246, 8-bit/color RGBA, non-interlaced Size 36 kB (35711 bytes) Hash 53439e7fdd76f6e166d08e1752ef2651 aecd9810c4865cc733501fd8dfd59ae041dbe2e3 9fea108b0a2a3c6355fea3f24562b7139db719033fd8cc30e1eba92f8959d67a HTTP Headers `GET /posts/images/abuseqassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "96876c11b2db72a941519c89b23e42f2-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPRVEPAM71G6HCM0EX9 content-length: 35711 X-Firefox-Spdy: h2`

	riga.sh/posts/images/alqassamip.png	75.2.60.5	200 OK	297 kB
URL GET HTTP/2 riga.sh/posts/images/alqassamip.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1744 x 1014, 8-bit/color RGBA, non-interlaced Size 297 kB (297101 bytes) Hash 4ee5d224e8ad213815bf0c6d4f917d1d 77d64d9e55a7c335e848d4676b1b9da60836fe08 06b557b6665b2dc936acd391eabf398a1cd325f1d644ca415e3c1e906d65d938 HTTP Headers `GET /posts/images/alqassamip.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "ed5569c9c29249b2bf90fd1d0377b8d6-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPNB80DM68VTKGEGPG8 content-length: 297101 X-Firefox-Spdy: h2`

	riga.sh/posts/images/apkqassam3.png	75.2.60.5	200 OK	21 kB
URL GET HTTP/2 riga.sh/posts/images/apkqassam3.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 745 x 120, 8-bit/color RGB, non-interlaced Size 21 kB (21393 bytes) Hash 11889dfecde5eaca59b55f2387f92b38 a32876a2f809a4f74ec74908acbc3de284cc3a1a 922e09c1f0dd31c3ad6e1ea065eff3f1b8258a104a2b6ec4763c26408de84a2b HTTP Headers `GET /posts/images/apkqassam3.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "d157028d99fb3fa9d79edd5d3fdeda21-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ82D6M0CMADWK5DFWA content-length: 21393 X-Firefox-Spdy: h2`

	riga.sh/posts/images/apkqassam2.png	75.2.60.5	200 OK	39 kB
URL GET HTTP/2 riga.sh/posts/images/apkqassam2.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 932 x 368, 8-bit/color RGB, non-interlaced Size 39 kB (39351 bytes) Hash 4f78581e17d62f780f5984666687ff5e 648a6d35e7c4998594f3a6a6380c3d9313c089dd e277e913a9eac2d920f56fd073fc73b9e290cf432f98ca31aa4c2ff847ea0da4 HTTP Headers `GET /posts/images/apkqassam2.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "39cbcc7313f1b306e8a92de4a6bf2d1f-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ8BNW0Y2SYKHM2068K content-length: 39351 X-Firefox-Spdy: h2`

	riga.sh/posts/images/telegram1.png	75.2.60.5	200 OK	108 kB
URL GET HTTP/2 riga.sh/posts/images/telegram1.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 618 x 606, 8-bit/color RGBA, non-interlaced Size 108 kB (107884 bytes) Hash 1b2c68b64efef5c724163d0e3960378b 749f07f1fc16b88fc80bfdc8fb982dd71df4daf7 7ed75f26ded835ceb9391e949a96c62a595310cd70752f9886c968a850f7176a HTTP Headers `GET /posts/images/telegram1.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "078107bd585e81470bdfc56c5d75f4a3-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPMSC82D6G1BJS2NFD1 content-length: 107884 X-Firefox-Spdy: h2`

	riga.sh/posts/images/mail.qassam.png	75.2.60.5	200 OK	419 kB
URL GET HTTP/2 riga.sh/posts/images/mail.qassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 832 x 1214, 8-bit/color RGBA, non-interlaced Size 419 kB (418999 bytes) Hash c77a284157bb60b9417c6d53cdf7d5c2 5248d66eec203f4dd60148c53192658cbe1a7bb8 4b2b20b093aef1ab12260ae453da2b7188945274a86ead7eb0d4dde978586a81 HTTP Headers `GET /posts/images/mail.qassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "4d5844d05c29b1fd03af97fed2136f48-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPQKN3QWNF1DTW4F7A9 content-length: 418999 X-Firefox-Spdy: h2`

