{"report_id":"08114492-9472-4e06-80f3-1dd532a7493b","version":6,"status":"done","tags":[],"date":"2025-05-14T22:02:07Z","url":{"schema":"https","addr":"epawg.com/contents/videos_screenshots/625000/625431/preview.jpg","fqdn":"epawg.com","domain":"epawg.com","tld":"com"},"ip":{"addr":"104.21.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"epawg.com/contents/videos_screenshots/625000/625431/preview.jpg","fqdn":"epawg.com","domain":"epawg.com","tld":"com"},"title":"preview.jpg (JPEG Image, 720 × 1280 pixels)"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-23T22:02:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"epawg.com","ip":{"addr":"104.21.32.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-04-06","domain_rank":0,"first_seen":"2022-04-07T20:01:15Z","last_seen":"2025-05-09T17:55:18.727892Z","alert_count":0,"request_count":2,"received_data":67552,"sent_data":1009,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"epawg.com/favicon.ico","fqdn":"epawg.com","domain":"epawg.com","tld":"com"},"ip":{"addr":"104.21.32.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://epawg.com/contents/videos_screenshots/625000/625431/preview.jpg","date":"2025-05-14T22:01:47.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epawg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 12 Apr 2025 21:16:26 GMT","end":"Fri, 11 Jul 2025 22:14:02 GMT"},"fingerprint":{"sha1":"77:8A:CD:61:89:A7:39:72:D0:36:AE:51:5D:59:F9:4D:15:75:45:E5","sha256":"B2:35:9D:A8:38:DD:6C:B8:8B:8D:6C:AF:EF:33:43:2D:14:F9:4D:8E:AF:7B:4E:9C:C1:47:A7:D1:BF:30:C9:3F"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: epawg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epawg.com/contents/videos_screenshots/625000/625431/preview.jpg\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 14 May 2025 22:01:47 GMT\r\ncontent-type: image/x-icon\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=UpBrW2hItNGcKQOZNhWfTugwEQCU2bv%2BhCJQi6PgKJ0tu7CeTJbfmQlqh94BR%2Be73NBT8ehgYu9aTUoAkn2ij5NPl9nv0%2Fm2O1sBMrfjog148iJ12Z0eTqblsu0%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Tue, 12 Apr 2022 04:27:42 GMT\r\netag: W/\"6254ffbe-10be\"\r\nstrict-transport-security: max-age=63072000\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\ncf-ray: 93fdad15cb59712f-OSL\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=3062\u0026min_rtt=534\u0026rtt_var=2136\u0026sent=82\u0026recv=95\u0026lost=0\u0026retrans=0\u0026sent_bytes=8787\u0026recv_bytes=5855\u0026delivery_rate=15712\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=7aa89967f9df4cde\u0026ts=1021\u0026x=16\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"68d9b5c4124a39f35c97541329cc7f03","sha1":"f8af6d03659da9b8eef300603af1a52c40d8c1a4","sha256":"de3202791254c7cb748615b68c64afed46135ce0e7ef4a2ac7eafb4a7334580e","sha512":"1144ba45fdb051949a644d1bd4a0824138001552f46dc2cb8a5e86a5eb82e7cd00bd9746a4ff60b8c62480755675dace7795bf0aa5e7b2a553fa89d948733907","ssdeep":"96:jImyFG4EY5c6YMbq7BLwryVaf34k/eszey:0myXLlYMbq7BNw3Go","tlshash":"2c91097d2beb04eef593a43c098e574e2b5ad43d0109f72936059452ee92b951cc7f00","first_seen":"2023-12-01T23:54:00Z","last_seen":"2026-04-05T15:12:48.968233Z","times_seen":71,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epawg.com/contents/videos_screenshots/625000/625431/preview.jpg","fqdn":"epawg.com","domain":"epawg.com","tld":"com"},"ip":{"addr":"104.21.32.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-14T22:01:46.097Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epawg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 12 Apr 2025 21:16:26 GMT","end":"Fri, 11 Jul 2025 22:14:02 GMT"},"fingerprint":{"sha1":"77:8A:CD:61:89:A7:39:72:D0:36:AE:51:5D:59:F9:4D:15:75:45:E5","sha256":"B2:35:9D:A8:38:DD:6C:B8:8B:8D:6C:AF:EF:33:43:2D:14:F9:4D:8E:AF:7B:4E:9C:C1:47:A7:D1:BF:30:C9:3F"}}},"request":{"raw":"GET /contents/videos_screenshots/625000/625431/preview.jpg HTTP/1.1\r\nHost: epawg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 14 May 2025 22:01:46 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 61699\r\nserver: cloudflare\r\nlast-modified: Wed, 21 Dec 2022 00:44:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"63a256e6-f103\"\r\nstrict-transport-security: max-age=63072000\r\naccept-ranges: bytes\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HeaGNZuW4oeO0%2FkHjuidE0%2Bt3i1LCpSGME41yqRSj8MsOpWAtSsgMc0XLlonVMa35Xtwr7UnqQS7A4FJ5tGcLtceBYSp2lEocznjJJKWlVdLcqJT8VP%2F7Y1s070%3D\"}]}\r\ncf-ray: 93fdad0f6f6d56ae-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":61699,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"Lavc58.35.100\", baseline, precision 8, 720x1280, components 3","md5":"ef306ab4ba5d7ea545c51c7e9db6a407","sha1":"aecb9776786ac79777e5ae7e2d581b2fbcc5726d","sha256":"4f8b58035dba6951d395b79a24b1952371166b8062c7886fde318a3487d0ed24","sha512":"6d4dfd9e917b8939dff9a5676bf1c07740601b9de7c8e90eaf22d74b6547db2014ab8986177a5cee262f6d6a4d225714413ac79a5d0176db2ed92dfbf3293246","ssdeep":"1536:x+qJj/JjKaGu2nCBptY0WzwDlWhZBe/tP8S2lyctrpurkF0N:9/JjTrLB74b8qZt0rXN","tlshash":"af5302a93ffa09327b24abe22b50270d254514dde2fc62cb7c09f94f5ad1af4c427054","first_seen":"2025-05-14T22:02:08.369373Z","last_seen":"2025-05-14T22:02:08.369373Z","times_seen":1,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":47,"dns":2,"connect":1,"send":0,"wait":41,"receive":11,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}