	riga.sh/posts/images/alqassamheader.png	75.2.60.5	200 OK	2.1 MB
URL GET HTTP/2 riga.sh/posts/images/alqassamheader.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1600 x 1000, 8-bit/color RGBA, non-interlaced Size 2.1 MB (2067361 bytes) Hash 79c34ed594dfd97dc93f1889e9eda572 a69a2efb65d843646923f238212134706b13eda8 2223bc4743c265a7c77f5baa6164b081d06afb7e4fc548828cbb4b90c64a29d8 HTTP Headers `GET /posts/images/alqassamheader.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "7d56a4c2c793f419ff7dda29ea9e9542-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPJ26PWXT2ZQ34QMFC0 content-length: 2067361 X-Firefox-Spdy: h2`

	riga.sh/posts/images/phoneqassam2.png	75.2.60.5	200 OK	30 kB
URL GET HTTP/2 riga.sh/posts/images/phoneqassam2.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 622 x 266, 8-bit/color RGBA, non-interlaced Size 30 kB (29846 bytes) Hash 481c2fdff1f1c209e6490438a740346a c3f9172b2dca7cbb0da98a4ce10d1cc2ff5dcb36 5ccbc55e4108725d679d76c208415cc5379b143014ab3ab7f749d9e27a5b84cc HTTP Headers `GET /posts/images/phoneqassam2.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "e7a97dc6b972739995335fc2f895ad62-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQB78563XP8SR5BZ9BX content-length: 29846 X-Firefox-Spdy: h2`

	riga.sh/posts/images/phoneqassamWS.png	75.2.60.5	200 OK	38 kB
URL GET HTTP/2 riga.sh/posts/images/phoneqassamWS.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 734 x 360, 8-bit/color RGBA, non-interlaced Size 38 kB (38320 bytes) Hash dae3b7436c7ffec0a4ecde46faa64b35 832bfb92d610a047eb55db889068c321d9cd81be c98df0327b2995afbb0463510fff10cf8f8e173335a5e703de90b69ad6ca4eae HTTP Headers `GET /posts/images/phoneqassamWS.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "71f18742976913c73f7fba5d70ee8f9d-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQC274FRMZJ8P3FKDAY content-length: 38320 X-Firefox-Spdy: h2`

	riga.sh/posts/images/thehost.png	75.2.60.5	200 OK	872 kB
URL GET HTTP/2 riga.sh/posts/images/thehost.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1606 x 1420, 8-bit/color RGBA, non-interlaced Size 872 kB (872015 bytes) Hash 0f325db4f4ca341fc3a814950dbd2fb7 f9e9fb71b288b96d0909740ab9383f6c14581d0d d3be598213c19dd240f985e854e510115059ef0c780d51b9761343135fa15192 HTTP Headers `GET /posts/images/thehost.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "3229622e74afca48c6ffc5059450123d-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPPRQ4SSAFY22G2S6J6 content-length: 872015 X-Firefox-Spdy: h2`

	upload.wikimedia.org/wikipedia/en/d/d8/Alqassam_logo.png	185.15.59.240	404 Not Found	79 B
URL GET HTTP/2 upload.wikimedia.org/wikipedia/en/d/d8/Alqassam_logo.png IP 185.15.59.240:443 ASN #14907 WIKIMEDIA Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerDigiCert Inc Subject.wikipedia.org Fingerprint48:3F:0C:71:F3:4A:E0:EA:30:D9:9B:D6:04:63:DC:DA:A8:F4:9D:FB ValidityWed, 18 Oct 2023 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 79 B (79 bytes) Hash f327264202bf90203580f0fb7bf53109 edb7332ffc0880be78cd510b063b0c4810213ba6 bdc903e3e3dc4ad7566a1778d1505afb25436f1ba8bc65c76891a77ed1996c45 HTTP Headers `GET /wikipedia/en/d/d8/Alqassam_logo.png HTTP/1.1 Host: upload.wikimedia.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 404 Not Found content-type: text/html; charset=UTF-8 content-length: 79 date: Thu, 09 May 2024 00:34:17 GMT server: envoy age: 0 x-cache: cp3078 miss, cp3078 miss x-cache-status: miss server-timing: cache;desc="miss", host;desc="cp3078" strict-transport-security: max-age=106384710; includeSubDomains; preload report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] } nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0} x-client-ip: 91.90.42.154 x-content-type-options: nosniff access-control-allow-origin: * access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache timing-allow-origin: * X-Firefox-Spdy: h2

	riga.sh/posts/images/fortinetqassam.png	75.2.60.5	200 OK	57 kB
URL GET HTTP/2 riga.sh/posts/images/fortinetqassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 468 x 666, 8-bit/color RGBA, non-interlaced Size 57 kB (57272 bytes) Hash a2ce9e99579b68faa2fc6a1d6496c2dc 39c0451ed43a3e8096e104ef91924397cdc50539 92508136fd7eec954858dafa89c87f1268d37142d015a65506053af778bdf2f3 HTTP Headers `GET /posts/images/fortinetqassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "996c7ccaa9e40b9547c21cc9a50edf68-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ4M1EFW3GX0S40SJ2Q content-length: 57272 X-Firefox-Spdy: h2`

	riga.sh/posts/images/emailsqassam.png	75.2.60.5	200 OK	61 kB
URL GET HTTP/2 riga.sh/posts/images/emailsqassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 540 x 638, 8-bit/color RGBA, non-interlaced Size 61 kB (61242 bytes) Hash a77aa1b4692fb7d2a9cb0a2cdf73a6fc cbdd1ca8fbb12bcb8453d0f27196abd3e7ca9627 91800ea9735aa8e822273d378970a58dcc9c247c0940bd3244cee4cf9ee30f50 HTTP Headers `GET /posts/images/emailsqassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "1261b9cee4d472d700157aa35117f7c2-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ45B29BHXZNAWJ9HF5 content-length: 61242 X-Firefox-Spdy: h2`

	riga.sh/posts/images/phoneqassamWS2.png	75.2.60.5	200 OK	39 kB
URL GET HTTP/2 riga.sh/posts/images/phoneqassamWS2.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 740 x 386, 8-bit/color RGBA, non-interlaced Size 39 kB (39018 bytes) Hash c21b2f2810dac2df5b95674819e56743 24d67d47a6dc728e4be10a165dae3238054d56e2 e561f38909b5d99af5043863de62d280fecfff125d005d362cbd2204152429bc HTTP Headers `GET /posts/images/phoneqassamWS2.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "b8e3cb4c8010ef1af19658d2dba42012-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQDE12ZJYX9101F4SEA content-length: 39018 X-Firefox-Spdy: h2`

	riga.sh/posts/images/phoneqassam.png	75.2.60.5	200 OK	76 kB
URL GET HTTP/2 riga.sh/posts/images/phoneqassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 580 x 398, 8-bit/color RGBA, non-interlaced Size 76 kB (75662 bytes) Hash 2d627bf8c093bfe83335d8fd347c3f94 894b340387e50774b871479842e54d1b060e864e b21993e1ac02ca14d3084dfae13b1b64dab86b528f70bc5a6ac721445abda754 HTTP Headers `GET /posts/images/phoneqassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "f64f9630efca8c0b0ab8c32ac4d36b06-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQAPRBR9WZBSWMRV4S0 content-length: 75662 X-Firefox-Spdy: h2`

	riga.sh/posts/images/phoneqassam1.png	75.2.60.5	200 OK	178 kB
URL GET HTTP/2 riga.sh/posts/images/phoneqassam1.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 856 x 645, 8-bit/color RGBA, non-interlaced Size 178 kB (177983 bytes) Hash d11592b10a78568674d1410c52d0921e 70ec05f2b8252fe10b3624c073cc27e969869c66 bc382541012b64c5c9893f68bd75fb72e377029459f0fb22733a8f74f06d74ca HTTP Headers `GET /posts/images/phoneqassam1.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "4ef4d10965da68d8197b0bd500c3ec65-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQBT1830HFDWBM4NV59 content-length: 177983 X-Firefox-Spdy: h2`

	riga.sh/posts/images/cpanelqassam.png	75.2.60.5	200 OK	91 kB
URL GET HTTP/2 riga.sh/posts/images/cpanelqassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1258 x 924, 8-bit/color RGBA, non-interlaced Size 91 kB (91173 bytes) Hash 8619602ed2ec59033b88ab6e25d6cdc6 aae2898be43215980fdd8821035466f3dd813dcf cb0f6423d95242a99f4947a1e7523ef1f005e7830887c6aaed627b2c8cfa4ee2 HTTP Headers `GET /posts/images/cpanelqassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "91629a8e62b3ce6d0fadc889ff6964af-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPSXAHHSCP6N67HBAF4 content-length: 91173 X-Firefox-Spdy: h2`

	riga.sh/posts/images/palcloud.png	75.2.60.5	200 OK	491 kB
URL GET HTTP/2 riga.sh/posts/images/palcloud.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 751 x 683, 8-bit/color RGB, non-interlaced Size 491 kB (490606 bytes) Hash 8a3b000f8319fc838e67505492d83cf0 5a1914f026595cd5bba06d71b82264b997bbb4cf 1896b60a4261c62cfd1d08e3664c0cc54bdf6c7ea4fcc3b9be03a97614f158af HTTP Headers `GET /posts/images/palcloud.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "b57e2f13e79631398edd677277de8c78-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ9C0RSM2G6QQ112M72 content-length: 490606 X-Firefox-Spdy: h2`

	riga.sh/posts/images/doj.png	75.2.60.5	200 OK	102 kB
URL GET HTTP/2 riga.sh/posts/images/doj.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1484 x 702, 8-bit/color RGBA, non-interlaced Size 102 kB (102097 bytes) Hash f2928780e16d7e753430b3a78bd83e18 45368e62b42b5d2cad7387697879a6d8f849c706 b5b2bd452ab1ca8deda9c0a96e2921979e24c86328eb6fff64380988e1a05e9f HTTP Headers `GET /posts/images/doj.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "184015fadc1da2340f3e18bb7b4abf9d-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQE3A302X2HDH222186 content-length: 102097 X-Firefox-Spdy: h2`

	riga.sh/posts/images/fortinet2qassam.png	75.2.60.5	200 OK	160 kB
URL GET HTTP/2 riga.sh/posts/images/fortinet2qassam.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1002 x 832, 8-bit/color RGBA, non-interlaced Size 160 kB (160339 bytes) Hash fc43c86971f1e76ce85ca1dfa235ba67 7721973142119a5efea64b0591d61532702d44e3 1d507a1d2b26758ba3fc341d4587b888b7750cdf56eea6ca68f7edb1c43a4e42 HTTP Headers `GET /posts/images/fortinet2qassam.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "8399276e1bbd12062aa5c1c09490a0a4-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ37WR118J5ANJ0BKQ9 content-length: 160339 X-Firefox-Spdy: h2`

	riga.sh/posts/images/apkqassam1.png	75.2.60.5	200 OK	216 kB
URL GET HTTP/2 riga.sh/posts/images/apkqassam1.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 425 x 440, 8-bit/color RGB, non-interlaced Size 216 kB (215519 bytes) Hash 67ee1ce09c8dc529922668627694e9de 4f6557a70c78516efe471dcf98dae4227935e7fb 99a7ac8067360a799de6a9a4cc5bbe4f580c2fc56c4a309535f4232684c66508 HTTP Headers `GET /posts/images/apkqassam1.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "f6ed09572ecd9544810371fe4636554f-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ71FT28KY354QVPZGN content-length: 215519 X-Firefox-Spdy: h2`

	riga.sh/posts/images/vads.png	75.2.60.5	200 OK	964 kB
URL GET HTTP/2 riga.sh/posts/images/vads.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1704 x 1228, 8-bit/color RGBA, non-interlaced Size 964 kB (963488 bytes) Hash d46b54fb29bc2eca8d25a526cb917c90 c0f271752c3f379ce99a43a571c6222a59392261 e1bea2382827729284e47261e9237272c87f380477f5ff2a62d2dd2f0579e4c2 HTTP Headers `GET /posts/images/vads.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "36c1e61b6408ec71d7451d1c58ae02aa-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQ3DJW98NDKBKZAFQH5 content-length: 963488 X-Firefox-Spdy: h2`

	riga.sh/posts/images/alqassamwebsite.png	75.2.60.5	200 OK	2.3 MB
URL GET HTTP/2 riga.sh/posts/images/alqassamwebsite.png IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type PNG image data, 1600 x 1200, 8-bit/color RGBA, non-interlaced Size 2.3 MB (2261571 bytes) Hash cd06898a95bb15b198dd51d5c0816051 0ea95f2a8cc8984b48548770eb10a2b92156ca91 81cd565814cdb220993db50cd2bbdb02e523b5e075741248bda39fcec97bf1d5 HTTP Headers `GET /posts/images/alqassamwebsite.png HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-type: image/png date: Thu, 09 May 2024 00:34:17 GMT etag: "36583ff6f7dfcf63f777634060b8bdd1-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCPMBT93VDCSVERM4BJA content-length: 2261571 X-Firefox-Spdy: h2`

	riga.sh/images/avatar.gif	75.2.60.5	200 OK	9.2 MB
URL GET HTTP/2 riga.sh/images/avatar.gif IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/investigations/terroristinfrastructure/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type GIF image data, version 89a, 384 x 384 Size 9.2 MB (9215031 bytes) Hash d027d29f2f8ac65736b0589bdb12eb47 2eb02808be1387b5b92c0706757e23e605a7a34f c8c0b68dad0519c5897571e6c3eb043c350dd3f7ecdd3ecb2a0a36a679d6b554 HTTP Headers `GET /images/avatar.gif HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 4 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; hit content-type: image/gif date: Thu, 09 May 2024 00:34:16 GMT etag: "85c8136725dd7022470d7fe54428a83d-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HXDCBCQFR0ZFCCMQ74BSZ27P content-length: 9215031 X-Firefox-Spdy: h2`

	riga.sh/favicon.ico	75.2.60.5	404 Not Found	1.4 kB
URL GET HTTP/2 riga.sh/favicon.ico IP 75.2.60.5:443 ASN #16509 AMAZON-02 Requested by https://riga.sh/ Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type HTML document, ASCII text, with very long lines (311) Size 1.4 kB (1397 bytes) Hash 2e15dffb525073a0ee54d566ba94efc5 a528932eccb02a62587827665ca8a99217ce8812 16cf96af44e6176d68b7151d2237e5e629fafcb4af2ffd7cf55a3ad4c5088d1f HTTP Headers `GET /favicon.ico HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/investigations/terroristinfrastructure/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 404 Not Found age: 5 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; hit content-encoding: br content-type: text/html; charset=utf-8 date: Thu, 09 May 2024 00:34:18 GMT etag: 1636307273-ssl-df server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HXDCBE5C8QEQZT5MJRDHQ65V content-length: 1397 X-Firefox-Spdy: h2`

	riga.sh/investigations/terroristinfrastructure/	75.2.60.5	200 OK	16 kB
URL User Request GET HTTP/2 riga.sh/investigations/terroristinfrastructure/ IP 75.2.60.5:443 ASN #16509 AMAZON-02 Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type Size 16 kB (16480 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /investigations/terroristinfrastructure/ HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://riga.sh/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Sec-Fetch-User: ?1 Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK accept-ranges: bytes age: 0 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-encoding: br content-type: text/html; charset=UTF-8 date: Thu, 09 May 2024 00:34:16 GMT etag: "cfd7dd8ee6263df06481d070fda66521-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HXDCBCD6VX6KJ02JC7EKRAZ0 X-Firefox-Spdy: h2`

	riga.sh/	75.2.60.5	200 OK	16 kB
URL User Request GET HTTP/2 riga.sh/ IP 75.2.60.5:443 ASN #16509 AMAZON-02 Certificate IssuerLet's Encrypt Subjectriga.sh FingerprintD4:D9:43:8A:E9:1E:83:62:1B:BA:E1:F9:27:0E:0B:04:98:D3:F3:8D ValidityMon, 06 May 2024 05:12:12 GMT - Sun, 04 Aug 2024 05:12:11 GMT File type Size 16 kB (16012 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: riga.sh User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK accept-ranges: bytes age: 0 cache-control: public,max-age=0,must-revalidate cache-status: "Netlify Edge"; fwd=miss content-encoding: br content-type: text/html; charset=UTF-8 date: Thu, 09 May 2024 00:34:12 GMT etag: "3af27ba648621b59b346e8a9aa8640db-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HXDCB8BNXWAGS814FJTAZXHA X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (32)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash